Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
File: HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft (raw, json)
Hash identifier: jxcxHw9RKwJGk6D5Wm9rCrdHvjXsCoPsq3Gcxd7K1aw=
Subject key identifier: 53:B0:5D:A4:33:40:6C:77:D9:96:05:1D:81:68:6E:D4:8A:BD:36:F9
Authority key identifier: 1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
Certificate issuer: /CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Certificate serial: 019F111C5D88AEE8EAE221FF715AC3D7BE0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
Manifest number: 107A
Signing time: Mon 29 Jun 2026 02:01:39 +0000
Manifest this update: Mon 29 Jun 2026 02:01:39 +0000
Manifest next update: Tue 30 Jun 2026 02:01:39 +0000
Files and hashes: 1: HJcs-w12XR1Oa3_7Fjrfjatz6Nk.roa (hash: N2c+1xmqIJ2oL3KdyPfmWmiUkJmY9BIkjqzElqkXBQ0=)
2: HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl (hash: YL2tQ85Z3/3my7BzyLgoxFhl45Ohelg8cUiAksJUm7U=)
3: xwRdqXvpZ1E4P0A6zAG37GCYRLg.asa (hash: 4iBkWP8qWume/2A2mXJkWl5EI5fYnKSC+vvo5StFXVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1c:5d:88:ae:e8:ea:e2:21:ff:71:5a:c3:d7:be:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Validity
Not Before: Jun 29 02:01:39 2026 GMT
Not After : Jun 30 02:01:39 2026 GMT
Subject: CN=53b05da433406c77d996051d81686ed48abd36f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2e:9a:da:41:91:45:62:b3:d1:d3:42:72:57:
be:d8:49:1e:06:86:73:78:42:86:52:be:9c:e6:e7:
31:18:2f:80:1f:11:bb:ff:29:6f:da:f9:2b:88:e9:
c7:51:28:96:d7:13:ea:9d:da:c9:b0:d9:91:bc:70:
a1:28:41:1f:ab:41:13:d1:44:29:58:b4:e4:0a:d9:
a8:9e:f2:ee:24:4d:0c:1b:f7:d8:ed:3e:ee:05:b3:
24:6c:3d:a7:fc:cf:ad:a5:25:cb:5d:1a:e4:50:48:
25:48:92:2c:eb:b6:2a:1b:0a:86:cf:41:2b:ff:a1:
4d:36:68:d0:98:31:8a:61:2e:60:e0:5b:ef:a0:71:
d5:a2:30:2b:b3:bb:b6:e7:42:9d:bb:c6:7e:e6:20:
2d:79:8d:bf:ec:3b:58:6c:48:6c:41:dc:54:b8:09:
a2:66:e5:90:f2:cb:67:6c:cf:ca:02:c7:74:fe:05:
a3:3e:2f:59:19:a5:4c:0b:94:a5:fa:71:dd:cf:bc:
f9:13:d2:bd:bc:c9:4a:3d:b9:90:fc:48:48:f7:68:
51:d7:22:e2:10:82:37:bc:cc:24:25:b6:db:ef:5b:
96:12:78:b7:5a:13:44:e3:4b:18:66:b3:70:1d:5a:
a6:54:40:7b:93:25:d5:0c:b6:9a:5a:21:c2:a9:14:
b6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B0:5D:A4:33:40:6C:77:D9:96:05:1D:81:68:6E:D4:8A:BD:36:F9
X509v3 Authority Key Identifier:
keyid:1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:c7:94:0f:96:49:13:e4:17:b7:db:ad:95:64:78:c4:fd:38:
47:48:e9:5e:bb:0e:84:cb:9b:ae:1d:6e:1c:4f:8d:fd:2f:80:
58:fb:f7:10:a8:61:d5:2b:d4:d6:da:68:4d:be:08:fd:1f:b2:
af:6e:7d:46:c9:fd:81:11:ea:aa:9c:0b:35:b1:39:f1:31:0a:
73:1c:01:83:f4:29:ad:89:40:70:a3:3e:af:bc:b9:9d:fc:7c:
4d:2e:39:28:c4:a1:21:39:0a:b1:b9:2f:f1:82:4d:d6:45:06:
bc:ef:3b:38:2f:50:2c:44:94:eb:90:e6:76:bd:a7:a9:52:e8:
1a:89:72:07:99:f1:2d:d3:dc:1f:fe:27:30:d1:c6:8e:d3:c5:
fe:fd:c0:60:9f:0b:e4:3c:d1:67:9f:ef:1c:1e:96:ae:50:79:
83:fa:f1:18:dd:34:02:b2:16:ec:4b:d3:9b:4f:c3:1d:7d:2f:
ea:44:38:5b:6e:95:83:14:08:35:29:2c:06:a1:bb:9f:a6:e1:
87:84:1f:16:09:03:a4:42:ba:67:ab:00:9c:c7:2a:ed:aa:92:
45:65:67:e7:73:f9:26:58:5b:fd:a3:33:57:13:ce:d3:e5:f4:
43:ff:01:58:34:e7:7d:62:43:5a:89:64:c9:81:7a:f4:e7:a4:
9b:ec:c2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:40:39 2026 by rpki-client