Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: VlR8V6hsAHIyeFA2y1wD9ooPin1SXfzlpRLWFBCfRUM=
Subject key identifier: 0B:3D:D4:AA:5A:AC:E6:AD:35:5E:5F:E5:5C:6F:A9:CB:B5:CF:A1:FA
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019EB921A0625E6CFADAD3DE79465BB5D158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 056D
Signing time: Fri 12 Jun 2026 00:00:49 +0000
Manifest this update: Fri 12 Jun 2026 00:00:49 +0000
Manifest next update: Sat 13 Jun 2026 00:00:49 +0000
Files and hashes: 1: 1-eF7e7FBTv1kNZvAqKgKcchP_r8.roa (hash: NJzA8zp4PiibAViDgdZjRywfinrsmcRR8mpxvA7kUN8=)
2: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: Qa1pPsDiq9zZ9c7/OMVQbWief32JSxU/mC0Ic/vmwGo=)
3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:a0:62:5e:6c:fa:da:d3:de:79:46:5b:b5:d1:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Jun 12 00:00:49 2026 GMT
Not After : Jun 13 00:00:49 2026 GMT
Subject: CN=0b3dd4aa5aace6ad355e5fe55c6fa9cbb5cfa1fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c8:c2:52:68:0a:82:01:7b:50:75:0b:8c:76:
79:a9:a7:ce:2b:6a:dd:75:e2:0d:8e:71:3b:b2:45:
31:c3:0d:cf:2b:18:66:91:30:ec:9e:c6:77:d4:f6:
ba:bc:1d:4f:20:f9:51:27:b7:23:a8:70:5a:40:9a:
8f:dc:cb:68:b1:2e:67:9a:5f:ac:3c:ba:8e:d0:fa:
36:5b:f6:65:68:73:96:86:6e:00:53:d5:40:ea:53:
2c:f7:07:e8:47:46:5b:e2:a0:df:97:9b:f3:3d:bd:
b3:5b:5f:a5:0a:b0:11:73:b4:c0:fd:3f:42:2e:ae:
e6:2f:da:a1:77:67:be:9d:10:d7:1d:9d:43:0c:cc:
8b:2b:c2:b4:5f:e6:45:da:ed:b8:d6:f9:ec:fa:c1:
33:d0:64:0a:00:36:4b:bf:10:59:bf:8d:34:b9:a7:
be:7b:f2:ea:c5:a5:e0:53:01:be:c9:4d:2d:0d:dc:
69:e5:4d:2c:66:d2:f0:9b:cc:12:b4:ed:3e:a8:62:
9f:2c:47:32:80:3d:30:a2:76:df:c7:6f:e7:97:20:
5f:4f:0c:7d:70:bc:9e:35:01:85:5f:6e:44:a6:8f:
c2:91:8c:53:b0:d6:52:3b:0a:18:96:47:03:f3:4f:
8a:27:dc:01:dd:5d:81:96:4a:0c:01:b6:5b:40:6a:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3D:D4:AA:5A:AC:E6:AD:35:5E:5F:E5:5C:6F:A9:CB:B5:CF:A1:FA
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:76:89:15:b8:cb:c0:ef:6c:67:d1:3f:26:f6:cd:2b:b9:10:
87:40:0c:67:8f:35:a9:a1:2b:f1:51:17:20:8d:e5:e5:32:21:
22:00:0b:6d:a2:db:c4:a3:fa:32:34:68:61:ec:3e:a7:b0:59:
42:9c:5e:a0:33:9b:41:be:52:7e:a4:d9:dc:30:7a:e2:aa:8f:
21:ca:e5:19:bf:16:2c:98:12:a9:87:e1:48:21:ad:30:a0:a2:
c8:49:51:ef:e0:4a:51:22:d0:27:d9:7b:48:01:69:2a:ba:a6:
17:10:4a:4c:09:88:dc:f3:bd:14:05:d7:a0:a8:e6:12:16:45:
69:d7:7b:83:c6:1b:0a:0f:fd:85:a7:4d:db:ca:f3:40:a8:1d:
eb:38:e2:e5:6c:35:d3:31:80:db:a6:bf:7f:ce:8f:a3:7f:7a:
a2:57:dc:16:14:ff:22:1a:99:a3:21:88:af:3f:ea:83:79:91:
3e:c8:e2:28:be:68:66:92:53:c4:eb:76:44:d0:80:55:68:24:
74:fa:98:98:79:2b:21:00:19:9f:57:00:80:85:4e:bb:a6:d0:
f3:d9:3c:f9:dc:d4:f9:05:7c:30:a0:7f:39:bd:1d:ed:9e:49:
12:f4:64:4a:56:f8:d0:69:63:46:3c:d3:9d:72:63:22:39:bd:
f2:db:9c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:45:51 2026 by rpki-client