Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
File: hGzXvBkUIFasr5VzyqGvjehxgVY.mft (raw, json)
Hash identifier: LecSH5P7FCdfss/FU2o4xGpaqPyf6FX4LHn0nAuqE50=
Subject key identifier: 0A:74:75:0B:08:88:3F:96:27:41:74:55:D2:CF:7E:97:4A:C7:30:1E
Authority key identifier: 84:6C:D7:BC:19:14:20:56:AC:AF:95:73:CA:A1:AF:8D:E8:71:81:56
Certificate issuer: /CN=846cd7bc19142056acaf9573caa1af8de8718156
Certificate serial: 019EC30045AD3629C64F647261C717EB30E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGzXvBkUIFasr5VzyqGvjehxgVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
Manifest number: 04A8
Signing time: Sat 13 Jun 2026 22:00:35 +0000
Manifest this update: Sat 13 Jun 2026 22:00:35 +0000
Manifest next update: Sun 14 Jun 2026 22:00:35 +0000
Files and hashes: 1: hGzXvBkUIFasr5VzyqGvjehxgVY.crl (hash: 8plE3xqj5L3r2l3BuLdFM7Z/hQ5RzJk7D15Cy9PD3+k=)
2: uoOfCKkTnW2JzFJRrSJDBT5bTzc.roa (hash: jS+d7zXHIn78Fh4bwNdoOL3BSqCzsjrWEmoa3PN6ng4=)
3: wOpotjYca3hIDPpRRC4dKRWIXpY.roa (hash: ILk18RM+vK4poNQ402hCagvt+4XgooFqtYGnOzDde5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGzXvBkUIFasr5VzyqGvjehxgVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:45:ad:36:29:c6:4f:64:72:61:c7:17:eb:30:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846cd7bc19142056acaf9573caa1af8de8718156
Validity
Not Before: Jun 13 22:00:35 2026 GMT
Not After : Jun 14 22:00:35 2026 GMT
Subject: CN=0a74750b08883f9627417455d2cf7e974ac7301e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b4:29:5c:75:d6:18:8d:1e:e5:fa:91:e0:5b:
8a:e3:0a:26:00:1e:dd:4e:59:29:e5:aa:44:d8:21:
a4:0f:f9:2a:8e:e2:89:1c:41:5c:cb:be:d9:c1:22:
48:0e:14:58:51:a8:9d:19:88:34:cd:46:7e:f9:16:
f1:cc:75:d7:b7:54:3a:46:ed:48:49:0a:b3:fa:ce:
a2:18:b4:2e:f0:d8:43:e6:3f:19:1a:6c:48:09:0c:
c4:47:00:36:4c:00:e8:c4:d5:0f:ee:f3:e1:a6:5f:
27:d4:19:80:8f:f1:f9:5e:94:3e:c9:ef:e6:fb:f6:
3c:b5:b2:96:78:ae:a1:2e:39:d9:6e:0c:67:ed:53:
3b:19:5d:8f:88:94:de:c1:55:00:39:18:30:63:93:
06:8d:18:8f:31:12:4a:d0:bd:8b:0b:7d:ab:46:be:
d0:b1:48:bd:92:be:02:9d:d4:bc:f6:18:ef:28:03:
a8:4a:67:c6:60:57:81:9c:1f:6a:d7:92:b4:77:79:
13:05:9f:4a:c9:34:5c:b2:f4:8c:30:53:7c:90:31:
34:fc:d2:b4:c5:26:39:2a:5f:6d:90:63:2a:fa:7f:
b0:36:cd:8f:ff:0a:e2:5f:2f:dd:03:c2:a7:ed:8f:
06:fa:3d:5a:27:7b:fa:ca:9c:31:67:1b:dd:57:30:
74:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:74:75:0B:08:88:3F:96:27:41:74:55:D2:CF:7E:97:4A:C7:30:1E
X509v3 Authority Key Identifier:
keyid:84:6C:D7:BC:19:14:20:56:AC:AF:95:73:CA:A1:AF:8D:E8:71:81:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGzXvBkUIFasr5VzyqGvjehxgVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:f1:e7:f4:e3:65:a8:84:77:ff:77:77:2e:d2:bc:02:0f:44:
a1:c4:3b:53:a8:ba:bb:33:20:cb:ff:45:54:97:22:f9:ca:3c:
ce:df:d0:cd:f4:29:39:4d:45:1d:ef:5f:06:4a:b3:6d:cd:8f:
d4:65:0b:7b:98:1e:c3:89:b0:0e:4d:d2:b4:90:89:87:d0:68:
fe:3e:fb:80:b0:b7:2a:03:52:f4:41:ec:ff:c7:49:ec:32:b4:
22:73:f4:db:f6:34:ac:ae:17:42:dd:9e:36:71:ff:91:1c:fa:
ff:c5:78:03:7c:b7:4e:34:d2:88:6c:9f:0d:4f:4a:64:82:73:
8b:be:f2:e7:5e:87:bb:db:04:ab:9e:d7:ef:b6:ed:c2:4a:b8:
e6:ad:0f:82:f4:cf:92:05:54:d8:7b:08:0a:cb:7b:55:84:12:
f2:45:dc:0a:80:87:e0:99:61:5e:39:bd:0c:ae:99:6f:6a:f7:
f2:cf:c2:78:1e:4c:2d:19:b7:c1:1f:fa:da:12:a8:6a:10:87:
39:d1:f0:0d:ff:4c:6e:3c:aa:5f:d5:57:08:51:84:7a:ea:ec:
6a:79:bd:e0:57:2c:59:a5:95:fa:ef:20:d1:0b:6c:70:63:9d:
7c:60:e4:f3:6e:8a:8d:bd:e1:48:1c:d2:58:20:cf:cc:69:07:
8d:06:be:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 03:08:29 2026 by rpki-client