
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft
File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json)
Hash identifier: tGR7KOdJs3ehpVQbEfcykSpzd+unySpuiQWwdCRr6fU=
Subject key identifier: BC:45:62:A2:BA:F5:B6:A3:1E:FA:64:08:6F:56:D6:BE:7E:96:AC:7C
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 019F1AFAF773047DB22FCBA8897CAC855F4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft
Manifest number: 15AA
Signing time: Wed 01 Jul 2026 00:01:22 +0000
Manifest this update: Wed 01 Jul 2026 00:01:22 +0000
Manifest next update: Thu 02 Jul 2026 00:01:22 +0000
Files and hashes: 1: 4xaEdixeinTNAew5f36B5ogFapc.roa (hash: U+lj7Po2vIYbjteMOk724C6A7iSVfdA9w8Qr+wSn2EY=)
2: 6bp5_uY1eTTE0FRpgy0dJ0tGIWA.roa (hash: JQ6e3y/UZad8zx3alMXWmLY2Cs0ywtM7PcyjG1jGvp0=)
3: 8rDvMkxptJnltjzzUCN1e7h2mu0.roa (hash: bN6iyJOU8RYfCqW0mfWStueUrIARdx585ED2RX3ioso=)
4: 9561YDYiFuwA3cK9_Ao81cqPzyw.roa (hash: sI0N1MtQFC1Bs34l2HPoGh51MHvRDzLlzChm4jYV9bI=)
5: IrFs_aYDL98DrBmqXNeImOXYqVs.roa (hash: /du+UzfxF5Oy69bwitaws2QcGuPpQ2q/PzP+2+rlKmc=)
6: Mpb5tIfxbf_t0TleDipa0dPzQfg.roa (hash: dlPOC3LjslO4GRq7Su9TrpsYGXUfWyZVAl7s4ntuJgI=)
7: SnpB0ExR-bCAJLKknHnesUTaAWU.roa (hash: wlr5EY83KcqFkovq8AptI/Jy70VxHPVKk3n5WEh7t3w=)
8: W-auLweCazJVGZa2RWm9KCu-wKE.roa (hash: KDvTseiWMAdzP9ZuSgmWkkWqgGW79SkpbkY25PFZ98s=)
9: ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa (hash: ckctwOhfUle+O6fK0mnv5ZMxRNGqbUG5lJdOX3nwnlo=)
10: djAPpFOBLqUtxJOa9UwBPjNac1E.roa (hash: 7Rj31INl1FIcMdN33laOh9K9+J+bHShe/BZUzyt8PUg=)
11: ggV7rBXwprR59jciPQhDDTZxxmQ.roa (hash: I4MtXY7ClGvNcIjMAoHA2mKMcNbnijfTuvNa/n/j6Xw=)
12: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: /2Mqjmv+fmxB3C8r7p778zKhWGehtOA2WDssIL2YwJ4=)
13: nkFmcbj5SRyrAXjUVz7jAMSoyJk.roa (hash: lYeXLJKim2pWsORoTqRVNykk1XTHGi948eQwJ6tFxj4=)
14: pnn2LDubyB-s2_PbTNDUNt7JA_8.roa (hash: vW3hxl2FPzWH44KmHJKXNpZV557F5Hczl/NZRDVCKlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 20:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:fa:f7:73:04:7d:b2:2f:cb:a8:89:7c:ac:85:5f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Jul 1 00:01:22 2026 GMT
Not After : Jul 2 00:01:22 2026 GMT
Subject: CN=bc4562a2baf5b6a31efa64086f56d6be7e96ac7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:22:8d:07:5a:db:00:7a:ed:b7:91:33:6b:3a:
aa:81:41:e6:55:3f:f4:ba:82:0f:d8:d3:9f:c9:bf:
ee:0e:12:02:aa:f4:9a:84:92:c2:58:d1:49:da:ba:
1a:9e:55:07:20:58:41:05:83:bf:cc:3e:42:e2:5b:
b6:e9:63:fa:b2:94:5d:df:62:f9:59:a0:21:d1:ae:
15:26:18:dc:06:0c:ad:58:96:6e:7d:52:27:88:ee:
a2:13:2f:68:ce:df:83:4d:a1:d2:42:3b:7a:92:56:
1d:cc:2c:22:c7:87:ba:21:6c:ca:4b:2a:c3:5a:52:
20:3b:23:29:b9:0f:9f:eb:d6:a6:69:b1:c5:25:60:
a1:cd:35:45:0a:c7:0a:58:81:a3:c2:53:bd:cb:f7:
6f:de:d7:d4:5a:c7:96:43:ce:66:f8:15:06:6b:86:
dd:96:31:4e:49:c0:8f:ea:43:ca:7a:5e:2a:1c:81:
52:f7:5a:1a:35:74:23:b3:77:68:a9:b5:88:11:5a:
41:32:a0:85:52:cd:b3:bf:a0:29:61:17:b4:16:45:
95:37:78:b2:6a:f1:b8:07:02:3a:4a:ce:99:05:2c:
21:5a:b7:fe:e5:dd:af:dd:78:e6:ec:09:e2:2e:52:
74:bf:15:9a:35:75:a7:78:7c:49:f3:b7:85:75:95:
a0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:45:62:A2:BA:F5:B6:A3:1E:FA:64:08:6F:56:D6:BE:7E:96:AC:7C
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:28:89:94:7d:f0:15:b8:88:2f:7f:bc:c3:e2:8c:3b:7b:13:
7e:c7:a7:3a:ec:9e:6c:66:fa:d5:e6:7d:c9:94:7d:88:f0:93:
06:88:8d:f9:4c:32:c6:6c:60:2c:5b:99:86:b5:0a:6f:03:1a:
b9:dc:68:4a:ba:59:d7:ca:7b:e1:43:18:b5:53:bd:24:9c:19:
7e:c4:e7:57:6e:7a:82:7f:2b:38:b0:3b:d6:50:a4:29:7d:80:
5d:c4:b1:f5:a8:7b:26:a0:17:e7:de:78:c2:b4:f0:7b:2b:42:
27:d8:b5:e6:f6:9c:4f:38:26:c6:15:51:03:93:6f:f8:ef:25:
53:11:fe:2b:94:30:5d:f4:f6:3b:e2:37:0e:2d:db:a2:1e:26:
b5:b5:ee:53:a2:9b:d1:2a:08:6d:b6:ad:5f:2d:76:a2:01:14:
68:b6:25:a5:b7:e2:b0:20:f8:59:4e:38:6f:3c:a7:4e:9f:f4:
fb:36:61:49:c0:41:d5:35:a6:a1:7d:f8:c0:1f:c2:aa:2f:28:
ff:bd:cf:00:ac:35:1d:36:03:b7:5a:71:8e:85:4c:7b:a4:17:
a2:b5:55:8e:3d:c4:fc:77:38:48:8f:46:ae:eb:40:0b:b3:ca:
30:57:44:e5:cd:5c:11:97:db:79:14:de:31:d7:9c:49:bd:d0:
ae:18:1d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 02:41:44 2026 by rpki-client