Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
File: hw4qIH9pdyFKlXqOFI0fi1pc0II.mft (raw, json)
Hash identifier: 9DLz5in4+Xlf4ivhSiq10Sxm334CCcOCv3/A1mnX0AE=
Subject key identifier: 81:0C:9C:AF:29:12:74:0D:BC:8A:6B:71:62:31:16:DA:44:87:DA:E5
Authority key identifier: 87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
Certificate issuer: /CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Certificate serial: 019EB7A19FBDD8AB000E1C2B81026A82072D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
Manifest number: 0635
Signing time: Thu 11 Jun 2026 17:01:23 +0000
Manifest this update: Thu 11 Jun 2026 17:01:23 +0000
Manifest next update: Fri 12 Jun 2026 17:01:23 +0000
Files and hashes: 1: 1-xuFkRRYNkNx6K_y3gpKzk8bpNU.roa (hash: DSnPrHXS1D+ilU9Cyi7GMDMNOZU+oSTK260zTbsfVyU=)
2: hw4qIH9pdyFKlXqOFI0fi1pc0II.crl (hash: 2w7V+dehrGG/+ggUmPBZVyI6KUW985YqJqZ07Z9Mirc=)
3: qoiSe-yUdTemPI1EK5KhIQZ-WAQ.roa (hash: BzNUsMLYSBasxZtN78dIEsZxiGVfFhzEpfLc24JU6bM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:9f:bd:d8:ab:00:0e:1c:2b:81:02:6a:82:07:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Validity
Not Before: Jun 11 17:01:23 2026 GMT
Not After : Jun 12 17:01:23 2026 GMT
Subject: CN=810c9caf2912740dbc8a6b71623116da4487dae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b1:d9:0e:a3:3f:cf:55:02:cc:f0:fd:06:57:
51:1e:85:a8:ae:69:8f:58:fa:08:7d:61:64:1b:df:
b8:c7:93:e4:57:4c:e7:80:d8:2f:7f:41:12:c3:2b:
1b:47:68:32:f9:cf:fe:30:28:2e:68:23:5f:27:82:
79:fc:16:b5:cf:b8:f1:ff:fb:0d:0f:93:d1:3b:a8:
d4:60:48:9c:57:61:b4:9d:1b:95:f0:f0:ec:fc:8a:
dc:6a:ff:a8:f2:8e:f9:7a:8a:53:63:57:12:b5:6b:
56:f4:ec:43:e5:33:07:23:b4:86:ec:23:0c:09:fd:
c8:44:26:74:28:13:95:be:b5:d2:69:30:34:c5:69:
ea:a5:85:f6:0d:11:3e:be:86:23:4c:cf:69:75:5f:
d0:f9:2a:18:f6:33:17:92:b2:58:da:2e:f0:17:3c:
5c:67:d1:d5:64:0b:d3:4a:2c:e7:ad:1a:dd:01:f7:
23:d0:26:3f:7d:f3:8e:3a:d1:61:03:35:15:1b:e7:
5d:4c:ee:16:98:4a:de:3e:d3:76:ff:b1:72:4f:a7:
5c:e4:3d:9e:22:df:81:dc:c9:f3:2b:21:8e:74:bc:
88:c3:57:e3:7e:44:c1:66:05:85:c1:af:b3:a6:62:
b0:fb:f9:63:b9:a1:69:d7:dd:95:58:92:fb:ea:ae:
67:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0C:9C:AF:29:12:74:0D:BC:8A:6B:71:62:31:16:DA:44:87:DA:E5
X509v3 Authority Key Identifier:
keyid:87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:88:8c:56:35:6c:33:6e:7f:38:bb:eb:cf:33:0d:f0:f2:ea:
