Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: cG6AQ5LuWmengGIB4G8gVFnPWtt2vQXftf5JmOdNQO4=
Subject key identifier: 26:AD:7F:F2:57:AC:FD:1C:1E:62:93:EF:99:98:72:6D:01:33:F7:3E
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019D382E3C9EA1D810A7076FDB9DD7AF1591
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 04A5
Signing time: Sun 29 Mar 2026 06:00:47 +0000
Manifest this update: Sun 29 Mar 2026 06:00:47 +0000
Manifest next update: Mon 30 Mar 2026 06:00:47 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: L8kOh4/vgk6OE96lDAuvZbf1FcyvpFg20Hp4aPSHGBQ=)
2: dyF34pZ8GCNuzl4YTk3EiPwDm3c.roa (hash: m2G1ChPDfy1n+0PrTlF39X/Rm+KnLUW3QVpj1zhgqDI=)
3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:3c:9e:a1:d8:10:a7:07:6f:db:9d:d7:af:15:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Mar 29 06:00:47 2026 GMT
Not After : Mar 30 06:00:47 2026 GMT
Subject: CN=26ad7ff257acfd1c1e6293ef9998726d0133f73e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:96:b0:59:76:e9:99:f7:76:95:b1:91:80:ea:
29:c4:21:4b:75:db:cc:a8:04:fa:00:54:f7:82:3f:
4f:46:b9:26:3d:1b:c6:90:6b:bf:c5:3f:e3:be:ad:
43:1c:d7:4e:67:1d:d7:c9:fc:38:e5:5f:4e:66:51:
df:26:1c:72:1f:25:b3:b1:64:02:78:f8:b5:67:c4:
7c:09:cc:fb:00:6c:e6:15:c0:a0:94:ae:7c:eb:11:
36:7d:cf:a0:f1:18:c7:77:4f:1a:e6:b7:1d:2a:b9:
3a:a7:46:ea:aa:95:8b:99:16:01:d8:76:aa:a5:a9:
f0:fa:d1:3a:d7:90:96:73:53:d0:1f:f9:03:58:a4:
a0:11:58:20:cc:be:e7:e8:2d:61:4b:83:b6:2e:ba:
c1:fe:aa:19:9a:ec:21:b1:6b:07:84:d7:1b:1e:58:
85:5d:b9:d4:12:ce:70:09:a7:6e:83:2f:7c:55:b4:
45:b8:e4:67:3b:db:11:8d:8f:a5:df:0e:da:b3:14:
ad:89:51:f1:93:ae:17:87:8d:37:f0:4a:24:8f:c6:
3f:0b:7b:46:ab:03:23:b1:d3:89:ca:00:89:34:79:
f2:1b:f2:49:f8:a2:77:18:0a:54:7f:68:03:0a:d5:
6e:e9:ba:e3:08:bd:e0:0d:8b:c9:7c:a0:8c:ea:99:
76:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AD:7F:F2:57:AC:FD:1C:1E:62:93:EF:99:98:72:6D:01:33:F7:3E
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:2e:5f:6a:f5:67:fe:df:2f:57:ec:b7:d2:e1:38:fa:ca:83:
a3:02:e4:8b:8d:33:b3:6b:29:17:4a:97:ee:21:87:2c:c4:9a:
3c:33:4c:39:57:a3:15:50:28:b1:f5:60:9e:78:42:0e:07:e4:
55:b6:9a:7b:5c:30:91:7a:05:39:c8:3d:86:5c:a2:28:68:fb:
7b:e0:1f:87:d1:97:ff:e6:d2:b8:00:91:f3:49:6b:a6:94:d2:
6f:15:5b:18:ac:3e:db:dc:a0:16:1a:e0:be:f2:a9:7a:0c:2a:
95:1e:9c:1a:ca:e0:1b:16:30:5a:d3:1e:4d:8b:ec:3f:f3:5b:
24:81:d0:b4:ca:ad:5e:fb:6b:61:26:76:1d:ff:1c:a3:20:dc:
09:3c:b9:20:f3:9d:2a:b4:78:4f:29:25:11:f2:ff:91:85:2c:
bc:4c:8c:6b:04:9b:aa:87:fb:8a:94:26:5d:a7:bf:d8:af:9b:
aa:a1:79:c1:17:e2:f6:72:37:4b:0b:28:33:be:76:18:ea:30:
65:86:a9:ec:ff:b2:75:e9:92:3f:bb:6c:95:a7:91:0b:29:04:
81:b3:99:49:05:26:24:91:a6:87:90:b4:f9:9c:52:1a:31:01:
44:c9:3d:f5:f3:f9:fe:ed:c5:a2:8d:d0:50:8f:8c:00:21:6d:
b3:00:50:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:50 2026 by rpki-client