Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
File: htljhE-CBdE2lDRTHJmGAMFXgaE.mft (raw, json)
Hash identifier: 6hDkBP1qF3LhIliL21uGO2zzsPylkBY2GNfa3cSowu8=
Subject key identifier: 70:B6:4F:B0:84:4E:ED:9D:16:42:35:F2:59:D8:7B:2F:24:71:D1:7E
Authority key identifier: 86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
Certificate issuer: /CN=86d963844f8205d1369434531c998600c15781a1
Certificate serial: 019E295E4FB8FCE365B0EB71F507CAE38575
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
Manifest number: 0235
Signing time: Fri 15 May 2026 02:01:47 +0000
Manifest this update: Fri 15 May 2026 02:01:47 +0000
Manifest next update: Sat 16 May 2026 02:01:47 +0000
Files and hashes: 1: AL6_iNyYf5_-8MNJEgieEgNDMIY.roa (hash: 0+d8aJSNzAigR1rPUuhEaaIGr2KsvOX77RXS9BnQQ0E=)
2: Ri6eR0hyModJmhU4qRXYfOTF-Qg.roa (hash: vp43LSqg4UfumRnhKAC/q4lMv6KhCs9VlzcPfCyPdH4=)
3: SNSZyMcxHfPqzsZovpnv0TS4kEk.roa (hash: 6uX+ryYbLRIBx9RtsjWqz+fa+ZH7FgeP5Ku25N+gV9g=)
4: htljhE-CBdE2lDRTHJmGAMFXgaE.crl (hash: HQbQgKLuafCB5xnfrMIYJGPxZdreKhdq6kgUiATrhkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5e:4f:b8:fc:e3:65:b0:eb:71:f5:07:ca:e3:85:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d963844f8205d1369434531c998600c15781a1
Validity
Not Before: May 15 02:01:47 2026 GMT
Not After : May 16 02:01:47 2026 GMT
Subject: CN=70b64fb0844eed9d164235f259d87b2f2471d17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ec:4c:c2:8f:9b:f7:07:56:83:18:0f:93:be:
a3:6c:c6:fb:29:40:ca:3e:58:bb:2a:14:f6:55:5b:
97:10:55:d2:87:eb:f1:aa:36:52:3c:00:f7:64:98:
40:25:66:bc:dd:2c:a9:15:40:59:c3:d4:f3:57:c5:
e0:9b:dc:b6:74:e9:77:8e:03:69:01:c8:85:68:66:
5f:82:da:d1:a5:85:57:1f:07:3a:64:0d:10:2e:c3:
d9:61:78:80:b1:94:f8:64:4e:6d:ee:37:e7:7f:9f:
c4:7a:81:37:af:40:5c:46:3e:dc:f4:90:0d:1e:c4:
80:13:68:86:ca:af:e0:de:05:30:92:45:d3:31:86:
17:61:8a:44:8d:7b:d4:e1:62:ac:e1:28:d2:36:3c:
3f:27:db:20:41:22:0f:d0:d8:29:b3:e1:32:38:98:
87:4a:c1:a9:d7:7f:12:87:08:c3:e4:9c:f9:4d:ee:
ea:c2:66:db:b7:ae:83:ff:97:b4:c1:a7:93:7e:c2:
af:3e:b4:7e:39:e0:b4:d5:92:ab:e0:7f:bb:f7:88:
73:0c:a4:60:8a:64:f6:1b:5b:62:7d:32:3e:4e:f3:
c4:9d:8b:63:a5:3a:42:c4:c3:e5:c8:8d:3f:7e:f6:
1b:36:41:9d:bf:12:b3:ed:ea:3f:36:f7:56:cd:59:
82:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B6:4F:B0:84:4E:ED:9D:16:42:35:F2:59:D8:7B:2F:24:71:D1:7E
X509v3 Authority Key Identifier:
keyid:86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:ae:98:22:f5:ef:1c:c7:0f:cc:2c:50:5a:6f:c9:69:c8:72:
09:27:db:a3:b2:bf:ea:0e:b7:15:a2:69:56:3b:e6:fb:79:24:
38:75:ad:ec:4c:9e:b8:6d:e1:d0:39:a0:b4:32:b7:7a:f4:b1:
a6:2c:61:74:d3:30:77:24:7f:d4:ea:77:31:d9:9c:b5:1e:b6:
72:a8:01:31:74:26:79:87:25:8a:29:a0:11:d2:d8:08:8a:da:
6f:34:a2:1c:98:d8:3d:ba:15:5c:cc:b5:b1:90:94:48:00:1e:
57:5f:b5:df:0f:8e:ac:02:49:8b:2a:51:a7:72:cd:7d:d6:d3:
0a:99:0d:22:20:e0:26:29:09:f9:ad:9d:d0:96:bc:a9:ac:ca:
41:95:71:b6:5e:85:f4:4d:ff:db:8b:bd:0f:5d:52:40:96:62:
a5:fd:99:8c:df:c6:26:33:c8:9d:d2:ac:1c:c9:ed:93:54:ee:
26:9f:c2:8b:2f:e6:38:fc:1f:92:7a:d8:2e:38:5e:a0:42:76:
e5:cb:e2:b9:b2:e9:96:66:da:fb:2b:d7:3d:84:25:f4:d4:18:
78:3a:76:fc:78:e3:8d:63:31:eb:1a:2a:4d:d9:af:2d:f7:35:
c7:b5:e1:13:4d:5e:54:5e:bd:dc:c8:6e:df:72:d5:3b:90:e0:
0a:34:78:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:02:59 2026 by rpki-client