Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
File: hw4qIH9pdyFKlXqOFI0fi1pc0II.mft (raw, json)
Hash identifier: zuV5ZK8xbsfIrIca9/6HTl2sFTFW8XVPUjHKUnQb+eA=
Subject key identifier: 97:A5:78:90:DE:8F:53:9D:EC:17:35:97:4A:BD:CE:51:A6:AF:F9:05
Authority key identifier: 87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
Certificate issuer: /CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Certificate serial: 019EB5B381A79DE599231570EAE2EB499537
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
Manifest number: 0634
Signing time: Thu 11 Jun 2026 08:01:40 +0000
Manifest this update: Thu 11 Jun 2026 08:01:40 +0000
Manifest next update: Fri 12 Jun 2026 08:01:40 +0000
Files and hashes: 1: 1-xuFkRRYNkNx6K_y3gpKzk8bpNU.roa (hash: DSnPrHXS1D+ilU9Cyi7GMDMNOZU+oSTK260zTbsfVyU=)
2: hw4qIH9pdyFKlXqOFI0fi1pc0II.crl (hash: 8Yh+wcASW0EgsWe8RbgRpV3a6di/QPpPCQk7n+KYTBM=)
3: qoiSe-yUdTemPI1EK5KhIQZ-WAQ.roa (hash: BzNUsMLYSBasxZtN78dIEsZxiGVfFhzEpfLc24JU6bM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:b3:81:a7:9d:e5:99:23:15:70:ea:e2:eb:49:95:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Validity
Not Before: Jun 11 08:01:40 2026 GMT
Not After : Jun 12 08:01:40 2026 GMT
Subject: CN=97a57890de8f539dec1735974abdce51a6aff905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:f8:78:67:96:ea:c6:22:0a:da:2d:36:a4:
be:55:ea:3d:7e:8c:fc:f9:70:d7:0c:63:b5:01:e5:
a0:02:fe:40:1e:4e:43:43:2a:c2:3a:2f:8f:d5:0b:
e3:35:15:84:d4:cf:0f:b8:01:77:b9:5c:36:77:e9:
2a:ca:56:62:81:37:03:19:a2:9e:82:34:8a:1e:59:
c6:e7:67:f4:c4:f4:e9:03:23:7e:2a:7e:c7:77:d1:
63:cb:47:c6:b8:07:6b:4c:64:54:a0:56:0c:d1:5e:
27:a6:a6:1d:bf:72:2f:ee:b0:39:83:e4:8e:b2:1f:
2e:18:ea:51:fc:24:ed:6f:0d:79:c1:84:ff:ec:6a:
86:24:6f:ff:06:30:13:ce:58:d1:c4:7a:31:0b:93:
9d:c1:c0:bf:f2:17:c6:45:b8:53:9f:92:49:5e:22:
74:44:ff:fd:67:e6:b6:c8:d4:15:ea:89:0a:8e:52:
ea:5e:e9:5f:3a:ee:59:c2:8b:ef:74:7c:38:22:78:
e4:3c:98:1b:bb:45:50:21:97:62:84:b9:5d:16:37:
5c:65:07:54:95:76:3c:3d:65:b5:ff:08:24:3f:4c:
1a:5d:03:3a:7b:9f:bf:7a:5e:d8:8a:82:de:93:7f:
8a:64:78:9f:24:67:96:b2:9d:57:a6:2e:a4:f4:58:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A5:78:90:DE:8F:53:9D:EC:17:35:97:4A:BD:CE:51:A6:AF:F9:05
X509v3 Authority Key Identifier:
keyid:87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:8b:fc:34:39:48:72:39:2d:a3:f4:48:d4:5a:b1:2c:e9:3a:
3a:12:06:b2:c0:3e:e3:82:86:11:43:17:6c:27:3f:de:06:fc:
d1:3c:f9:6d:bc:60:a7:ec:3a:cb:be:05:1d:56:fb:df:ce:9a:
c9:bb:8b:a9:9c:9a:e2:2a:fb:6d:41:5d:b0:a4:cd:c6:54:09:
ff:ac:3a:58:6f:29:e6:ef:55:64:75:75:39:9d:36:94:c6:18:
ad:68:8b:3d:b9:28:da:64:86:8a:93:df:1c:34:6f:14:81:65:
f6:96:cc:2e:c0:ae:03:5c:85:eb:42:59:28:8e:fb:c6:b1:9d:
bb:43:da:7e:15:4d:63:f3:7d:8f:de:0f:d2:a0:97:68:71:07:
72:92:39:e8:18:e8:ea:dd:9c:d2:8a:2a:80:07:e2:90:64:18:
cb:8f:6e:32:95:1e:d4:ec:a1:03:9e:3e:ed:8a:7c:e4:a5:52:
03:de:89:c1:d0:6f:05:4e:5f:d0:eb:7e:13:31:52:c6:6d:88:
85:3a:5f:00:58:0c:fc:0a:f0:c8:b3:32:53:07:4b:dd:b1:25:
28:fc:b7:66:87:34:b1:10:e6:ef:47:87:8d:96:60:47:ae:e0:
33:12:89:dd:0c:09:20:56:f9:82:77:4e:83:14:c5:bd:3b:80:
cc:14:ff:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:54:14 2026 by rpki-client