Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
File: hB6IIdAaloi57nryrruVnLvtBys.mft (raw, json)
Hash identifier: KBJsOqS8rJ/QQ9YRdkvEXyoT6GnMtVCdnVTvh2jZyEM=
Subject key identifier: 80:DA:BD:50:A0:03:3B:8C:32:3F:20:A5:80:5A:7C:3C:2C:A3:4F:DD
Authority key identifier: 84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
Certificate issuer: /CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Certificate serial: 019DF9F21FAFA6C55D5DDE49F758B9FFE010
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
Manifest number: 0128
Signing time: Tue 05 May 2026 21:01:27 +0000
Manifest this update: Tue 05 May 2026 21:01:27 +0000
Manifest next update: Wed 06 May 2026 21:01:27 +0000
Files and hashes: 1: eQ8pUqqadp9cp4FYzeNplhCqiz8.roa (hash: RF09/EJZQF5XIgJSe7QHfYgaZkhCRVhxSpLB2BRdPks=)
2: hB6IIdAaloi57nryrruVnLvtBys.crl (hash: 7Uxd2H4oq5BiMQeYFzLLsZVFYIPHBmJRefpAhuhBzbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 May 2026 21:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f9:f2:1f:af:a6:c5:5d:5d:de:49:f7:58:b9:ff:e0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Validity
Not Before: May 5 21:01:27 2026 GMT
Not After : May 6 21:01:27 2026 GMT
Subject: CN=80dabd50a0033b8c323f20a5805a7c3c2ca34fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d2:15:2e:0d:2f:38:5c:3b:74:2c:73:ed:24:
5f:f3:6f:7f:ca:1b:e6:0c:22:d9:52:3e:14:38:2a:
79:88:08:62:8b:ac:15:8d:be:14:c2:c5:65:22:c4:
a1:56:08:5d:41:b2:06:45:47:9b:ce:2b:a3:4e:87:
03:81:1a:4a:94:02:b9:01:41:fa:36:19:c7:77:d8:
33:ae:d9:c3:6c:c0:39:53:a1:e2:5e:84:5d:53:6f:
ac:aa:89:f6:17:bb:29:04:04:7f:71:19:1b:a9:b6:
57:ec:d5:29:30:c8:e3:30:14:47:4f:49:c3:a7:4b:
c6:27:c2:e2:61:fc:64:0b:0d:c4:45:b6:5c:03:3a:
5c:d5:92:bf:92:76:65:a2:92:9b:50:4c:5d:6b:6c:
73:8e:81:b5:13:2a:61:b7:2d:81:51:c1:b6:e9:e3:
27:12:9b:39:bd:24:0c:6c:33:22:d2:56:24:36:87:
30:72:b1:88:dc:d9:77:fc:fd:a3:73:af:ff:32:1c:
e0:df:4a:bc:99:bd:05:6e:7e:e5:02:c5:33:9c:b6:
33:24:78:9e:4e:c0:be:e8:ee:86:c7:fd:57:6b:75:
73:9d:65:b2:0b:c7:dc:22:81:5d:b6:2b:18:54:dd:
82:35:00:d4:1d:bc:f0:1e:dc:07:df:7c:49:de:a1:
a8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DA:BD:50:A0:03:3B:8C:32:3F:20:A5:80:5A:7C:3C:2C:A3:4F:DD
X509v3 Authority Key Identifier:
keyid:84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:01:99:c0:1e:c5:e1:e5:a1:72:be:0f:f3:f6:8b:1c:37:df:
d6:c7:8f:a1:dc:5b:62:f4:34:f0:7f:e5:ad:63:4f:87:e0:d0:
c8:35:50:ae:52:bb:be:5a:ae:da:67:73:45:9e:48:9c:d1:46:
f5:53:bc:6f:80:05:47:73:81:9f:ee:45:53:a3:9c:02:61:27:
34:15:86:ef:34:e7:70:f4:aa:1b:55:0a:d7:35:97:64:34:fd:
93:28:49:9d:ae:07:df:55:1c:ce:d0:0e:bf:c2:37:7c:c8:82:
e4:37:d1:d0:5b:33:13:11:ec:99:4b:86:29:18:8b:46:94:5f:
f5:07:a7:38:71:72:1f:76:e8:95:df:ae:ff:a0:76:26:90:cb:
a4:80:29:48:cc:91:09:89:54:d6:5d:db:f2:2b:e1:41:7f:4b:
c7:ad:fe:4d:1e:de:e5:61:a2:f2:91:80:c4:47:da:94:d3:7b:
87:92:17:d5:47:06:de:20:d8:91:6f:99:37:0c:82:c7:7f:91:
36:6c:13:ed:36:a8:f7:8e:da:01:bc:63:83:a7:17:70:f1:2c:
a3:ff:49:f7:c2:c5:be:04:ac:6a:5c:a9:61:ce:f3:2f:f5:33:
b4:08:c1:8a:ca:a2:31:12:c3:c8:23:79:c2:71:0f:25:bd:7c:
91:97:79:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 06:37:29 2026 by rpki-client