Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier: s3RLIPzQUtA6oojeCOraxLYnpLxYR4SI/STUDug7cMM=
Subject key identifier: 02:99:36:13:95:53:B7:79:71:AB:AB:D6:EE:D3:84:ED:37:4E:43:2B
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial: 019DA340F53DE47A6512DED81FDB1EB22006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number: 181F
Signing time: Sun 19 Apr 2026 01:00:36 +0000
Manifest this update: Sun 19 Apr 2026 01:00:36 +0000
Manifest next update: Mon 20 Apr 2026 01:00:36 +0000
Files and hashes: 1: DRi6gZm2ApJ9zWvuSIffTh_44j0.roa (hash: NDQ8jCUezYMaYn3NL3pjn/AqInQQgH2COtpVWhCKawg=)
2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: M0r6/43CD5GDU3hi3niuuoFI9HfeU9KYi3ume8ANYAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:40:f5:3d:e4:7a:65:12:de:d8:1f:db:1e:b2:20:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
Validity
Not Before: Apr 19 01:00:36 2026 GMT
Not After : Apr 20 01:00:36 2026 GMT
Subject: CN=029936139553b77971ababd6eed384ed374e432b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8f:5f:c5:51:b2:6c:78:e5:25:c9:14:97:7f:
66:58:6e:2d:21:8f:c9:77:42:17:a9:23:4c:e3:ce:
44:36:d4:c3:66:2a:dc:af:84:9f:a8:11:0a:68:03:
c9:58:98:3c:4c:3f:fb:cc:42:1b:28:b3:60:d7:18:
42:84:f4:d0:a0:41:c8:de:aa:1a:8a:3f:48:2d:93:
fe:9a:0f:4b:98:a0:4d:b2:6e:ea:a4:44:81:2d:39:
66:fc:36:c0:c0:7e:15:1f:74:cf:76:0b:51:79:88:
a8:0c:0f:43:98:30:6d:f4:86:d0:69:56:88:a1:cf:
00:b8:c5:1c:9b:74:02:17:6f:d9:73:b1:c4:37:a4:
57:6f:c5:e2:c1:e7:2a:d9:35:fa:80:ed:cf:d4:ad:
e1:7c:5e:c6:a7:77:d3:1f:e9:fb:73:19:23:44:87:
c0:b4:49:9a:f0:23:d8:67:d9:eb:aa:14:71:e7:c8:
e2:45:45:0e:e2:da:7f:fc:d0:a3:9c:e8:db:f8:ee:
7f:23:89:db:c0:c1:27:47:93:de:bf:be:bb:0d:30:
57:0d:b8:ce:de:3b:c5:0e:00:8d:9e:71:03:b4:1b:
ba:63:3f:5a:c2:ae:da:9c:81:0f:8f:18:02:ce:ed:
47:05:35:9d:b8:39:b8:22:f0:29:8d:38:7b:6c:39:
67:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:99:36:13:95:53:B7:79:71:AB:AB:D6:EE:D3:84:ED:37:4E:43:2B
X509v3 Authority Key Identifier:
keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:11:d4:6a:9a:21:ff:93:86:58:c3:41:17:32:f3:9e:59:1c:
d1:8f:89:bd:9b:3e:05:ce:86:ca:c3:0c:e3:84:8d:b7:81:a4:
f8:3f:85:f7:0a:2d:10:2c:7b:08:34:4e:96:e0:73:20:b5:e7:
d3:9e:de:21:a1:db:81:13:d9:ae:85:b1:2c:ed:5c:ff:b8:bb:
ab:9e:78:50:6a:6c:23:79:43:c0:bc:a1:af:fe:25:02:17:f7:
08:10:9f:a1:4b:59:5a:2d:31:15:bb:1b:26:83:cf:75:1e:0b:
7f:45:0a:56:06:1a:18:2e:21:58:f9:c4:a5:ce:fe:58:be:96:
5c:0d:8b:db:f9:3b:39:75:0d:15:a7:f0:05:7b:25:d1:61:30:
f5:13:f0:1d:03:7f:2c:b1:17:62:00:af:ba:7b:1b:a0:b2:34:
1e:f2:11:03:de:7c:dd:ac:6b:8d:14:c2:e5:3d:df:5a:44:7c:
81:c2:07:fc:c1:5b:a8:75:6b:41:32:29:32:a5:2a:3f:80:3e:
89:36:7f:d6:f3:8a:f0:37:73:29:a4:11:74:78:c7:51:f8:41:
30:09:14:59:06:5b:fd:c4:79:ea:6a:0c:09:32:4f:55:49:d5:
ac:2e:f6:7d:1b:20:9d:4a:c2:e1:a2:76:51:b2:20:3f:8b:b0:
8f:c9:7f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:44:38 2026 by rpki-client