Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
File: htljhE-CBdE2lDRTHJmGAMFXgaE.mft (raw, json)
Hash identifier: LyNbiiwVtcN+Ax/CQFhoARdYtzjnnEdr6znrU4L12wk=
Subject key identifier: E0:6D:02:A4:3E:FD:F4:93:78:03:98:A6:69:B2:02:DC:F4:14:F1:A8
Authority key identifier: 86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
Certificate issuer: /CN=86d963844f8205d1369434531c998600c15781a1
Certificate serial: 019F111BD65FDADD697D5FE14453941C0E6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
Manifest number: 02AD
Signing time: Mon 29 Jun 2026 02:01:04 +0000
Manifest this update: Mon 29 Jun 2026 02:01:04 +0000
Manifest next update: Tue 30 Jun 2026 02:01:04 +0000
Files and hashes: 1: AL6_iNyYf5_-8MNJEgieEgNDMIY.roa (hash: 0+d8aJSNzAigR1rPUuhEaaIGr2KsvOX77RXS9BnQQ0E=)
2: Ri6eR0hyModJmhU4qRXYfOTF-Qg.roa (hash: vp43LSqg4UfumRnhKAC/q4lMv6KhCs9VlzcPfCyPdH4=)
3: SNSZyMcxHfPqzsZovpnv0TS4kEk.roa (hash: 6uX+ryYbLRIBx9RtsjWqz+fa+ZH7FgeP5Ku25N+gV9g=)
4: htljhE-CBdE2lDRTHJmGAMFXgaE.crl (hash: +5FFEAkMdTG5c6vEV6bgtbIdZkMvXkMQ9NvM/tMokDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1b:d6:5f:da:dd:69:7d:5f:e1:44:53:94:1c:0e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d963844f8205d1369434531c998600c15781a1
Validity
Not Before: Jun 29 02:01:04 2026 GMT
Not After : Jun 30 02:01:04 2026 GMT
Subject: CN=e06d02a43efdf493780398a669b202dcf414f1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:07:61:1d:07:4b:76:aa:bf:5f:60:60:ae:31:
3c:5d:d5:aa:92:38:71:1b:7b:44:7e:29:98:76:7d:
3a:c1:a2:95:bf:26:40:8a:b3:e8:b1:4c:1e:e2:cb:
ed:c2:a1:22:9e:83:c5:4a:62:76:45:e3:a9:98:bd:
cb:9d:de:2c:32:2d:9b:93:a2:0c:a3:90:44:c8:6d:
02:39:d8:a8:ef:84:66:f4:65:41:47:20:75:8c:94:
f3:c1:0a:30:e7:79:de:3b:2e:91:0e:03:df:72:de:
52:9d:8d:12:cd:33:62:5e:f9:dd:25:e0:7b:7f:b1:
53:11:53:c3:6e:82:67:02:a8:e4:ac:f0:c0:f0:44:
8c:f2:15:19:fb:5d:80:ba:65:c2:c2:27:56:0c:7f:
71:12:6d:81:c7:9a:9e:a9:50:0d:f9:4c:31:57:1a:
10:15:15:ad:3c:4d:83:01:35:71:9b:08:de:81:a8:
cc:af:17:c5:7b:83:b9:ff:fc:7d:62:aa:5b:eb:46:
a7:f4:e2:a8:dd:f5:9b:35:37:60:c9:a9:82:55:1a:
f7:da:19:be:59:6a:e9:75:2a:b1:ec:49:4a:b2:01:
47:f8:0f:2f:5c:58:ec:08:5a:f4:34:85:91:b0:2e:
ab:a9:70:59:93:73:75:f0:8d:aa:80:71:e4:66:ed:
74:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6D:02:A4:3E:FD:F4:93:78:03:98:A6:69:B2:02:DC:F4:14:F1:A8
X509v3 Authority Key Identifier:
