Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
File: hyELNM4ALjCgpU-r-ivKxG36cig.mft (raw, json)
Hash identifier: gV81FLCuCVEG05AWyNB3EF7jyAagO3pHd1jGs4SWmMc=
Subject key identifier: B8:17:4F:9C:EC:60:EA:AF:AB:D3:90:7C:82:99:18:03:BB:64:2D:A2
Authority key identifier: 87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
Certificate issuer: /CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Certificate serial: 019EC336DE56C09ECCB6BE4711CF93D2B63F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
Manifest number: 077A
Signing time: Sat 13 Jun 2026 23:00:13 +0000
Manifest this update: Sat 13 Jun 2026 23:00:13 +0000
Manifest next update: Sun 14 Jun 2026 23:00:13 +0000
Files and hashes: 1: OMhZqYIdlbW6MwJAX5hoXZbZs2s.roa (hash: Fz6GaOA6LETuiDcthzdYWCgbQdrzncp3eZt1aOMvmKA=)
2: hyELNM4ALjCgpU-r-ivKxG36cig.crl (hash: 2WnXxfUEpTRFBBudjflV5x/ieXWHisJIMlJmktWzLAw=)
3: wOUhGVesCisY2HnfnAjl6Jnr-xg.roa (hash: M8DXDaBoO3oUhqazgEAtDmfaFAvLdpC11jKkFsNS9mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 23:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:36:de:56:c0:9e:cc:b6:be:47:11:cf:93:d2:b6:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Validity
Not Before: Jun 13 23:00:13 2026 GMT
Not After : Jun 14 23:00:13 2026 GMT
Subject: CN=b8174f9cec60eaafabd3907c82991803bb642da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:95:9f:7c:45:96:66:4b:bb:08:47:69:87:e3:
a3:5f:5c:fc:ae:86:3d:7d:19:71:39:d5:8d:1e:b4:
20:f4:3a:15:f9:c5:a6:d7:6f:81:aa:5b:0a:47:2d:
bd:41:d9:49:a0:e9:ad:79:08:22:db:d8:a0:ac:a4:
3a:ec:cd:5d:24:fd:6b:57:a8:41:b1:c6:ef:61:83:
b2:eb:5a:ec:41:f2:2f:1f:83:9d:4b:2f:cb:5a:7d:
6a:17:0c:d8:2c:fb:63:76:2c:8f:b9:7f:d2:bb:6a:
b6:5b:7d:fa:b1:5e:d4:04:e6:71:e0:e7:cc:b3:50:
e1:ae:35:c1:49:4d:66:d6:bf:a6:29:a0:dc:35:9b:
92:4f:28:a1:16:d1:d8:c3:6e:ad:58:b8:6d:af:1a:
5b:a1:16:6e:13:13:20:be:e3:da:05:15:b1:de:71:
dd:b0:17:9c:cd:46:f7:a8:69:1f:de:9c:9f:83:56:
23:0b:ad:26:6e:c3:f1:11:e9:5d:98:48:f5:60:60:
ae:3d:11:3d:15:d1:85:66:f2:f5:06:32:2e:7b:f9:
56:f3:49:fc:b9:9f:a1:8f:00:90:0e:c0:33:8d:b5:
97:4a:ea:2c:46:56:80:52:7d:d4:fb:62:ae:b9:8c:
f7:e8:d8:f0:ec:7b:7f:c7:a0:8d:fa:0c:7b:77:c3:
59:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:17:4F:9C:EC:60:EA:AF:AB:D3:90:7C:82:99:18:03:BB:64:2D:A2
X509v3 Authority Key Identifier:
keyid:87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:fa:81:10:11:03:12:a7:18:20:cf:e9:69:ef:b3:8c:46:f6:
7b:2b:20:8e:1c:cd:da:3f:5c:bd:d6:38:7d:a4:8a:c0:4f:df:
ce:84:71:70:bc:86:62:93:ec:e5:f3:be:fd:43:93:f5:9b:40:
45:cb:34:93:17:d2:a6:07:61:a8:65:58:29:69:7b:df:55:11:
c4:0c:29:37:42:28:1f:31:5a:10:6a:a0:a5:56:5f:a4:b1:4a:
c4:6c:b9:f3:4a:45:70:63:26:42:32:3a:c9:87:26:41:bc:70:
8a:f5:ab:cb:ce:7c:05:18:d5:72:b2:d3:85:85:0b:59:af:68:
34:dd:18:60:47:83:c7:48:28:6d:66:12:7e:be:10:d6:f0:90:
8a:73:8f:42:c9:11:53:11:a9:95:52:15:8d:8c:30:5f:29:c9:
e4:06:af:b1:1c:0b:4a:97:c3:ee:0e:48:76:f9:0d:9a:b2:9d:
05:3d:6f:66:f0:f2:61:25:28:35:bb:47:2c:e9:88:d5:5f:44:
4a:77:cf:a8:c7:63:88:11:f5:42:37:a7:ed:9b:79:f4:20:e2:
8e:c1:96:5f:44:c2:97:a1:c6:18:88:79:4b:9c:41:e5:1d:a5:
2f:80:02:86:68:9c:42:91:1d:0f:39:1b:ff:35:09:3f:4a:f7:
6a:a8:43:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:55:15 2026 by rpki-client