Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: AiN/NYRJiS72KZkGXTfb5/VyADzZDPOOtMwohdl2mTc=
Subject key identifier: A9:E1:E5:6D:5A:52:E8:4E:BE:E7:64:FD:87:B6:30:E3:66:EF:D3:0A
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 019D37C022107965FAFCC1F73D7D848B7FAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 0657
Signing time: Sun 29 Mar 2026 04:00:31 +0000
Manifest this update: Sun 29 Mar 2026 04:00:31 +0000
Manifest next update: Mon 30 Mar 2026 04:00:31 +0000
Files and hashes: 1: A_-FW985zbY15HsoQHY3jzaLsqE.roa (hash: eSJY0BewKa72GIdMnrs7+2x+KiKuirCjSmv68OLB6u4=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: J8guXC/C3LlC0vk4DQPKmKWLxHivxRQR1BTX1bzRBNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:22:10:79:65:fa:fc:c1:f7:3d:7d:84:8b:7f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Mar 29 04:00:31 2026 GMT
Not After : Mar 30 04:00:31 2026 GMT
Subject: CN=a9e1e56d5a52e84ebee764fd87b630e366efd30a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:05:b0:d7:84:e1:c0:2f:b4:fc:c4:43:d2:be:
ec:a1:bd:a7:4f:37:f3:19:a2:df:d6:83:98:1a:1f:
d5:76:b7:b9:37:bd:14:b2:52:a6:fe:7f:09:c1:93:
85:f2:f1:e2:10:fc:12:7b:d1:20:0d:0d:0d:f5:54:
4f:56:25:1c:47:3c:53:00:c1:4f:57:90:f1:7d:55:
da:29:07:42:06:36:e5:77:7d:37:34:a0:8b:2b:8d:
13:1e:a8:06:d1:68:66:4b:c7:69:e3:7f:cd:39:ae:
6a:d2:6f:8b:33:03:21:72:0f:23:99:8c:3b:5a:0d:
54:ac:b3:c3:31:1e:13:a2:65:12:17:7f:23:cc:42:
06:34:76:22:a9:84:97:7d:73:c7:d7:76:89:d6:64:
2c:6b:9a:65:fd:81:0d:3b:7d:25:2e:73:ea:b2:a2:
a4:ec:22:65:02:19:ac:9c:a3:aa:0c:4b:d1:b4:01:
c5:1b:88:39:7a:2f:a4:6b:87:89:5a:6c:48:2d:bc:
9d:75:9c:71:41:19:8a:35:22:cd:40:a7:25:10:cf:
a9:22:cc:9a:e7:53:72:cf:c3:46:08:06:15:48:86:
33:a4:b0:1b:83:ae:f0:2b:04:2a:3c:70:51:60:6b:
8b:a8:49:4c:c9:75:79:2b:10:b1:bf:06:e5:94:e4:
2b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E1:E5:6D:5A:52:E8:4E:BE:E7:64:FD:87:B6:30:E3:66:EF:D3:0A
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:fe:cd:52:59:21:0a:3e:74:11:0f:4b:24:08:58:af:41:7a:
a8:61:54:fa:8d:ed:f7:83:01:c4:fb:cf:10:4f:7e:7a:7e:5c:
f7:2c:4d:54:1f:a0:81:ec:64:fc:87:be:1b:33:e1:df:2b:44:
93:b3:5f:6e:15:e7:70:56:97:b8:f0:d0:6b:50:80:2d:f6:62:
1f:88:60:82:88:42:3b:ab:26:1e:09:fc:c6:73:b1:f6:b5:1b:
ae:29:3e:8a:2c:3c:87:b9:ca:bc:c5:62:ac:e1:b4:d3:72:7b:
61:25:2c:47:bb:13:cf:8c:3e:7a:3e:bc:88:ce:3e:22:8b:4b:
d2:95:68:ca:75:45:af:2a:69:34:d8:55:b2:a4:06:cc:3a:02:
3a:50:25:79:52:83:a7:9b:db:7a:b2:41:52:59:71:1f:08:6b:
e1:27:42:81:bb:b9:52:05:c3:60:dd:89:ab:ed:d3:5f:0f:69:
b5:45:37:07:09:bf:37:78:54:a7:f4:0a:de:3c:7f:d5:09:52:
0f:d3:b2:c5:08:2b:51:81:bc:e1:e2:e8:d8:84:20:e3:3b:07:
50:9a:05:9b:a4:fe:31:6b:c8:ed:f1:49:c1:aa:87:48:58:da:
e5:84:66:33:3d:54:17:a1:d6:50:52:aa:27:3a:e0:f2:6c:8e:
2e:b5:95:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 10:03:38 2026 by rpki-client