Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
File: h0HsF9wDCbE9iKZ-oi3Luyak46E.mft (raw, json)
Hash identifier: GEYHUQqvIUa+m5JwhaIImXPh8LNjizMn/jgVF2jPLOo=
Subject key identifier: 73:27:1B:A9:C2:00:D3:2D:2C:CC:06:91:B2:8F:7C:B5:02:69:69:C8
Authority key identifier: 87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
Certificate issuer: /CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Certificate serial: 019E31857B3110B7B57FFD97543197AD7E00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
Manifest number: 0C3D
Signing time: Sat 16 May 2026 16:01:31 +0000
Manifest this update: Sat 16 May 2026 16:01:31 +0000
Manifest next update: Sun 17 May 2026 16:01:31 +0000
Files and hashes: 1: EMcdw1Ph-JlhHvvHhVSjSxPxNSg.roa (hash: WLZZDdaT7EIhgSFh+wJhMvZeYoYBiu555dqxXusPvfs=)
2: h0HsF9wDCbE9iKZ-oi3Luyak46E.crl (hash: dcdx3IiTueuTeLC7c4YfdWUa8rlaoMZEkGmDGshurjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:7b:31:10:b7:b5:7f:fd:97:54:31:97:ad:7e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Validity
Not Before: May 16 16:01:31 2026 GMT
Not After : May 17 16:01:31 2026 GMT
Subject: CN=73271ba9c200d32d2ccc0691b28f7cb5026969c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:88:73:59:44:2e:15:6c:cf:83:a6:d2:a7:53:
b6:3f:0f:9b:1a:1b:29:04:b8:d9:e8:64:85:98:8b:
18:4f:22:30:3f:2c:fc:ae:aa:68:55:47:fc:96:7e:
47:f1:f3:6a:36:97:17:93:fa:e6:08:cc:cb:1c:13:
85:05:bf:1e:82:91:83:c2:74:92:54:fd:50:a4:8d:
95:c5:8a:58:bc:e7:17:a7:be:95:39:c6:98:6c:aa:
1e:0c:6c:bc:88:2f:3f:fd:0d:e3:94:60:09:f0:fd:
f9:bd:c3:e0:85:5f:18:d7:f5:0a:a5:5b:05:3c:6a:
b1:1c:e3:bf:a2:23:a4:53:80:b1:de:a4:f4:66:97:
a7:03:1c:9f:5e:85:f1:6a:0a:69:30:21:4d:87:e1:
0c:4b:a8:2a:f8:48:65:fe:c2:c2:77:ac:9c:e9:d9:
df:d8:72:76:ea:27:07:c0:24:5f:c3:2b:be:17:ca:
f5:38:0e:69:77:ae:1e:aa:b5:97:e8:59:19:4a:22:
9d:5f:7d:b1:10:fa:b9:f0:bc:cb:c8:43:4d:68:31:
5f:10:04:f8:d0:2c:e8:65:4e:88:be:db:07:6b:9c:
2b:24:83:27:94:64:54:6d:b4:4b:de:74:79:72:57:
88:1f:d6:42:41:78:a9:12:cf:41:da:4f:be:d9:40:
c7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:27:1B:A9:C2:00:D3:2D:2C:CC:06:91:B2:8F:7C:B5:02:69:69:C8
X509v3 Authority Key Identifier:
keyid:87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:57:06:2c:04:8a:40:dd:57:8d:b5:f2:7c:d1:4c:b2:d3:87:
26:88:bf:e9:c5:db:26:a5:7a:f8:fb:d0:f3:c7:f3:bd:47:84:
57:3c:a2:5a:cd:6f:2f:dc:77:a8:8c:91:d2:27:f3:4a:4e:7f:
65:db:17:a1:1a:77:36:01:c1:b3:da:0a:cf:26:81:08:c2:77:
c7:29:69:8c:45:2d:5a:63:79:90:60:b6:76:bd:e2:8b:da:cd:
39:63:71:8d:da:85:d6:8d:a7:c8:bb:97:6b:83:53:3c:8e:8b:
cb:f1:19:c7:19:cf:fc:be:4b:9d:9d:4b:a0:7d:e3:3a:2d:19:
75:8d:60:e9:2f:e2:cf:bf:83:c7:8c:46:60:80:d3:51:0c:66:
d4:b3:32:43:92:76:46:42:55:41:46:62:71:84:27:e3:8a:9b:
58:7e:37:d6:18:86:ea:5d:2b:9d:91:b4:53:4c:0d:94:09:35:
3b:72:4a:ec:9a:af:98:2f:99:d2:d1:a5:1a:6b:ce:01:27:1b:
81:9d:54:26:d7:75:29:8a:a3:d1:d2:d9:96:cf:92:b6:d7:73:
08:71:d7:92:62:f8:93:1a:29:13:49:04:e9:54:64:27:e9:77:
ec:62:ab:f9:38:4d:65:9b:2b:0b:f7:6f:61:1c:d2:ff:2f:da:
05:96:67:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:23:11 2026 by rpki-client