Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: msIEeADRuRdFLwmeCvv3OdYw910TjPNBDrVciZ93EgE=
Subject key identifier: 5B:9A:E6:68:E9:8A:6E:B2:70:4A:BF:F6:D6:FF:3A:29:C1:54:A9:91
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 019EBF239ED3A5F155F5145CE6503CF0024D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: 053C
Signing time: Sat 13 Jun 2026 04:00:43 +0000
Manifest this update: Sat 13 Jun 2026 04:00:43 +0000
Manifest next update: Sun 14 Jun 2026 04:00:43 +0000
Files and hashes: 1: AGVrI7h1W1sZnmEHrQIXxLRxF1Q.roa (hash: K1nbjcJomqgMcH/NVsTCJWhMoSmEDtw4c8u/MMrHlso=)
2: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: LAvbkgvluLCQgHIg3p1wvUHKzDpANMWIHBbD8fn7UC0=)
3: fnZsGtHZZ57ibD1bgR7D-kx03A8.asa (hash: gnq6h8vpZgrDrbXWUtlG5+lFKokphaSsAqWL7zsvVig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:9e:d3:a5:f1:55:f5:14:5c:e6:50:3c:f0:02:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: Jun 13 04:00:43 2026 GMT
Not After : Jun 14 04:00:43 2026 GMT
Subject: CN=5b9ae668e98a6eb2704abff6d6ff3a29c154a991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:02:66:dd:03:a1:39:d5:1c:e1:47:ed:14:91:
63:c0:3e:63:51:cd:d2:a6:9a:ed:22:23:90:ee:0d:
32:ff:29:4f:08:df:f5:8f:e1:a0:94:02:b1:bf:fc:
05:b8:92:74:69:80:d2:b7:e3:19:0b:56:aa:f0:15:
64:01:2e:44:78:04:d3:8f:2c:6d:94:1f:12:8e:8f:
f3:0a:a6:dc:15:af:f7:ba:1e:be:05:90:cd:41:cb:
ca:14:d9:1f:b1:e3:dd:e5:0b:21:72:c1:3a:f2:8c:
47:61:09:84:56:b3:e4:cb:7a:fd:93:a8:64:3c:da:
fa:05:5e:f2:71:b0:94:ad:1c:bd:61:04:97:c1:4a:
a1:3c:72:da:af:13:c6:af:08:5d:2c:57:a7:32:eb:
ac:0c:f2:f7:c1:3e:01:1e:f5:f0:73:14:d3:62:5d:
b8:30:75:da:94:ec:0e:02:a7:c5:50:c5:70:e6:ff:
f5:41:aa:76:f1:ff:f9:f2:64:da:45:fb:52:dd:eb:
0d:0c:15:63:0a:aa:97:30:60:cd:cd:81:66:ec:d6:
57:15:1d:59:cc:e4:e5:51:0a:fe:18:16:f6:58:66:
cb:9d:ce:8d:0b:88:7d:df:0a:ab:04:0d:a0:0e:2f:
08:df:b2:7f:dd:ab:95:a0:08:5c:3b:4b:c1:3f:2b:
1b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9A:E6:68:E9:8A:6E:B2:70:4A:BF:F6:D6:FF:3A:29:C1:54:A9:91
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:75:b5:f2:95:bb:d4:e0:e5:6d:cd:ad:11:a8:81:65:6b:8d:
c7:40:2c:d2:dc:c3:49:9c:91:54:e4:fd:9d:1e:44:df:cc:95:
d0:31:60:f3:7a:c9:f7:9c:42:20:2f:d8:c5:30:98:ce:8a:bb:
67:ca:2e:5e:de:a1:38:74:dc:a7:fb:f8:24:53:05:c8:12:fc:
42:25:41:16:33:f8:af:29:62:54:d2:a6:fd:ad:fc:02:14:88:
9c:36:39:e7:9d:9c:65:a8:a3:78:e3:65:83:c6:9c:94:45:a0:
8b:c7:06:ee:71:4e:95:37:5f:b1:93:fb:f2:16:81:10:d2:66:
0f:5b:19:9f:b3:76:45:b9:59:8d:08:67:43:3d:5e:ab:77:ab:
49:9a:70:e9:ad:f3:ef:e7:10:03:61:da:a1:e9:23:47:b4:80:
12:85:c5:d1:bb:ac:0e:bc:df:da:6b:d8:3d:d7:ee:c9:60:a0:
ff:a6:6c:76:97:65:bb:81:36:ca:d1:ec:76:2c:c9:77:ea:0c:
5a:cf:04:8a:64:ef:10:a5:01:97:1e:e2:26:bf:0c:f7:0c:91:
9c:3e:55:82:3a:01:d0:3c:c6:b8:d9:e7:b9:c1:b7:32:fa:09:
57:7d:3a:06:f0:88:de:db:85:2c:f6:47:1a:f0:8a:e3:6e:53:
05:1f:96:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:21:44 2026 by rpki-client