Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
File: h0HsF9wDCbE9iKZ-oi3Luyak46E.mft (raw, json)
Hash identifier: Uvr3n/z1hcctuEX7tFSu7Xd0Eara+yK0TFoug4Ccikg=
Subject key identifier: 46:FB:5B:95:3B:CB:EC:08:FE:C4:8C:FB:56:21:EA:09:A2:A5:D6:6A
Authority key identifier: 87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
Certificate issuer: /CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Certificate serial: 019F1943772FD5FB7B20D3A4116D874A87F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
Manifest number: 0CB5
Signing time: Tue 30 Jun 2026 16:01:19 +0000
Manifest this update: Tue 30 Jun 2026 16:01:19 +0000
Manifest next update: Wed 01 Jul 2026 16:01:19 +0000
Files and hashes: 1: EMcdw1Ph-JlhHvvHhVSjSxPxNSg.roa (hash: WLZZDdaT7EIhgSFh+wJhMvZeYoYBiu555dqxXusPvfs=)
2: h0HsF9wDCbE9iKZ-oi3Luyak46E.crl (hash: 3CWhTFoTGl8i02dfPG/Z4wT7/O4wpsZPAsPZ6+yjtRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:77:2f:d5:fb:7b:20:d3:a4:11:6d:87:4a:87:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Validity
Not Before: Jun 30 16:01:19 2026 GMT
Not After : Jul 1 16:01:19 2026 GMT
Subject: CN=46fb5b953bcbec08fec48cfb5621ea09a2a5d66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ff:50:3a:c4:fc:d5:3a:3b:80:ba:bd:4d:a4:
73:f0:c3:a0:a0:24:f8:c9:3f:b9:81:22:4a:59:19:
c5:24:f8:3c:53:a5:76:e6:8b:c1:1b:d9:a1:9b:b0:
3d:c2:b0:87:db:59:e0:f6:c6:d0:eb:19:5e:15:9c:
16:e4:dc:91:ed:c7:5f:39:a9:c2:f0:e0:b3:fd:17:
eb:29:5a:3d:4f:ee:92:27:ae:19:16:20:c8:3a:df:
f6:12:bd:8b:52:47:98:a5:1a:b3:04:94:05:d1:e4:
b4:8a:90:c6:fb:9f:0b:84:d2:b2:0c:33:df:23:f0:
24:77:36:f5:f5:ea:c3:ad:34:44:46:c5:c1:da:df:
be:88:a3:b7:7e:81:bd:5c:4e:9d:42:5d:81:db:d9:
87:82:33:0a:2e:73:36:be:73:6c:c6:17:f2:2e:3c:
98:0c:7c:93:d7:8b:6f:8b:b6:46:8d:ce:e1:4d:3e:
d3:e1:76:78:67:4b:10:8e:ae:d2:e6:36:e4:22:44:
d2:bd:13:60:36:18:b7:dc:f8:64:50:55:e0:18:ac:
ae:d5:e2:57:31:25:00:3c:16:4e:46:8f:93:a0:a4:
0e:78:80:4a:d6:c4:49:e1:45:2f:f2:72:c9:b4:a0:
fd:20:d4:c7:8e:51:0a:a3:29:64:1d:db:ef:5e:bd:
0d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FB:5B:95:3B:CB:EC:08:FE:C4:8C:FB:56:21:EA:09:A2:A5:D6:6A
X509v3 Authority Key Identifier:
keyid:87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:47:97:9b:a2:aa:1e:93:4c:d6:64:c1:63:71:cf:12:37:26:
9c:49:8b:aa:f1:c3:c2:04:65:b9:b5:c8:4a:e0:b9:70:50:bc:
f9:71:cb:fc:11:6c:1d:32:fe:d3:ba:6b:71:fe:51:9c:b4:19:
8c:6b:7d:97:ca:f9:f0:e7:99:b0:81:f9:85:3c:ce:04:01:94:
af:01:95:f1:ae:ff:0a:22:e2:3f:41:a5:39:66:01:be:d2:f8:
ec:c6:72:e0:f5:ef:62:cc:cf:ad:e8:03:68:04:61:48:a6:15:
71:08:29:78:8a:c0:c1:8e:42:00:d4:cf:ad:05:b5:0f:fe:96:
d5:b4:4e:36:f3:be:67:a4:46:a1:d0:b7:0d:bf:af:e8:59:8c:
a0:5d:ae:14:1a:db:e1:59:7b:a1:79:a9:1c:0b:03:5e:08:af:
56:4b:9a:9e:22:8d:73:3f:76:ef:12:88:45:9d:25:8c:5c:b4:
6b:f7:7b:b4:e0:b0:d0:ce:82:ad:8b:22:1d:44:fb:be:00:10:
09:cc:8c:bb:4b:69:01:63:5c:5e:7f:51:6d:45:d5:69:02:31:
af:93:c9:f5:fd:24:ce:d5:73:e2:e0:d3:07:2b:32:e0:11:6e:
1e:ef:c6:5e:4d:66:2a:16:39:5c:2c:f1:c4:3e:7c:d9:60:b2:
2a:d8:2b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:36:20 2026 by rpki-client