98:9a:1e:15:3a:47:e3:c0:cc:a1:20:2c:e8:9d:ef:eb:7a:14:
53:72:aa:1b:cf:d5:82:1f:1f:d7:09:43:48:50:97:dc:0c:30:
5c:d9:65:91:db:82:8a:cc:70:b0:74:cd:df:c1:ef:86:1c:cd:
5d:1c:57:5c:bc:3b:ae:56:41:d5:09:05:d2:4c:19:c7:95:24:
81:63:42:b9:63:cb:0c:a5:40:58:10:1c:40:d8:55:c0:37:2d:
d5:e6:c2:12:86:f7:e0:73:a0:23:85:ca:e5:2d:cc:c8:0b:ef:
4e:66:08:5f:83:e4:69:cb:6b:e2:71:27:8a:30:99:6a:e1:d0:
57:58:f6:76:5d:47:a8:b3:36:b5:5f:6d:ab:50:78:58:69:f3:
58:da:a5:e6:a3:0a:61:0d:92:de:09:54:2f:74:46:fd:a2:9b:
fd:e5:a2:6f:79:51:d4:53:9c:25:f3:4d:df:88:d0:8c:06:24:
18:5e:dc:cf:06:7b:6c:fc:55:89:30:57:93:84:91:f9:1f:46:
dc:d7:6d:c7:39:67:57:a1:eb:49:b4:7b:81:42:7b:d1:ef:ba:
1c:78:a9:d8:7c:e9:31:55:c6:db:26:fb:61:f1:8b:38:4c:03:
0a:73:77:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ63oZ+92KsADhwrgQJqggctMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MGUyYTIwN2Y2OTc3MjE0YTk1N2E4ZTE0OGQxZjhiNWE1
Y2QwODIwHhcNMjYwNjExMTcwMTIzWhcNMjYwNjEyMTcwMTIzWjAzMTEwLwYDVQQD
Eyg4MTBjOWNhZjI5MTI3NDBkYmM4YTZiNzE2MjMxMTZkYTQ0ODdkYWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrHZDqM/z1UCzPD9BldRHoWormmP
WPoIfWFkG9+4x5PkV0zngNgvf0ESwysbR2gy+c/+MCguaCNfJ4J5/Ba1z7jx//sN
D5PRO6jUYEicV2G0nRuV8PDs/Ircav+o8o75eopTY1cStWtW9OxD5TMHI7SG7CMM
Cf3IRCZ0KBOVvrXSaTA0xWnqpYX2DRE+voYjTM9pdV/Q+SoY9jMXkrJY2i7wFzxc
Z9HVZAvTSiznrRrdAfcj0CY/ffOOOtFhAzUVG+ddTO4WmErePtN2/7FyT6dc5D2e
It+B3MnzKyGOdLyIw1fjfkTBZgWFwa+zpmKw+/ljuaFp192VWJL76q5nvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIEMnK8pEnQNvIprcWIxFtpEh9rlMB8GA1UdIwQY
MBaAFIcOKiB/aXchSpV6jhSNH4taXNCCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi80MjExNTgtZjBjNi00NjE5LWFmYTUt
OGE5NDY4N2RiYTZmLzEvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi80MjExNTgtZjBjNi00NjE5LWFmYTUtOGE5NDY4N2RiYTZm
LzEvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApIiMVjVs
M25/OLvrzzMN8PLqmJoeFTpH48DMoSAs6J3v63oUU3KqG8/Vgh8f1wlDSFCX3Aww
XNllkduCisxwsHTN38HvhhzNXRxXXLw7rlZB1QkF0kwZx5UkgWNCuWPLDKVAWBAc
QNhVwDct1ebCEob34HOgI4XK5S3MyAvvTmYIX4Pkactr4nEnijCZauHQV1j2dl1H
qLM2tV9tq1B4WGnzWNql5qMKYQ2S3glUL3RG/aKb/eWib3lR1FOcJfNN34jQjAYk
GF7czwZ7bPxViTBXk4SR+R9G3NdtxzlnV6HrSbR7gUJ70e+6HHip2HzpMVXG2yb7
YfGLOEwDCnN3xA==
-----END CERTIFICATE-----
Generated at Thu Jun 11 19:03:31 2026 by rpki-client