keyid:86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:ff:e7:28:1b:e2:d0:94:e4:68:14:a6:95:04:ed:e7:70:3c:
c7:01:9f:7d:86:66:e2:44:44:d0:f4:31:38:9f:b1:17:f9:44:
0c:23:ae:eb:4c:7b:f0:e9:39:7e:93:4d:48:31:d5:85:a4:43:
ef:d9:1f:7f:ae:79:3e:ef:ee:0f:b1:2c:41:c4:87:4a:0e:76:
39:f6:94:fa:9a:2a:bd:aa:84:1f:76:21:7e:0b:20:b5:ce:ee:
93:03:2c:ff:a8:13:59:43:18:6b:d9:16:7d:a7:80:9a:94:e4:
2f:76:f0:54:c4:ae:96:8f:46:ef:81:02:46:8b:05:e6:e0:57:
87:9b:85:42:7d:c9:4d:bc:94:b4:3c:15:7e:a2:70:f1:73:d5:
08:1b:44:fa:e2:5b:95:c3:28:60:8c:5d:0b:87:03:cd:f5:65:
05:75:78:85:03:fd:20:30:68:13:ce:08:d4:62:4a:6b:13:27:
08:c7:c2:31:e6:47:a3:d6:6a:4b:0c:91:ad:9f:1d:48:8f:67:
43:e4:5d:a9:a5:8c:78:1c:c4:cd:1b:30:01:1b:7e:56:7e:75:
7a:6d:f7:67:57:c0:cf:63:6c:f1:0c:bf:6c:a4:73:e6:ed:39:
4f:3b:4f:60:74:f8:99:da:be:b6:cf:d6:43:d5:e0:be:7a:c1:
62:f2:1b:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RG9Zf2t1pfV/hRFOUHA5vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDk2Mzg0NGY4MjA1ZDEzNjk0MzQ1MzFjOTk4NjAwYzE1
NzgxYTEwHhcNMjYwNjI5MDIwMTA0WhcNMjYwNjMwMDIwMTA0WjAzMTEwLwYDVQQD
EyhlMDZkMDJhNDNlZmRmNDkzNzgwMzk4YTY2OWIyMDJkY2Y0MTRmMWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAigdhHQdLdqq/X2BgrjE8XdWqkjhx
G3tEfimYdn06waKVvyZAirPosUwe4svtwqEinoPFSmJ2ReOpmL3Lnd4sMi2bk6IM
o5BEyG0COdio74Rm9GVBRyB1jJTzwQow53neOy6RDgPfct5SnY0SzTNiXvndJeB7
f7FTEVPDboJnAqjkrPDA8ESM8hUZ+12AumXCwidWDH9xEm2Bx5qeqVAN+UwxVxoQ
FRWtPE2DATVxmwjegajMrxfFe4O5//x9Yqpb60an9OKo3fWbNTdgyamCVRr32hm+
WWrpdSqx7ElKsgFH+A8vXFjsCFr0NIWRsC6rqXBZk3N18I2qgHHkZu10rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOBtAqQ+/fSTeAOYpmmyAtz0FPGoMB8GA1UdIwQY
MBaAFIbZY4RPggXRNpQ0UxyZhgDBV4GhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9hMjg5ZWItNDVjZS00NjE4LTg1N2Yt
NzgxODlkMDE1Mjg2LzEvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9hMjg5ZWItNDVjZS00NjE4LTg1N2YtNzgxODlkMDE1Mjg2
LzEvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOf/nKBvi
0JTkaBSmlQTt53A8xwGffYZm4kRE0PQxOJ+xF/lEDCOu60x78Ok5fpNNSDHVhaRD
79kff655Pu/uD7EsQcSHSg52OfaU+poqvaqEH3Yhfgsgtc7ukwMs/6gTWUMYa9kW
faeAmpTkL3bwVMSulo9G74ECRosF5uBXh5uFQn3JTbyUtDwVfqJw8XPVCBtE+uJb
lcMoYIxdC4cDzfVlBXV4hQP9IDBoE84I1GJKaxMnCMfCMeZHo9ZqSwyRrZ8dSI9n
Q+RdqaWMeBzEzRswARt+Vn51em33Z1fAz2Ns8Qy/bKRz5u05TztPYHT4mdq+ts/W
Q9XgvnrBYvIbBA==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:43:24 2026 by rpki-client