Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: V59Dd9yAr2XA2d5Uh4Vq/EUGnWQSY+x0axeGWuunB3k=
Subject key identifier: D4:3E:5C:65:B3:5C:04:60:8A:43:78:08:65:45:F2:50:39:B9:3B:D1
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 019D99CFF7DC3FD8F3B97391E710E9A6023F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0CF7
Signing time: Fri 17 Apr 2026 05:00:36 +0000
Manifest this update: Fri 17 Apr 2026 05:00:36 +0000
Manifest next update: Sat 18 Apr 2026 05:00:36 +0000
Files and hashes: 1: EPIHsxcfLuChPC0N3L4_ybUFOk0.roa (hash: 1xlVkrwEe8dHdyY6GUfJC8Bthh85BMj9UMn+rmdsApg=)
2: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: bwRr9l/H2NwbLOhW/A2UyZeAyWqLh5U9A5hUXGwXCeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:f7:dc:3f:d8:f3:b9:73:91:e7:10:e9:a6:02:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Apr 17 05:00:36 2026 GMT
Not After : Apr 18 05:00:36 2026 GMT
Subject: CN=d43e5c65b35c04608a4378086545f25039b93bd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b0:fa:41:29:35:2b:31:81:66:68:ac:fd:1d:
55:29:06:f9:68:55:08:cf:46:55:92:e1:ca:a3:18:
bc:df:b4:02:e9:17:86:f7:5b:29:41:5c:01:58:2d:
d3:7d:22:91:60:7c:2c:8f:92:d9:a6:1a:65:2a:04:
1c:f1:46:d9:dc:a8:48:82:a2:c8:04:20:61:91:75:
de:eb:9e:9c:eb:83:14:fe:11:e4:7d:8c:b2:67:7f:
20:6a:95:1c:69:56:55:08:ce:52:a5:4c:05:78:bf:
d0:c1:58:80:21:4b:82:80:2e:cc:07:b5:09:b6:d7:
4c:a2:d0:89:6d:66:f7:32:eb:c2:54:f4:ca:c3:35:
d8:fb:04:8a:44:8b:66:d2:d6:4c:e2:15:8f:8a:17:
ca:38:16:bf:4f:10:94:ae:f0:ba:7a:36:25:89:df:
b0:1e:26:59:f6:24:d2:74:3e:c6:83:a7:6e:a3:d2:
79:d5:69:4a:9d:96:e0:1e:c3:c7:10:d2:88:eb:6b:
fa:37:fc:fc:7b:1a:08:9c:ce:fb:fd:9a:1e:c6:7e:
e5:e6:01:4b:e0:60:27:c3:aa:4a:62:8b:18:20:a6:
f0:1b:4b:57:d1:4e:19:9c:69:f9:0f:97:c0:29:a6:
65:d5:39:eb:6b:2c:21:13:2b:1f:a7:cf:1b:40:0a:
e0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3E:5C:65:B3:5C:04:60:8A:43:78:08:65:45:F2:50:39:B9:3B:D1
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ce:e7:55:e2:ce:31:cd:e0:53:92:46:d1:bd:03:d1:2c:9d:
7a:ab:38:24:ca:53:50:4b:d7:04:f7:a4:8a:c6:8e:0d:19:64:
4c:4a:d4:8e:ca:a3:d4:74:95:7c:41:58:30:22:15:8a:ec:eb:
99:62:e8:33:cb:39:a8:e8:dc:c7:6e:a7:71:3d:33:d6:75:fc:
42:1c:4f:04:7e:98:3e:9e:02:85:3a:f1:28:b3:22:ac:01:9d:
7c:f6:8a:2a:13:fa:38:3a:87:92:6e:2c:cb:5f:d9:13:4c:3b:
56:61:b0:d0:3d:7f:34:7f:50:5a:8c:09:9f:ea:67:4a:31:c7:
4f:d5:2f:b3:21:26:26:7e:f9:43:1c:63:ec:de:d7:5b:eb:06:
e2:35:e2:26:12:14:00:bf:96:b1:ce:de:1f:40:36:c2:4e:9f:
19:c1:47:f9:77:ef:06:f3:98:36:c1:d5:8e:37:50:b6:9e:98:
83:1e:c2:a0:48:b0:09:a6:6f:b1:cd:a2:c8:c4:a2:5f:f9:69:
b8:9c:9f:b7:10:64:49:0e:ae:d5:c2:0d:ff:00:72:f3:47:9f:
ba:e8:8a:9a:fc:5e:b9:4b:a7:d1:28:96:db:03:93:d3:82:49:
60:1c:51:33:bd:e8:9c:38:6f:3b:ea:c0:f2:12:04:6b:28:5f:
d0:10:ac:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:35:18 2026 by rpki-client