Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
File: hugNGBwlPRTaHgupwdVmb1Ym1YE.mft (raw, json)
Hash identifier: AKj4AL9j+TRTHnjgiEZesZfc4M9fvHePEFUebXFmzLk=
Subject key identifier: 28:10:C1:29:7E:8C:A4:F5:F8:BE:EA:62:54:F8:40:66:2C:6D:A7:33
Authority key identifier: 86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81
Certificate issuer: /CN=86e80d181c253d14da1e0ba9c1d5666f5626d581
Certificate serial: 019E401C0C386C9FF411345B00B4D52DA4DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
Manifest number: 033D
Signing time: Tue 19 May 2026 12:00:40 +0000
Manifest this update: Tue 19 May 2026 12:00:40 +0000
Manifest next update: Wed 20 May 2026 12:00:40 +0000
Files and hashes: 1: Q0BAQv9Y2KCGzUH12IIJCejGo9E.roa (hash: ZXRjv/WoTKdvC9GZzFdW6WbAOuxyKMhJM7y9cqTP30I=)
2: hugNGBwlPRTaHgupwdVmb1Ym1YE.crl (hash: e7ezCnUanvKyi/Unw4AEfR6iW4VMNMuVHxKqfhFVIig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 May 2026 07:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:1c:0c:38:6c:9f:f4:11:34:5b:00:b4:d5:2d:a4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e80d181c253d14da1e0ba9c1d5666f5626d581
Validity
Not Before: May 19 12:00:40 2026 GMT
Not After : May 20 12:00:40 2026 GMT
Subject: CN=2810c1297e8ca4f5f8beea6254f840662c6da733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:16:c7:68:46:02:37:66:d5:06:17:b0:6d:a4:
8b:44:78:b4:6c:e9:4a:4f:45:a4:04:d8:8c:15:27:
b0:68:93:51:2e:8f:0b:e8:30:8d:b1:e7:a8:e6:12:
f9:03:c2:26:46:53:32:a0:4c:df:77:10:1a:67:e2:
d9:7b:f7:75:22:e1:df:51:26:93:5b:48:e3:41:ce:
c2:dc:5d:41:0d:57:e3:be:f2:81:86:cd:eb:93:8f:
88:c1:75:db:0a:a3:c6:b8:23:36:87:76:ee:08:02:
98:8f:d4:5a:63:16:fc:e6:ef:7b:7c:6c:cd:25:65:
36:6e:f5:42:75:56:c6:bc:c8:59:c6:92:9e:2d:91:
c4:83:02:18:f5:49:c2:c3:28:12:e4:07:86:74:28:
7b:6e:95:2f:10:29:77:24:c8:5d:79:f0:71:d6:57:
b6:0f:63:f2:c0:a8:70:3a:4c:66:ae:55:e5:0b:da:
35:13:a0:b8:fe:46:65:5f:5f:4e:ca:9b:ba:00:24:
d1:ce:22:34:21:16:2a:f5:09:a4:c1:bb:79:06:14:
77:d9:14:6d:9c:a1:b1:ed:da:71:7f:93:f8:cf:8c:
b9:04:0c:04:86:70:7e:61:eb:d6:65:09:df:42:f0:
56:57:61:a6:07:aa:7c:a5:e0:eb:1a:ef:e3:c1:c8:
24:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:10:C1:29:7E:8C:A4:F5:F8:BE:EA:62:54:F8:40:66:2C:6D:A7:33
X509v3 Authority Key Identifier:
keyid:86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8e:f8:cc:c1:35:81:79:95:4c:dc:db:98:be:ce:88:f9:df:
20:7a:6f:9c:d1:b1:9f:a9:fe:cc:cd:eb:8f:01:7f:c5:49:d2:
e0:b7:54:af:d0:14:d2:53:ad:a7:aa:2d:4e:2e:90:1d:f3:11:
1d:b8:99:7a:01:62:6c:82:d7:83:cf:07:bd:b7:46:bd:99:5b:
82:f2:8f:93:4a:db:f0:28:26:01:39:b3:22:76:41:b5:c6:34:
81:16:d8:28:8a:b8:36:79:82:2e:b9:7d:54:e8:e8:a0:f9:db:
6a:80:81:f9:33:c7:3a:71:4b:ef:a8:d9:aa:80:57:22:21:65:
3b:f8:22:c9:b4:64:d5:64:de:75:bb:35:37:55:de:eb:ae:fd:
20:e5:d6:76:2f:4d:2e:f6:b2:0d:6a:29:be:b9:ae:1e:71:c3:
4b:48:2c:bd:69:1e:37:48:19:aa:d7:7f:87:55:5f:0b:bf:64:
07:19:7a:f5:35:0e:37:d7:d9:4e:dd:eb:0b:5a:2f:49:db:3d:
1a:0e:9b:f2:73:2f:64:b5:4e:d6:25:4b:e0:a8:37:c8:c5:ab:
ad:f0:d9:b0:9e:f1:04:7c:33:57:3e:31:ce:65:92:ec:fd:15:
59:16:a7:4f:29:7a:99:49:ab:12:8a:a6:30:2f:20:d5:fe:65:
60:22:87:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 19 16:30:25 2026 by rpki-client