Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
File: hyELNM4ALjCgpU-r-ivKxG36cig.mft (raw, json)
Hash identifier: 7ck5SZb4RelHeJC0RL2NxjbhQuqfgKn4z6brdb2AcRk=
Subject key identifier: B5:0E:23:DA:AA:9F:DA:67:C9:BA:67:08:D4:6C:9A:76:C9:40:1B:4D
Authority key identifier: 87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
Certificate issuer: /CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Certificate serial: 019CAC4699105B2DC426B8563967D6ECB1CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
Manifest number: 0665
Signing time: Mon 02 Mar 2026 02:00:33 +0000
Manifest this update: Mon 02 Mar 2026 02:00:33 +0000
Manifest next update: Tue 03 Mar 2026 02:00:33 +0000
Files and hashes: 1: OMhZqYIdlbW6MwJAX5hoXZbZs2s.roa (hash: Fz6GaOA6LETuiDcthzdYWCgbQdrzncp3eZt1aOMvmKA=)
2: hyELNM4ALjCgpU-r-ivKxG36cig.crl (hash: NBdm7ieR4Pi8qd7W79NCYNvjKRfAeyp4glcT4ZXVSo4=)
3: wOUhGVesCisY2HnfnAjl6Jnr-xg.roa (hash: M8DXDaBoO3oUhqazgEAtDmfaFAvLdpC11jKkFsNS9mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:99:10:5b:2d:c4:26:b8:56:39:67:d6:ec:b1:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Validity
Not Before: Mar 2 02:00:33 2026 GMT
Not After : Mar 3 02:00:33 2026 GMT
Subject: CN=b50e23daaa9fda67c9ba6708d46c9a76c9401b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:36:57:d3:37:41:1f:1b:f5:4b:7f:df:64:e6:
89:fa:e3:e5:fb:e1:ff:74:e7:ef:22:10:c7:44:3b:
6d:6a:58:a3:e3:ea:6b:95:5d:56:80:31:6d:f8:87:
a7:05:13:90:e4:2e:f8:ec:78:00:16:55:59:60:52:
a5:77:33:a2:e4:5b:cf:84:7a:bf:3d:49:a1:cc:21:
e3:3f:5b:3b:e7:d2:97:05:04:a6:f7:b4:a0:c9:95:
76:e2:f6:5a:49:c9:08:85:a2:ed:ad:6a:57:1a:19:
03:ec:70:02:3c:c4:0a:24:e6:e1:f8:bc:27:4d:9d:
65:77:6d:f9:11:f1:ee:8c:bb:85:f9:34:81:c0:2c:
28:72:bd:e1:b5:fc:4b:e4:19:d5:8e:31:df:93:e8:
a6:4c:0f:c5:5b:17:35:41:d0:bc:b6:b5:84:fb:ec:
53:55:74:94:d1:64:84:76:ca:fd:28:28:c0:4b:ee:
0b:aa:2e:cd:10:d2:c7:54:44:46:4b:4f:a7:79:56:
22:5d:e5:c6:dd:87:ed:4d:8a:14:dd:6c:1f:f4:70:
15:ec:ca:f2:a1:12:46:59:bf:b3:71:f5:88:8a:b7:
8c:71:04:35:00:46:2c:85:02:05:ac:05:2e:b4:60:
9e:ee:52:2c:bc:98:7b:e1:37:96:f6:58:48:91:f7:
4c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0E:23:DA:AA:9F:DA:67:C9:BA:67:08:D4:6C:9A:76:C9:40:1B:4D
X509v3 Authority Key Identifier:
keyid:87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:ec:63:12:97:fa:52:63:74:55:66:d5:d8:ec:90:e1:6a:1f:
87:ac:8f:06:20:a5:cd:0e:d6:d8:60:84:34:5f:12:74:51:3f:
8b:c2:c6:52:e0:ba:04:d9:12:d5:57:4b:cb:55:90:51:5c:14:
84:ad:82:e2:06:85:35:df:13:0a:3f:bf:b5:8f:1d:ec:4c:a2:
86:51:ca:7c:7a:be:a0:b8:e2:95:20:60:46:0b:d3:31:96:40:
a4:79:29:ad:35:78:5c:30:00:49:ec:2b:a8:d6:66:36:ea:c9:
83:8e:ad:8d:5d:1a:5a:b8:99:b3:23:28:aa:97:90:ca:5c:82:
c7:97:7b:28:9d:3f:15:1d:81:21:30:98:17:05:4c:28:79:7b:
a4:cf:60:2f:96:db:86:a7:19:e3:e0:14:82:9a:e4:ca:74:ea:
82:b2:1c:ea:9e:27:79:f0:6d:6f:a8:56:9b:8e:69:79:03:7e:
56:e3:a4:aa:32:48:d8:75:cc:24:82:ac:30:d8:28:89:08:f9:
97:63:f8:1c:1a:8c:64:04:16:73:9b:10:18:ed:a1:62:43:35:
3c:42:8f:a9:d3:02:d3:a9:3d:af:40:6b:ea:99:0f:43:9c:4b:
8e:ec:39:9f:ce:52:f1:49:6b:80:aa:3b:f3:bd:6e:4e:f1:e5:
c7:9d:ee:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:52:45 2026 by rpki-client