Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ef0a1e-f881-41f7-85a5-f0c0350d6320/1/hYw-khBoog7GKwOi2aGXGlWZBdo.mft
File: hYw-khBoog7GKwOi2aGXGlWZBdo.mft (raw, json)
Hash identifier: GoGLwtLfCgJAKOI/SwXCEp4t6MmkaN3rgRW0+Hnv/L0=
Subject key identifier: 0F:C7:3E:5A:17:8C:76:13:3E:B9:C7:E7:64:3D:07:97:F0:F6:3A:28
Authority key identifier: 85:8C:3E:92:10:68:A2:0E:C6:2B:03:A2:D9:A1:97:1A:55:99:05:DA
Certificate issuer: /CN=858c3e921068a20ec62b03a2d9a1971a559905da
Certificate serial: 019ED23D03CD98CBBFD05082CA12625B93D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYw-khBoog7GKwOi2aGXGlWZBdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0a1e-f881-41f7-85a5-f0c0350d6320/1/hYw-khBoog7GKwOi2aGXGlWZBdo.mft
Manifest number: 05
Signing time: Tue 16 Jun 2026 21:01:14 +0000
Manifest this update: Tue 16 Jun 2026 21:01:14 +0000
Manifest next update: Wed 17 Jun 2026 21:01:14 +0000
Files and hashes: 1: 8OTUnfIsOo0HOvnAnxDiliLhxVk.asa (hash: yWmYRKzlchVAVmIXrfu5eKc71tco2zin1I9txnwVrGw=)
2: hYw-khBoog7GKwOi2aGXGlWZBdo.crl (hash: rkrEL3B2oQAZVSfPpiXTiK/8XoL5Wdayy3c8WD7TFwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0a1e-f881-41f7-85a5-f0c0350d6320/1/hYw-khBoog7GKwOi2aGXGlWZBdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0a1e-f881-41f7-85a5-f0c0350d6320/1/hYw-khBoog7GKwOi2aGXGlWZBdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYw-khBoog7GKwOi2aGXGlWZBdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 21:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d2:3d:03:cd:98:cb:bf:d0:50:82:ca:12:62:5b:93:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=858c3e921068a20ec62b03a2d9a1971a559905da
Validity
Not Before: Jun 16 21:01:14 2026 GMT
Not After : Jun 17 21:01:14 2026 GMT
Subject: CN=0fc73e5a178c76133eb9c7e7643d0797f0f63a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:20:69:cb:27:99:eb:d8:b9:5d:72:72:7b:8b:
e4:a9:3d:58:f5:f7:61:b6:88:44:ce:7f:61:32:2b:
7d:52:2c:8f:75:cf:1b:af:9b:2c:66:d0:c7:4e:91:
01:ef:51:2d:6a:0d:f2:18:7c:3a:2f:a7:09:8b:96:
d0:8e:18:03:48:24:73:38:27:45:ae:c3:7e:d5:8c:
5a:c5:a6:4c:e8:4e:d8:2f:07:02:43:53:df:12:a2:
77:9e:34:51:ef:c8:4d:b9:a0:db:ab:5a:86:23:50:
47:81:ce:88:18:de:d2:db:3e:f0:69:ff:14:e5:f8:
bc:79:dd:8b:74:72:60:d8:30:8c:d3:85:f2:d8:ef:
1f:85:7c:de:9f:25:c1:72:57:a9:1a:27:4c:d7:b0:
d0:c4:34:05:15:16:36:52:32:95:91:c6:76:ed:5b:
01:17:99:df:91:62:e7:c0:2d:88:82:e4:f7:42:46:
0f:e2:0b:cd:b6:1a:d6:c5:64:8d:97:15:66:4d:5a:
ec:85:b1:06:89:79:4c:84:2a:aa:c0:5e:3e:d3:3e:
4a:b2:97:24:ae:ec:a7:50:51:70:d0:87:17:cf:83:
67:82:6f:fc:c1:78:55:4f:fd:aa:1b:2d:da:b7:ce:
a0:a9:5d:c0:37:6c:08:f4:4d:e6:ae:03:1c:da:97:
70:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C7:3E:5A:17:8C:76:13:3E:B9:C7:E7:64:3D:07:97:F0:F6:3A:28
X509v3 Authority Key Identifier:
