Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: /h+K6pLd1j0vatGRO19GWxav014jcuoDDMwMvWZ/BAM=
Subject key identifier: B2:7B:D5:8B:D0:92:20:B5:67:27:18:8F:76:0B:5D:B4:42:46:5B:44
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 019E32CE4C358CA9C6A6D75900459D21532A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 06D9
Signing time: Sat 16 May 2026 22:00:41 +0000
Manifest this update: Sat 16 May 2026 22:00:41 +0000
Manifest next update: Sun 17 May 2026 22:00:41 +0000
Files and hashes: 1: A_-FW985zbY15HsoQHY3jzaLsqE.roa (hash: eSJY0BewKa72GIdMnrs7+2x+KiKuirCjSmv68OLB6u4=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: 5PgXvLpwQAsV+iY2PQ3RMV+gyPeuX+jRXg29yQcSDII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:ce:4c:35:8c:a9:c6:a6:d7:59:00:45:9d:21:53:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: May 16 22:00:41 2026 GMT
Not After : May 17 22:00:41 2026 GMT
Subject: CN=b27bd58bd09220b56727188f760b5db442465b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:15:3f:21:01:05:00:a7:d9:f2:3e:8c:21:4c:
7e:d7:b5:34:e4:28:49:bb:f3:fb:fb:0e:97:2d:60:
5c:75:1b:e1:1c:c3:b7:0b:a5:b7:e8:9e:0f:4c:0e:
3f:10:27:92:99:7a:85:8f:7a:09:0f:ec:d9:94:28:
db:6a:f3:66:92:32:c9:c1:d2:a3:c6:03:c7:e6:2c:
2f:d1:c8:5d:58:42:20:31:f1:33:b4:1e:eb:ea:ef:
5f:ff:84:cc:43:07:69:58:0f:37:4f:37:c7:51:10:
84:0f:64:6d:95:1b:fd:45:4b:93:cf:7e:8c:f7:cb:
20:ad:69:6e:d1:c7:b0:fe:55:6f:94:21:e8:59:18:
13:d7:b2:59:79:ce:e0:ef:7a:8c:ce:9f:39:6b:ad:
a0:ad:b2:22:15:ee:e3:ea:81:83:77:ba:88:bd:53:
b3:ef:8a:16:68:57:42:af:e6:8e:65:73:29:4d:d5:
11:5b:90:cb:d2:c4:de:b8:71:e2:2f:04:d4:53:8d:
86:cd:01:d0:74:2b:ef:06:cd:75:45:30:3e:c4:40:
b1:0d:66:f0:2c:ee:1c:f5:7d:57:2f:68:54:8a:72:
96:55:46:16:11:0f:20:c5:23:16:64:3f:c5:7d:08:
bb:8a:6b:bb:58:a9:5a:6e:a6:50:a3:d2:8b:7c:fb:
c6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7B:D5:8B:D0:92:20:B5:67:27:18:8F:76:0B:5D:B4:42:46:5B:44
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:4b:a8:26:a0:ac:cd:cb:c0:b5:4c:25:ea:91:5c:36:2b:78:
f7:1e:1f:46:34:5a:55:e8:5b:ff:12:37:6a:01:03:04:47:21:
f0:0f:97:5c:de:08:c7:c3:8f:7b:30:83:f2:89:c5:15:ef:eb:
3a:24:eb:8a:53:51:49:11:bd:ec:14:51:ab:60:43:39:a3:9c:
63:52:b4:21:65:4a:51:12:89:20:1b:46:00:fd:01:11:d3:7d:
a3:7e:e0:be:de:b5:12:e2:6f:a3:d9:04:2b:da:db:f7:83:a8:
75:88:2c:a3:ff:9e:67:de:33:ce:cb:3d:3c:4b:b0:23:aa:82:
d0:3b:f5:3a:1c:ff:df:09:a8:72:27:81:3d:30:6f:0c:46:a8:
9e:91:20:d6:64:18:bf:b9:4b:2b:0c:17:d4:84:45:fd:98:83:
c6:5b:74:ba:0e:e6:b5:78:ff:f4:04:a2:48:11:1a:5b:ee:24:
4b:6f:fd:82:74:b7:b5:21:4d:4b:67:c3:e6:be:cb:bc:28:28:
1d:44:97:84:cd:2a:9a:fb:d5:34:7f:7d:dc:c0:4f:62:73:e0:
af:d8:5e:d4:7f:d9:a1:10:0d:09:1b:ba:19:c8:ea:fd:41:d6:
ec:12:4f:26:78:6d:a2:af:2a:39:ee:d7:76:e8:c6:b5:cf:4c:
0b:02:c3:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4yzkw1jKnGptdZAEWdIVMqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx
ZjA1NDEwHhcNMjYwNTE2MjIwMDQxWhcNMjYwNTE3MjIwMDQxWjAzMTEwLwYDVQQD
EyhiMjdiZDU4YmQwOTIyMGI1NjcyNzE4OGY3NjBiNWRiNDQyNDY1YjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1hU/IQEFAKfZ8j6MIUx+17U05ChJ
u/P7+w6XLWBcdRvhHMO3C6W36J4PTA4/ECeSmXqFj3oJD+zZlCjbavNmkjLJwdKj
xgPH5iwv0chdWEIgMfEztB7r6u9f/4TMQwdpWA83TzfHURCED2RtlRv9RUuTz36M
98sgrWlu0cew/lVvlCHoWRgT17JZec7g73qMzp85a62grbIiFe7j6oGDd7qIvVOz
74oWaFdCr+aOZXMpTdURW5DL0sTeuHHiLwTUU42GzQHQdCvvBs11RTA+xECxDWbw
LO4c9X1XL2hUinKWVUYWEQ8gxSMWZD/FfQi7imu7WKlabqZQo9KLfPvGHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLJ71YvQkiC1ZycYj3YLXbRCRltEMB8GA1UdIwQY
MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt
M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm
LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABEuoJqCs
zcvAtUwl6pFcNit49x4fRjRaVehb/xI3agEDBEch8A+XXN4Ix8OPezCD8onFFe/r
OiTrilNRSRG97BRRq2BDOaOcY1K0IWVKURKJIBtGAP0BEdN9o37gvt61EuJvo9kE
K9rb94OodYgso/+eZ94zzss9PEuwI6qC0Dv1Ohz/3wmocieBPTBvDEaonpEg1mQY
v7lLKwwX1IRF/ZiDxlt0ug7mtXj/9ASiSBEaW+4kS2/9gnS3tSFNS2fD5r7LvCgo
HUSXhM0qmvvVNH993MBPYnPgr9he1H/ZoRANCRu6Gcjq/UHW7BJPJnhtoq8qOe7X
dujGtc9MCwLDbQ==
-----END CERTIFICATE-----
Generated at Sun May 17 02:06:25 2026 by rpki-client