Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/cad521-dabe-49a8-bce4-0c6a67820a58/1/h0tZG12PB26vRy4-pF07XI4TUKE.mft
File: h0tZG12PB26vRy4-pF07XI4TUKE.mft (raw, json)
Hash identifier: ktV+tooKXOIVEIcY/eMACWX0+MUjrnC0polaRBJFC24=
Subject key identifier: 24:32:06:CB:C0:A2:1C:11:D2:80:F7:0C:E7:D6:AA:D7:C6:0D:F2:4F
Authority key identifier: 87:4B:59:1B:5D:8F:07:6E:AF:47:2E:3E:A4:5D:3B:5C:8E:13:50:A1
Certificate issuer: /CN=874b591b5d8f076eaf472e3ea45d3b5c8e1350a1
Certificate serial: 019EC292C9B7446432B904ED35143A018864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0tZG12PB26vRy4-pF07XI4TUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/cad521-dabe-49a8-bce4-0c6a67820a58/1/h0tZG12PB26vRy4-pF07XI4TUKE.mft
Manifest number: 195F
Signing time: Sat 13 Jun 2026 20:01:00 +0000
Manifest this update: Sat 13 Jun 2026 20:01:00 +0000
Manifest next update: Sun 14 Jun 2026 20:01:00 +0000
Files and hashes: 1: JqglYn9oExlpuQ-Y68kS4ik8jRI.roa (hash: lo9W0LCZNdcrhkqYexTlEJ9bxvUJuTPrwpGw86jlaFk=)
2: h0tZG12PB26vRy4-pF07XI4TUKE.crl (hash: c/5kMpArljZ2ZWq3cjsLeePNwbcOhy2gjHp3/sFcfWg=)
3: vAlQFpaLpXoMpWo27m8dZRrzZKc.roa (hash: V3cMkhkIFwXZN0a+IEYOXNX5PaTP19/XRl5SDnAT0cg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/cad521-dabe-49a8-bce4-0c6a67820a58/1/h0tZG12PB26vRy4-pF07XI4TUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/cad521-dabe-49a8-bce4-0c6a67820a58/1/h0tZG12PB26vRy4-pF07XI4TUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0tZG12PB26vRy4-pF07XI4TUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:c9:b7:44:64:32:b9:04:ed:35:14:3a:01:88:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874b591b5d8f076eaf472e3ea45d3b5c8e1350a1
Validity
Not Before: Jun 13 20:01:00 2026 GMT
Not After : Jun 14 20:01:00 2026 GMT
Subject: CN=243206cbc0a21c11d280f70ce7d6aad7c60df24f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:73:8f:89:91:78:bc:3c:4e:56:e1:0c:d8:d4:
e8:41:73:81:3d:93:22:22:ae:a5:8b:58:15:a6:9c:
1c:38:d3:39:14:c8:7a:09:8d:97:5c:88:c7:64:fb:
90:4f:5b:c9:ae:ff:a2:96:c4:a4:03:b6:69:f9:42:
f3:7f:28:e2:32:c6:78:ef:19:27:04:4c:fe:36:7d:
36:fc:1d:69:f9:db:73:94:d3:0c:db:55:60:e8:8f:
7d:d5:82:81:12:49:bc:23:3a:5a:cf:a4:1d:95:b9:
89:59:3a:bf:95:fd:dc:33:d9:af:ea:ba:8c:80:39:
82:28:46:2d:58:11:65:3a:e5:9d:b3:cd:65:e3:56:
ea:85:e0:54:17:03:f9:40:f0:13:c1:32:28:51:66:
44:74:6e:9a:a3:86:45:7d:d5:80:62:35:ec:57:2c:
27:cc:6c:cc:6b:67:c5:51:a3:1a:eb:a7:c5:a9:de:
d2:9a:e7:a5:ff:4e:7a:35:c7:30:a3:05:65:27:8a:
12:61:8d:cc:0d:fa:88:1b:8b:b2:6a:3e:36:17:e7:
a3:8c:70:37:eb:51:b0:9b:64:4f:69:00:c1:ca:0f:
ff:e5:3f:26:9d:27:c7:68:cc:22:a5:d4:ea:27:3b:
aa:a3:68:f3:28:44:64:45:e8:d2:56:7c:87:4a:d3:
a6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:32:06:CB:C0:A2:1C:11:D2:80:F7:0C:E7:D6:AA:D7:C6:0D:F2:4F
X509v3 Authority Key Identifier:
keyid:87:4B:59:1B:5D:8F:07:6E:AF:47:2E:3E:A4:5D:3B:5C:8E:13:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0tZG12PB26vRy4-pF07XI4TUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/cad521-dabe-49a8-bce4-0c6a67820a58/1/h0tZG12PB26vRy4-pF07XI4TUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/cad521-dabe-49a8-bce4-0c6a67820a58/1/h0tZG12PB26vRy4-pF07XI4TUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:7b:33:47:a2:95:4b:3b:a3:83:58:55:bf:a8:b2:b4:94:2c:
71:45:77:b4:a8:cd:66:78:6e:7a:c2:ef:3a:70:06:0b:08:ea:
5e:77:f3:55:1f:87:c2:2b:07:10:6f:40:43:4f:6f:26:65:d2:
a5:02:90:70:46:f0:4e:86:cd:19:ea:90:ee:18:eb:2d:b1:d9:
d0:47:eb:98:45:70:be:68:b6:24:36:c3:18:b2:64:a4:97:eb:
e7:c2:16:6f:99:46:f1:cf:2c:2a:ed:58:1d:7c:39:fa:33:a1:
51:7a:fa:c0:09:4e:b7:9f:11:24:d1:2c:be:0e:07:2c:34:32:
2a:95:f5:a5:9d:6b:07:36:6c:7e:f5:31:eb:a6:24:bf:3d:38:
16:87:d6:da:44:7b:33:0a:2d:ca:8f:f2:60:68:dc:1d:dc:de:
fd:2c:fc:2b:91:cd:c5:9b:6a:e9:85:ef:1c:cf:83:8d:f3:0e:
60:36:74:fc:d9:09:52:b5:8d:03:f5:52:0e:ff:88:43:52:39:
51:cf:26:12:37:b2:d9:81:27:15:8f:0f:ac:b1:69:9e:b2:3b:
fa:b2:ed:63:57:73:50:4a:7d:98:8b:b2:06:73:4b:56:db:fa:
cf:1e:01:44:02:cf:71:e9:20:56:ac:27:4d:2f:e2:d2:4e:1c:
a4:eb:85:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 03:03:58 2026 by rpki-client