keyid:85:8C:3E:92:10:68:A2:0E:C6:2B:03:A2:D9:A1:97:1A:55:99:05:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYw-khBoog7GKwOi2aGXGlWZBdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0a1e-f881-41f7-85a5-f0c0350d6320/1/hYw-khBoog7GKwOi2aGXGlWZBdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ef0a1e-f881-41f7-85a5-f0c0350d6320/1/hYw-khBoog7GKwOi2aGXGlWZBdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:ad:b2:77:13:99:b8:4f:6c:4a:7c:65:13:c7:73:95:e3:12:
85:ad:55:57:16:17:60:a4:10:d6:fa:93:e3:fc:8b:56:d7:ed:
b0:67:52:92:bb:f6:47:e3:7d:15:dc:ab:05:9f:53:f4:99:87:
8f:83:43:15:16:28:6e:bc:f9:65:7d:ea:1d:ff:52:9c:f4:69:
12:38:2f:79:17:10:9f:82:3a:ff:e5:85:4c:f4:73:ef:f3:2c:
ae:30:37:5c:f1:08:e0:e2:d4:a7:f9:24:7a:6f:a2:13:69:06:
74:e7:7b:e5:9c:f9:dc:8d:2a:ca:24:a3:90:a3:e0:f9:50:41:
27:59:ba:0b:11:53:08:bb:0d:aa:59:64:4c:f6:6e:cf:61:63:
9f:6d:9b:5c:8d:5d:47:e8:dc:a2:7c:1f:8f:28:96:55:ca:6a:
2b:f0:ad:1a:1d:41:e4:bf:5e:af:18:73:f5:dc:98:76:73:38:
63:58:06:bf:44:24:f8:a5:2d:74:30:59:fc:17:3c:f3:8a:c1:
41:96:7d:4e:83:2c:ae:c6:c5:90:b6:ae:2a:15:91:db:33:93:
ae:37:fc:c4:6f:47:78:b1:42:38:bf:22:15:c5:28:ca:49:b6:
43:c4:aa:a3:81:8b:7b:30:d5:4b:f1:db:96:65:90:c8:4b:55:
80:1d:86:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7SPQPNmMu/0FCCyhJiW5PSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1OGMzZTkyMTA2OGEyMGVjNjJiMDNhMmQ5YTE5NzFhNTU5
OTA1ZGEwHhcNMjYwNjE2MjEwMTE0WhcNMjYwNjE3MjEwMTE0WjAzMTEwLwYDVQQD
EygwZmM3M2U1YTE3OGM3NjEzM2ViOWM3ZTc2NDNkMDc5N2YwZjYzYTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCBpyyeZ69i5XXJye4vkqT1Y9fdh
tohEzn9hMit9UiyPdc8br5ssZtDHTpEB71Etag3yGHw6L6cJi5bQjhgDSCRzOCdF
rsN+1YxaxaZM6E7YLwcCQ1PfEqJ3njRR78hNuaDbq1qGI1BHgc6IGN7S2z7waf8U
5fi8ed2LdHJg2DCM04Xy2O8fhXzenyXBclepGidM17DQxDQFFRY2UjKVkcZ27VsB
F5nfkWLnwC2IguT3QkYP4gvNthrWxWSNlxVmTVrshbEGiXlMhCqqwF4+0z5Kspck
ruynUFFw0IcXz4Nngm/8wXhVT/2qGy3at86gqV3AN2wI9E3mrgMc2pdw4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA/HPloXjHYTPrnH52Q9B5fw9jooMB8GA1UdIwQY
MBaAFIWMPpIQaKIOxisDotmhlxpVmQXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFl3LWtoQm9vZzdHS3dPaTJhR1hHbFdaQmRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9lZjBhMWUtZjg4MS00MWY3LTg1YTUt
ZjBjMDM1MGQ2MzIwLzEvaFl3LWtoQm9vZzdHS3dPaTJhR1hHbFdaQmRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9lZjBhMWUtZjg4MS00MWY3LTg1YTUtZjBjMDM1MGQ2MzIw
LzEvaFl3LWtoQm9vZzdHS3dPaTJhR1hHbFdaQmRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjK2ydxOZ
uE9sSnxlE8dzleMSha1VVxYXYKQQ1vqT4/yLVtftsGdSkrv2R+N9FdyrBZ9T9JmH
j4NDFRYobrz5ZX3qHf9SnPRpEjgveRcQn4I6/+WFTPRz7/MsrjA3XPEI4OLUp/kk
em+iE2kGdOd75Zz53I0qyiSjkKPg+VBBJ1m6CxFTCLsNqllkTPZuz2Fjn22bXI1d
R+jconwfjyiWVcpqK/CtGh1B5L9erxhz9dyYdnM4Y1gGv0Qk+KUtdDBZ/Bc884rB
QZZ9ToMsrsbFkLauKhWR2zOTrjf8xG9HeLFCOL8iFcUoykm2Q8Sqo4GLezDVS/Hb
lmWQyEtVgB2GNw==
-----END CERTIFICATE-----
Generated at Wed Jun 17 04:16:26 2026 by rpki-client