Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
File: HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft (raw, json)
Hash identifier: hZbvVHPC3Ik8HOLmpSC4Fyi0f3eCfAYHE5Mkjhv6XIo=
Subject key identifier: E8:A0:48:6D:1B:75:CD:A6:06:F3:69:B2:82:59:08:65:DB:83:28:CB
Authority key identifier: 1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
Certificate issuer: /CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Certificate serial: 019E295DCA3CAD2B2D3AA6E2AFD1EF7133B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
Manifest number: 1002
Signing time: Fri 15 May 2026 02:01:12 +0000
Manifest this update: Fri 15 May 2026 02:01:12 +0000
Manifest next update: Sat 16 May 2026 02:01:12 +0000
Files and hashes: 1: HJcs-w12XR1Oa3_7Fjrfjatz6Nk.roa (hash: N2c+1xmqIJ2oL3KdyPfmWmiUkJmY9BIkjqzElqkXBQ0=)
2: HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl (hash: rfNDnTrZtZxBEwNitbXL4f7kQJWGqkqbFilP6Oy2Vbg=)
3: xwRdqXvpZ1E4P0A6zAG37GCYRLg.asa (hash: 4iBkWP8qWume/2A2mXJkWl5EI5fYnKSC+vvo5StFXVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5d:ca:3c:ad:2b:2d:3a:a6:e2:af:d1:ef:71:33:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Validity
Not Before: May 15 02:01:12 2026 GMT
Not After : May 16 02:01:12 2026 GMT
Subject: CN=e8a0486d1b75cda606f369b282590865db8328cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:18:10:a6:86:c2:6f:6e:28:52:db:46:ff:51:
aa:76:d7:6f:ac:2c:59:3f:80:20:82:39:70:dd:9e:
48:91:cc:21:82:eb:58:44:21:51:f2:f3:84:60:73:
25:bb:9a:62:89:13:7d:0d:51:dd:ab:c9:99:98:e7:
03:c7:d3:f5:98:1e:a1:19:0d:42:94:69:1c:0b:97:
78:3d:0f:ea:49:1e:3f:53:fc:30:b1:35:96:bb:9a:
35:dd:68:76:b1:7f:22:53:43:90:b7:7b:2b:b6:36:
a2:15:e1:e2:f7:85:91:8c:79:15:d5:f2:fa:dc:9b:
d8:be:9c:f4:9c:4e:f1:62:0d:54:25:0b:da:8c:79:
75:63:83:d7:20:9b:1e:c7:27:29:d5:89:2f:07:65:
92:b0:39:e2:b3:7b:a4:70:b2:25:72:ca:9a:5d:aa:
e1:3a:88:49:0d:15:68:a8:70:e2:83:55:15:25:54:
6c:d2:39:59:d4:0c:cf:25:18:10:6f:72:11:4a:d5:
e2:cc:b6:d8:3f:74:fd:86:16:11:19:58:0a:b8:98:
07:40:6f:1e:59:e0:97:2b:f9:60:c6:81:98:d5:cd:
5a:fb:ef:26:d4:30:a6:12:c5:22:48:91:24:cc:9d:
21:3d:50:7f:b8:b7:e5:79:96:4c:76:25:a1:d4:d9:
4a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A0:48:6D:1B:75:CD:A6:06:F3:69:B2:82:59:08:65:DB:83:28:CB
X509v3 Authority Key Identifier:
keyid:1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:10:b9:08:fb:3d:a2:24:95:28:70:d5:53:6c:0b:3f:74:d9:
8a:1d:02:84:56:dc:50:be:4e:c6:20:2b:31:3e:18:b1:6f:8a:
c8:7a:3f:b7:ae:22:99:1a:e9:31:93:fa:1c:50:cb:f2:ec:74:
41:5e:64:f8:18:a4:bd:4f:62:97:aa:7e:94:f0:56:39:8d:02:
05:00:f9:e7:c0:73:25:f8:97:62:47:50:95:ed:70:46:62:c7:
a9:34:0e:d4:1f:00:6c:e4:a3:ed:e0:84:1a:cd:d7:b0:5a:1f:
90:b1:2b:a4:4e:ed:6c:7d:56:d4:01:dc:e3:82:a5:52:ca:b5:
81:b0:d0:6d:f0:7c:e7:31:7f:12:61:ad:77:1e:9b:67:f4:00:
e7:38:e0:5f:53:36:b6:8f:b0:71:e8:5e:b1:75:4c:09:dc:91:
4d:84:c5:55:cc:7b:9c:0f:f5:46:1c:9d:14:fd:da:78:99:af:
6b:0c:98:5c:f8:4b:cb:a6:be:17:1a:22:6b:53:27:da:e4:f1:
4d:58:d1:67:0c:18:65:f1:79:f2:ef:72:26:ec:59:ac:8b:5e:
f7:a8:88:71:41:30:2c:db:1a:7e:e9:3c:5f:1b:0f:7a:0b:fe:
a8:57:70:c6:63:ce:22:ab:4a:1c:1a:fb:30:9b:96:73:e6:16:
0b:8d:8a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:20:14 2026 by rpki-client