Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: qhCsI51Al+VtyV36zyZwK2nJOYCIR9DPpirkOLMi86s=
Subject key identifier: 1C:E9:D1:84:3D:B1:E8:C9:A5:DE:22:19:79:E1:33:90:E5:39:E5:86
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 019CAA583BD499955828D4684BE88740C5CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0C7B
Signing time: Sun 01 Mar 2026 17:00:34 +0000
Manifest this update: Sun 01 Mar 2026 17:00:34 +0000
Manifest next update: Mon 02 Mar 2026 17:00:34 +0000
Files and hashes: 1: EPIHsxcfLuChPC0N3L4_ybUFOk0.roa (hash: 1xlVkrwEe8dHdyY6GUfJC8Bthh85BMj9UMn+rmdsApg=)
2: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: nRA0ZO2sjiEShDI2Pfj2ohBUtw/MWdrOUQUMA48iy1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:3b:d4:99:95:58:28:d4:68:4b:e8:87:40:c5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Mar 1 17:00:34 2026 GMT
Not After : Mar 2 17:00:34 2026 GMT
Subject: CN=1ce9d1843db1e8c9a5de221979e13390e539e586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:8e:47:71:94:4f:55:f8:7e:49:73:ef:38:
26:95:af:c7:9e:c2:49:83:f5:9a:7a:43:6f:03:1f:
32:1c:f1:7d:be:62:60:c3:25:8c:f8:12:18:a6:d7:
66:1e:ab:63:ca:f6:8d:b7:58:c7:28:ca:5f:e2:84:
09:da:7f:50:05:c3:03:34:c2:7c:92:70:e3:93:7b:
08:a1:36:e6:b4:d5:0c:f0:34:3f:a5:0b:ec:ba:12:
25:af:91:b2:4c:fa:e3:ba:7d:97:2d:72:66:6e:5f:
f7:b6:34:73:82:9d:f1:ce:5a:9e:37:8f:6c:57:cc:
89:c6:13:d2:19:3c:f3:98:42:b3:4a:c9:7e:ac:1c:
ca:ff:d0:6b:6c:b4:00:54:f6:d8:7c:b1:8c:36:b3:
85:f2:db:c5:9a:1b:71:bd:43:5c:18:e4:3f:76:53:
9c:23:65:3d:78:66:9e:7d:e1:5d:c2:d3:66:8c:9b:
48:3d:d5:2b:e3:05:f6:fe:b3:38:1e:25:56:e6:f6:
fe:97:42:41:5b:57:8d:18:b6:ad:a5:53:69:bc:10:
6a:6d:dd:31:69:87:28:9b:df:7b:b6:b7:e6:22:9d:
bb:fc:a6:e9:c2:ae:3e:e0:89:90:3f:54:f8:b2:25:
d1:a1:4b:8d:56:b6:70:6a:5f:59:c6:50:31:00:0c:
f1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E9:D1:84:3D:B1:E8:C9:A5:DE:22:19:79:E1:33:90:E5:39:E5:86
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:56:72:f1:f2:c9:80:fe:c2:96:f8:db:74:7f:2c:e6:a6:f9:
e0:c7:dc:e0:ad:ea:dc:75:a1:ff:c8:46:78:5f:96:87:3c:ae:
e3:b0:11:8b:c7:a6:7e:b7:b8:c4:3d:aa:8f:36:3b:46:f8:05:
43:8a:79:0c:e2:0a:57:91:09:35:e5:3a:85:20:42:84:46:f8:
5d:26:d4:19:81:ab:1a:9b:b6:07:15:ba:2e:f5:9d:7d:4b:93:
ac:34:6c:d7:45:5e:1e:d6:b7:cb:b0:c8:c1:8c:b3:97:d9:a2:
33:eb:81:51:a3:2b:b2:f5:91:53:67:96:a0:b2:0f:7a:02:f2:
ed:a5:a6:df:79:cb:f9:fe:c7:39:d4:53:c8:f3:0e:4e:63:d1:
b1:b6:da:c4:0f:66:9d:b8:60:db:90:17:ef:33:fc:64:74:9d:
8a:f5:ef:eb:21:e6:b9:e1:ef:45:a1:d2:c8:3d:e8:1c:a1:fe:
a1:a0:3f:9f:af:96:d1:ec:bd:cc:29:10:39:e1:6b:a1:1b:6c:
03:77:48:e3:8d:20:c7:c1:a0:f4:42:b6:99:9a:67:9b:d6:2c:
b2:26:c5:a5:be:7d:b5:f2:56:f3:84:a3:1f:ef:5b:ce:31:73:
9d:cc:46:17:a3:dc:08:eb:2b:b3:df:3d:13:7b:02:81:b1:19:
d0:ff:c3:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWDvUmZVYKNRoS+iHQMXNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZGU3NDYzZWQ4NDk4MDIwZGQzOTIzMjI0NTlkMmNmNDBm
MjI2YjIwHhcNMjYwMzAxMTcwMDM0WhcNMjYwMzAyMTcwMDM0WjAzMTEwLwYDVQQD
EygxY2U5ZDE4NDNkYjFlOGM5YTVkZTIyMTk3OWUxMzM5MGU1MzllNTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQ2OR3GUT1X4fklz7zgmla/HnsJJ
g/WaekNvAx8yHPF9vmJgwyWM+BIYptdmHqtjyvaNt1jHKMpf4oQJ2n9QBcMDNMJ8
knDjk3sIoTbmtNUM8DQ/pQvsuhIlr5GyTPrjun2XLXJmbl/3tjRzgp3xzlqeN49s
V8yJxhPSGTzzmEKzSsl+rBzK/9BrbLQAVPbYfLGMNrOF8tvFmhtxvUNcGOQ/dlOc
I2U9eGaefeFdwtNmjJtIPdUr4wX2/rM4HiVW5vb+l0JBW1eNGLatpVNpvBBqbd0x
aYcom997trfmIp27/Kbpwq4+4ImQP1T4siXRoUuNVrZwal9ZxlAxAAzx+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBzp0YQ9sejJpd4iGXnhM5DlOeWGMB8GA1UdIwQY
MBaAFB3edGPthJgCDdOSMiRZ0s9A8iayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5Njgt
NDNjN2YwMjdjNmU0LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5NjgtNDNjN2YwMjdjNmU0
LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQFZy8fLJ
gP7ClvjbdH8s5qb54Mfc4K3q3HWh/8hGeF+Whzyu47ARi8emfre4xD2qjzY7RvgF
Q4p5DOIKV5EJNeU6hSBChEb4XSbUGYGrGpu2BxW6LvWdfUuTrDRs10VeHta3y7DI
wYyzl9miM+uBUaMrsvWRU2eWoLIPegLy7aWm33nL+f7HOdRTyPMOTmPRsbbaxA9m
nbhg25AX7zP8ZHSdivXv6yHmueHvRaHSyD3oHKH+oaA/n6+W0ey9zCkQOeFroRts
A3dI440gx8Gg9EK2mZpnm9YssibFpb59tfJW84SjH+9bzjFzncxGF6PcCOsrs989
E3sCgbEZ0P/DsQ==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:24 2026 by rpki-client