Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json)
Hash identifier: wsWJzzpmi1A2qaAVvr9Cmz26ijax5wAe1xFwBzkNjJ8=
Subject key identifier: 2D:1D:37:90:90:0F:12:D4:94:0C:6E:10:78:2F:90:A7:F5:3F:5A:A4
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 019DA89E46D5E53CFE248E58B7F25A044FED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
Manifest number: 130C
Signing time: Mon 20 Apr 2026 02:00:38 +0000
Manifest this update: Mon 20 Apr 2026 02:00:38 +0000
Manifest next update: Tue 21 Apr 2026 02:00:38 +0000
Files and hashes: 1: 1TVNFB2oqiU4XNjEv0BT-Pb2M0M.roa (hash: 3vvI5UYlWItjTSfQrco2BtzXvJBHGkk/x8CyOBqqD8U=)
2: 41gdFH-JudL678u_D6BB_y7EfU0.roa (hash: VnQDTpZib3x3twc60ulDPL39Qe1IesXf9+CLXJ4WNxw=)
3: Mpj_3kOIb_YBREm4CDGbZoT8R1s.roa (hash: WSgFrdqhjjGW3gBXPEw9RNID+Xo3I/t20meQJF7GgZg=)
4: YQ7UOE0fRKiUXxXL_L3iPhyJx88.roa (hash: 3O80VS4rsgTgEZbTwubyabO64/481tfENVUe6/Id6ow=)
5: a-1eulbURZwYdTXjQHmSQrhkepg.roa (hash: dU6/8b7jh8wXrhRwwYJ+BZWPnCRt/iCI6b/zuZGMbbY=)
6: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: Pa3yqojbXDdzOdR4DEA48safE1VjZJIVSdUNnm9Wxzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Apr 2026 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a8:9e:46:d5:e5:3c:fe:24:8e:58:b7:f2:5a:04:4f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Apr 20 02:00:38 2026 GMT
Not After : Apr 21 02:00:38 2026 GMT
Subject: CN=2d1d3790900f12d4940c6e10782f90a7f53f5aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:39:23:2c:b1:87:24:e6:59:8c:30:94:9d:54:
18:b6:8a:4e:24:a1:a3:19:7e:83:a1:d8:1e:2d:d4:
33:ad:3d:ce:e6:29:88:58:43:f5:51:42:6c:84:4f:
a5:36:55:58:c2:79:62:ef:e6:b5:d7:8d:39:ac:c4:
3a:f9:7a:45:bd:01:19:fc:ec:0a:82:c2:db:9f:ff:
52:66:f5:34:6c:90:36:15:5b:d4:da:8d:7f:cd:33:
33:8f:d7:ac:b2:36:d2:6e:17:34:4a:5f:89:6b:40:
5d:d2:21:8e:e1:21:27:30:8f:3b:b7:76:8b:9e:6a:
f9:59:4b:9f:ec:6d:bd:8e:af:99:23:4d:0f:05:cb:
f1:02:35:9d:7e:10:f9:9d:66:78:aa:e0:4e:2f:c0:
48:56:aa:bd:08:6c:d7:56:dc:d3:dc:03:0f:a9:39:
53:2d:cc:72:24:8a:3c:ff:dd:f5:22:21:7c:c7:81:
60:af:77:ed:ef:ba:4a:d5:ca:92:9a:0c:af:d4:f3:
5c:0b:14:dc:3c:5f:da:27:5e:4c:43:ca:09:ed:ad:
c0:57:76:d4:5b:d3:84:97:65:51:7f:8b:15:c5:b5:
63:61:a5:23:76:df:63:dc:25:4e:b6:c4:09:57:17:
26:38:c2:56:02:b6:cf:8d:c3:9a:91:76:0f:4b:48:
e0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1D:37:90:90:0F:12:D4:94:0C:6E:10:78:2F:90:A7:F5:3F:5A:A4
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:4a:f9:1c:24:ec:f1:96:67:6f:00:5c:7c:0c:87:23:ad:59:
04:9f:f7:c7:9b:70:ab:a2:e3:66:9c:48:b5:ed:3c:5a:08:ff:
fa:12:d1:13:b0:f9:3b:b2:13:5e:c6:3b:21:b3:87:08:56:07:
79:e1:7b:6e:85:c9:1f:82:0c:31:eb:fb:85:6b:0d:f0:c6:6d:
ea:d6:18:0a:f2:f9:72:b7:8f:4b:9b:c1:8a:b6:ac:aa:ca:d1:
8a:4d:19:30:85:5f:47:f2:54:a8:3a:4b:58:bf:68:2e:b4:b4:
5e:8e:90:0c:53:e0:57:8c:e5:a7:40:a6:4d:e9:2c:b2:b1:a8:
6d:f1:b9:27:e6:62:68:0d:32:d2:8f:6a:f6:d5:23:36:36:9e:
9d:b9:de:41:b7:f3:9d:17:76:48:5e:39:9f:94:65:f8:65:a6:
c1:ee:15:b1:38:41:6e:6a:80:d7:fd:e0:31:5e:cf:90:6a:cb:
72:d8:e6:1a:2c:e1:c6:e9:79:4d:3f:09:ef:dd:d9:51:52:3c:
1f:c7:49:00:ad:8c:61:5d:ee:b7:a2:58:f7:46:c2:dd:96:1d:
ad:3d:ef:44:eb:17:52:5c:c1:de:12:4f:ce:94:3f:01:89:45:
c9:83:4f:8a:6f:dc:74:60:bc:8f:da:16:2f:27:c9:6a:07:fb:
9e:3f:8b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 08:43:14 2026 by rpki-client