Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: s6zorbNRi1iaRTKQPUjV20MY1FFZLp4q5FQY7Nnx3Bc=
Subject key identifier: 25:B2:1B:47:0B:F0:0F:05:64:AC:62:2F:C1:4E:32:06:73:97:2E:97
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 019EC1B781E04D98F47B83EE1ED3484367C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 195A
Signing time: Sat 13 Jun 2026 16:01:29 +0000
Manifest this update: Sat 13 Jun 2026 16:01:29 +0000
Manifest next update: Sun 14 Jun 2026 16:01:29 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: q/dQfP+CD2R0QAerX0TSo1b+hqXBDYnoAixaMj0E5m4=)
2: z_fYCrrGSV54cj1knb3xBk4SK5U.roa (hash: EFlql6uKuI4YQL66OtBnNw+c0chssYW8DVC7ieJRlbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:81:e0:4d:98:f4:7b:83:ee:1e:d3:48:43:67:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Jun 13 16:01:29 2026 GMT
Not After : Jun 14 16:01:29 2026 GMT
Subject: CN=25b21b470bf00f0564ac622fc14e320673972e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f8:71:40:17:6b:eb:d1:ad:72:60:b5:b0:aa:
db:3d:e5:c5:bf:33:c9:cd:be:ed:48:66:af:65:ea:
6c:40:47:1e:2e:41:b3:6d:3a:74:b2:da:5b:a7:c7:
8d:cc:2a:10:e5:e7:a0:bc:b7:30:98:34:01:9b:74:
99:ee:01:15:72:58:cf:56:29:27:83:96:f4:52:09:
b8:01:1d:f8:5f:43:0f:83:29:1d:04:86:a9:14:e2:
28:19:9e:63:de:f7:8f:26:81:51:22:7b:f4:6e:91:
5e:1f:33:dd:4e:7b:da:ce:be:b4:28:85:33:17:6a:
8d:96:bd:c9:2b:2a:f5:ad:1d:e4:51:5e:74:31:81:
4d:f4:b5:b0:f3:71:cb:75:5e:d0:30:01:f4:6f:95:
52:d8:7b:d9:bb:5b:12:ea:20:c4:7d:f4:7b:6a:3a:
61:41:14:50:84:a6:14:0f:2c:d4:9e:2d:64:57:34:
60:e3:a7:0c:d1:18:af:e1:8d:c7:3f:07:97:be:61:
d0:81:67:de:02:80:fe:1c:43:71:80:c7:3d:2e:4d:
12:92:90:8a:91:f0:47:58:3e:da:ce:f2:b1:0a:a8:
98:45:75:ee:ac:5c:dd:40:3f:ea:f4:b4:e9:40:63:
51:4e:18:fd:5d:33:d4:d4:38:98:e2:7a:62:9f:80:
15:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B2:1B:47:0B:F0:0F:05:64:AC:62:2F:C1:4E:32:06:73:97:2E:97
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:7e:65:58:c7:40:83:b8:e8:b9:12:12:db:1c:60:9d:9a:65:
9f:fd:6e:99:8b:2d:fb:fc:0b:2f:33:4e:ee:87:f0:4b:bd:d9:
c3:1c:d4:a1:27:d6:5d:11:1f:5e:d4:34:50:19:e7:27:4a:f8:
db:6c:cd:ed:c7:10:f3:07:bb:24:0a:d9:c6:8b:ba:af:be:1d:
db:97:48:3a:5e:95:8f:2e:fd:bc:a4:f1:62:6d:8b:18:6a:f1:
28:63:31:36:6e:af:df:3f:34:47:c3:8f:2c:ba:ca:1a:bc:69:
d2:40:c1:a1:44:60:9d:a6:32:65:ae:85:7e:ea:2d:ba:9a:1f:
1c:61:26:33:8d:14:fd:9c:92:e0:fd:cf:95:5f:5d:30:b4:e7:
59:30:d9:30:8f:e8:e1:de:27:4d:83:60:47:59:eb:3a:e9:27:
22:7e:d6:ee:2c:33:83:c1:d9:fc:6f:7c:c2:c3:e2:57:84:b3:
cb:99:53:c6:65:37:cf:93:c5:35:2b:0a:74:b2:e0:fa:fc:ea:
51:cb:b2:fe:28:e9:f4:ab:cc:60:31:3b:0d:9f:ad:06:6a:5f:
51:53:3c:a4:d1:22:ac:c7:67:66:a1:83:40:0e:0d:b0:ed:2f:
a6:a5:89:22:4f:a7:23:b4:79:0e:ba:2b:0e:13:98:43:07:e3:
be:44:b6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:53:35 2026 by rpki-client