Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: c7dw1aI4kEK/zaWpZEL7ZIAQvc4hXquFsdSXCBuEksg=
Subject key identifier: 9C:46:DF:26:A5:28:7B:6B:09:86:61:5E:89:25:07:FF:D3:AD:DB:84
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 019E32CF659537B4B3753B437D3B27A4E163
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 18A5
Signing time: Sat 16 May 2026 22:01:53 +0000
Manifest this update: Sat 16 May 2026 22:01:53 +0000
Manifest next update: Sun 17 May 2026 22:01:53 +0000
Files and hashes: 1: HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa (hash: cUV79+nq1UfEgnpECvrj1jXV8gIvKA75fQt4Y8wK7Xg=)
2: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: xMqEPI9QM7HTXyv+YsFNo5tHD9uJbY3fMljfbuWQjGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:cf:65:95:37:b4:b3:75:3b:43:7d:3b:27:a4:e1:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: May 16 22:01:53 2026 GMT
Not After : May 17 22:01:53 2026 GMT
Subject: CN=9c46df26a5287b6b0986615e892507ffd3addb84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:dc:f9:36:85:db:6a:b4:1e:48:a5:a0:af:b7:
0e:d1:7a:36:f5:d9:f4:cb:72:77:40:fc:8e:2a:42:
95:4e:6f:af:48:ec:3a:34:67:04:e6:9f:d3:f2:43:
9a:28:61:93:98:1a:1f:cc:27:d7:6d:fe:99:de:4a:
34:25:37:1b:ac:77:de:11:db:c8:f9:1e:41:28:77:
98:01:0e:88:68:75:39:dd:d5:79:e5:28:53:6f:34:
dc:13:40:b7:90:4b:09:6b:c0:d7:20:2b:77:61:f2:
81:51:95:bc:a8:1f:7f:40:d1:a0:df:56:f4:83:56:
76:c1:5f:4d:3f:96:04:7f:e4:39:94:62:59:12:a7:
b0:49:02:af:00:ed:b1:5b:78:9e:d3:97:4f:e6:07:
6e:ab:ed:14:ca:07:10:1c:4f:75:c4:0c:b3:2e:0c:
51:39:09:f3:ef:24:5b:24:24:ca:65:ee:c0:5c:74:
9e:50:0f:6f:d6:a6:49:b1:ea:20:fe:38:32:c2:11:
98:fa:3d:9e:68:3a:38:83:a3:26:a3:bd:9c:d2:d1:
4c:af:1b:04:4e:54:77:71:43:9a:13:8e:3a:85:fb:
d7:2e:a6:51:01:88:8c:a3:fc:98:1e:e3:2b:04:4f:
5f:7e:3a:bd:2d:11:28:cd:6b:70:5d:4e:07:d8:7a:
e6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:46:DF:26:A5:28:7B:6B:09:86:61:5E:89:25:07:FF:D3:AD:DB:84
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:07:eb:01:16:af:ab:be:cd:28:91:f8:60:bb:c5:9f:08:30:
10:94:4d:91:b1:dc:b4:ce:98:01:0a:42:f5:f0:f1:b9:2d:48:
3d:06:90:ea:18:ff:e9:2a:aa:28:71:ec:3a:c7:be:52:ae:64:
fa:d1:b9:7b:5f:35:51:0c:2b:9e:8e:8a:28:ed:08:c3:20:28:
21:dc:5b:4b:8a:c6:9f:8a:9c:f3:ad:a5:15:64:d6:cc:90:91:
91:cb:46:f9:fc:d4:2d:97:e4:64:7e:24:82:f6:a2:2d:69:f0:
99:92:21:bd:c5:a6:d6:58:ef:77:7d:13:bf:69:b8:42:24:8f:
79:00:86:f8:b7:ed:65:90:a3:ea:b0:5e:00:1e:e7:ea:b7:0a:
a2:cf:64:c1:ee:9c:2e:da:3c:dd:2c:b3:d7:6a:a7:c4:56:4a:
63:b5:8b:af:70:3b:b2:83:f7:99:50:6e:af:df:60:64:9c:17:
79:42:34:2c:3b:50:a8:9d:64:e4:05:56:93:9f:61:db:21:a2:
4f:9d:36:88:5b:cf:5e:99:01:bd:84:33:2b:75:5b:18:cb:73:
7a:26:f0:dc:1a:74:99:5f:f9:59:f8:55:ba:81:c5:dc:33:c7:
0a:be:ea:8c:60:42:2f:37:93:ad:c9:72:91:1f:af:0e:f2:a7:
c5:d7:f1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 01:13:34 2026 by rpki-client