Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json)
Hash identifier: X6e/ImKAHh7aWl5mlKhmh4rYvxENwOLzUff3gXJZOuQ=
Subject key identifier: 4B:48:F0:82:2B:F0:0D:7D:65:A4:DC:9F:8C:B0:56:34:46:AF:15:97
Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Certificate serial: 019EC337AE6677358B5E6554A7F3A67ABCFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
Manifest number: 0BEC
Signing time: Sat 13 Jun 2026 23:01:06 +0000
Manifest this update: Sat 13 Jun 2026 23:01:06 +0000
Manifest next update: Sun 14 Jun 2026 23:01:06 +0000
Files and hashes: 1: U967gx6zU2ewhEleCWFHT_7A_9o.roa (hash: rEcp4qFupVQgVYmsA8hG1Q/G6+z2CIRB0Mx5vxsYxf0=)
2: h-KmrUFQix2mPVIgPxijrxKClGw.roa (hash: fc8hHRpimWi4M001kIYlHNuSFZw5gckGt8QS97+VBbM=)
3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: DsC2a8hkdIrm3ALM7UhL069DddljhvYDmy01lESGOW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:37:ae:66:77:35:8b:5e:65:54:a7:f3:a6:7a:bc:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Validity
Not Before: Jun 13 23:01:06 2026 GMT
Not After : Jun 14 23:01:06 2026 GMT
Subject: CN=4b48f0822bf00d7d65a4dc9f8cb0563446af1597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:24:9e:b5:08:6a:aa:96:48:ad:27:f8:8a:82:
8d:01:83:34:02:9a:21:2b:45:67:bc:cb:67:4c:f7:
fd:26:5b:0d:79:20:e6:74:71:78:57:58:39:2e:2f:
2b:0b:fe:6a:2d:41:2d:08:5c:87:86:3b:5e:91:5d:
9b:5e:97:89:f5:bc:d5:d5:9e:d3:38:7a:82:17:c7:
16:5d:c9:ce:e0:93:86:94:9b:78:8c:a7:58:7b:c3:
c0:f6:1c:92:3f:9a:8c:ce:f8:cb:79:e9:b9:70:da:
a3:54:01:db:7a:28:a8:00:74:9b:3d:ba:20:2e:94:
1d:4a:46:94:e8:d1:9b:4f:6b:c7:b8:94:4c:89:90:
fe:92:8f:8f:46:73:27:79:c7:70:96:38:44:fc:ae:
76:ed:f9:80:68:e7:06:ff:19:04:87:c4:21:d5:0b:
0b:6e:9c:d7:c5:9d:61:0c:e1:0f:7c:a3:64:dd:2e:
9a:0c:93:86:6d:57:2e:22:5b:e1:c1:f7:8c:57:bd:
81:77:4e:9a:a2:3e:32:af:ca:51:68:7f:a8:f6:92:
46:92:3f:4e:56:49:c0:46:fc:f9:bb:32:dd:e9:a0:
d2:64:18:33:bc:e0:32:a3:a4:c5:df:b7:ee:76:e3:
1d:04:01:f8:d4:c6:fb:4f:d5:ff:72:d7:8d:c2:22:
ab:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:48:F0:82:2B:F0:0D:7D:65:A4:DC:9F:8C:B0:56:34:46:AF:15:97
X509v3 Authority Key Identifier:
keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:92:96:3b:ae:37:64:f7:bb:15:fd:21:c0:3b:14:47:93:cb:
a5:85:96:9c:4d:ce:9d:e6:7a:ce:26:c1:61:f4:04:72:5e:89:
73:fd:86:5b:cb:f4:65:0e:90:b3:33:7e:2e:8e:a4:11:67:57:
10:8d:de:df:46:34:2f:88:8d:f2:4c:b2:d0:35:0d:bb:58:0a:
42:86:5b:39:ed:4f:95:a7:32:3b:57:04:85:ed:78:34:29:61:
91:3c:cb:46:54:0e:9e:46:53:20:ad:62:40:f9:31:38:4a:ef:
6c:bf:71:cb:4b:1f:c5:93:96:52:97:48:0c:1c:ec:3a:d3:82:
87:be:0f:87:a2:3b:b8:ea:fd:8b:48:f5:2b:b6:4a:26:4d:37:
b8:6c:d6:5a:c7:6b:c8:e1:aa:93:e9:c5:99:dd:3a:25:d2:5c:
e7:03:57:62:da:0f:9d:55:ff:a5:6b:7a:36:f1:e2:62:b9:0a:
0a:75:cd:67:f6:97:fc:a1:07:56:17:c7:28:41:da:2a:25:87:
51:55:e7:d0:39:68:6d:c6:5f:92:df:d9:6c:09:f4:15:dc:21:
cd:33:87:fc:04:7f:a0:2a:81:fc:15:d1:80:79:ec:cc:01:cd:
cf:11:a8:5f:68:2a:1c:c2:ee:32:eb:ee:8a:09:4b:6f:80:27:
15:cf:03:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7DN65mdzWLXmVUp/Omerz8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZmI4NWFkZDA5ZjQ4NzZlYTZhYWE4OGQ0ZDg4YzgxY2Ni
NmIxMGEwHhcNMjYwNjEzMjMwMTA2WhcNMjYwNjE0MjMwMTA2WjAzMTEwLwYDVQQD
Eyg0YjQ4ZjA4MjJiZjAwZDdkNjVhNGRjOWY4Y2IwNTYzNDQ2YWYxNTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAliSetQhqqpZIrSf4ioKNAYM0Apoh
K0VnvMtnTPf9JlsNeSDmdHF4V1g5Li8rC/5qLUEtCFyHhjtekV2bXpeJ9bzV1Z7T
OHqCF8cWXcnO4JOGlJt4jKdYe8PA9hySP5qMzvjLeem5cNqjVAHbeiioAHSbPbog
LpQdSkaU6NGbT2vHuJRMiZD+ko+PRnMnecdwljhE/K527fmAaOcG/xkEh8Qh1QsL
bpzXxZ1hDOEPfKNk3S6aDJOGbVcuIlvhwfeMV72Bd06aoj4yr8pRaH+o9pJGkj9O
VknARvz5uzLd6aDSZBgzvOAyo6TF37fuduMdBAH41Mb7T9X/cteNwiKr7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEtI8IIr8A19ZaTcn4ywVjRGrxWXMB8GA1UdIwQY
MBaAFIX7ha3Qn0h26mqqiNTYjIHMtrEKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2It
YzYxNjFjZTM5NWFmLzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2ItYzYxNjFjZTM5NWFm
LzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgJKWO643
ZPe7Ff0hwDsUR5PLpYWWnE3OneZ6zibBYfQEcl6Jc/2GW8v0ZQ6QszN+Lo6kEWdX
EI3e30Y0L4iN8kyy0DUNu1gKQoZbOe1PlacyO1cEhe14NClhkTzLRlQOnkZTIK1i
QPkxOErvbL9xy0sfxZOWUpdIDBzsOtOCh74Ph6I7uOr9i0j1K7ZKJk03uGzWWsdr
yOGqk+nFmd06JdJc5wNXYtoPnVX/pWt6NvHiYrkKCnXNZ/aX/KEHVhfHKEHaKiWH
UVXn0DlobcZfkt/ZbAn0FdwhzTOH/AR/oCqB/BXRgHnszAHNzxGoX2gqHMLuMuvu
iglLb4AnFc8D/g==
-----END CERTIFICATE-----
Generated at Sun Jun 14 02:14:08 2026 by rpki-client