Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: +vlln2jcEI/wnttd16d018q5dgc5XQ4NXe63WlqbnTY=
Subject key identifier: 8E:4B:C7:15:08:1C:D7:F7:D7:6A:EA:B1:C6:57:57:2B:7F:2C:C0:A1
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 019E5F70ABA8B05CC11565381320161C29EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 1935
Signing time: Mon 25 May 2026 14:01:19 +0000
Manifest this update: Mon 25 May 2026 14:01:19 +0000
Manifest next update: Tue 26 May 2026 14:01:19 +0000
Files and hashes: 1: 1aorfBEtrS5GmOfmJCAhL86Ev9o.roa (hash: nVeN0o0LJkNxID8TEKJoSJ7nvDwzMLsmkaxY6SDeSaE=)
2: CK71SVGMQvNYFiW5KGhDGS1PQHc.roa (hash: r61M2ZZlqNsyDc86Qjl5RPp7XeiHVLEfwsLRfTZBiUc=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: kncQc3ab0WB9WV9tqh5I5JoHD5I6UR4iX3LLyW+7B6Q=)
4: fOW3H14_lNm1iDhWjXaIqWKMWbQ.roa (hash: NjeJMjLAwib7kI9R6bBAvlSQ3u06oCd8M7nsEfBEf4U=)
5: yc6fB0dTyEp0nOMNxIt14wYewvg.roa (hash: q9oC20lhVIuMqPVEpkCEXpIKxa5TMW49W8VfYHcjYb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5f:70:ab:a8:b0:5c:c1:15:65:38:13:20:16:1c:29:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: May 25 14:01:19 2026 GMT
Not After : May 26 14:01:19 2026 GMT
Subject: CN=8e4bc715081cd7f7d76aeab1c657572b7f2cc0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:21:53:7d:5c:d8:b6:dc:c3:d5:32:69:50:fa:
ed:9e:60:bd:10:66:c2:90:c7:60:9a:f1:0e:1a:06:
30:18:86:8b:97:ae:c5:7f:85:10:fd:94:e3:3b:ad:
e5:20:c0:37:da:a3:5a:95:ad:a4:e7:f9:be:8a:5b:
5e:b7:d1:d0:19:3b:90:71:06:db:9a:da:55:58:a2:
67:f3:3f:1b:1e:2a:67:a0:a1:83:6f:fd:65:a5:08:
d6:44:30:20:fc:78:60:5a:77:6b:7a:8c:67:ec:ee:
46:65:84:d6:16:5e:fc:f8:a9:f6:c6:5c:8d:51:62:
49:9c:21:5b:dc:b0:2c:93:f4:55:39:fa:6c:b6:e5:
da:c9:7f:85:c3:8a:fe:f3:97:c2:b9:94:59:21:9d:
c8:d1:d2:9e:3e:36:97:ff:5e:ec:24:ae:aa:71:d1:
19:0f:68:78:c8:e6:d1:4a:67:1f:eb:a1:1d:13:30:
df:e1:1f:10:cb:0e:a0:47:f1:a5:b4:ad:a4:4f:c2:
9a:69:13:29:a2:3e:64:2c:79:7b:05:3c:c1:a7:42:
49:58:81:67:8b:86:a2:9e:7f:45:2b:ad:8d:80:37:
81:22:4e:e4:a3:9e:64:04:4a:c1:09:ec:5c:9b:d4:
83:de:a1:97:f1:ef:1a:03:ce:60:82:b1:1a:8a:83:
21:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4B:C7:15:08:1C:D7:F7:D7:6A:EA:B1:C6:57:57:2B:7F:2C:C0:A1
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:82:c6:b3:56:e2:cd:2a:b7:42:ba:0b:b0:fd:dc:6e:07:c1:
97:eb:dc:da:f6:ac:b5:9b:30:7d:50:cf:84:f9:58:32:26:fc:
90:90:c1:43:bd:23:65:2d:d1:dd:e3:4a:0f:6c:13:8a:a9:1b:
a7:bf:2c:4e:81:7e:c4:a3:4e:ac:09:2a:23:b7:bb:d0:8f:d5:
e3:16:6f:9c:4a:a9:22:0f:49:ac:3f:56:76:2f:19:b6:8d:52:
6a:ba:36:dd:e2:c0:e2:9f:7d:89:a9:4a:dd:2c:bb:f9:27:64:
01:3c:d5:55:03:65:d7:c1:03:d9:65:4e:ba:72:73:50:7d:4f:
b2:5e:91:93:08:a2:46:7e:85:01:00:e5:91:ee:7e:09:24:f1:
27:c7:c0:ee:e1:9d:65:d1:1f:31:02:77:a8:da:9b:5f:74:c1:
eb:c5:8d:2b:cd:49:02:da:3d:62:c3:48:ea:f3:76:91:22:50:
01:70:50:08:31:20:06:bb:a4:8d:2b:04:7c:60:46:70:7a:7f:
93:ae:51:9c:3a:22:0b:9f:82:3b:25:7f:0e:69:d4:35:ce:5a:
68:78:c4:bf:67:19:2f:89:0e:6c:20:ba:21:95:31:de:54:cf:
f0:ac:2b:22:f8:50:35:2f:e8:09:4d:71:4e:9c:d0:54:ed:c5:
94:83:80:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 25 17:10:48 2026 by rpki-client