Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: WKRfikwsjGxbB9T6PonPtRNWP/MGA/YAyeaGsGmYfDU=
Subject key identifier: 3A:67:33:71:DC:DA:AA:2B:74:0B:FE:35:C8:2E:76:69:19:C2:86:91
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 019ED4991992A0F9097B9C25D84254C4CEAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0D9A
Signing time: Wed 17 Jun 2026 08:01:03 +0000
Manifest this update: Wed 17 Jun 2026 08:01:03 +0000
Manifest next update: Thu 18 Jun 2026 08:01:03 +0000
Files and hashes: 1: EPIHsxcfLuChPC0N3L4_ybUFOk0.roa (hash: 1xlVkrwEe8dHdyY6GUfJC8Bthh85BMj9UMn+rmdsApg=)
2: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: 81r6lEZ9qoHVa+Se9D/fGavfCDqJqqNQD7HsuYy7Wpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:99:19:92:a0:f9:09:7b:9c:25:d8:42:54:c4:ce:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Jun 17 08:01:03 2026 GMT
Not After : Jun 18 08:01:03 2026 GMT
Subject: CN=3a673371dcdaaa2b740bfe35c82e766919c28691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:10:ce:54:20:ac:e2:b8:b3:e9:86:6b:9b:18:
98:48:ec:41:c5:16:02:be:b2:fe:77:8e:f1:14:09:
52:03:9e:0d:ba:c3:7e:af:02:ed:66:4e:8c:8d:17:
f4:b0:75:d9:ed:3c:fc:3f:a7:80:cb:82:12:ee:ef:
56:a5:6f:1d:54:f3:6d:fe:2d:34:ed:55:68:f5:e7:
61:3a:6e:27:f6:5c:b3:3f:95:b3:d5:51:61:d1:c7:
66:37:1f:25:66:12:37:d5:aa:f8:41:2e:15:74:b3:
f5:45:cb:ae:bd:d2:5b:aa:e8:18:91:e4:5d:a4:8a:
c2:bd:ea:4a:8f:ee:57:98:4e:14:83:3a:bd:3d:e7:
c5:22:f6:ae:9b:87:b8:4d:40:8a:5d:d3:78:a3:77:
6b:0f:55:b2:f7:c1:eb:78:ea:d3:26:e7:ae:66:33:
28:00:fb:b2:55:93:60:e6:dc:f9:d0:a4:a6:a0:9e:
93:d8:97:e0:34:6e:e9:71:9d:fe:0a:ed:21:78:ff:
8a:d8:1a:dd:5a:88:82:87:1a:a0:0b:1a:2b:e3:ff:
8b:e3:92:2f:f0:62:d7:55:36:b8:96:b0:9a:cc:a6:
1f:dd:a9:c3:1d:70:57:30:77:29:38:43:b0:db:b7:
b9:fb:e6:b2:72:b4:6d:20:0f:7c:e0:20:4c:01:06:
48:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:67:33:71:DC:DA:AA:2B:74:0B:FE:35:C8:2E:76:69:19:C2:86:91
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:ba:d8:44:50:8d:62:43:b5:04:bd:fe:cf:90:61:1d:fd:5b:
51:76:ae:eb:33:33:ae:3c:ac:10:ef:0f:ac:a0:34:03:2c:39:
12:94:0f:e7:8d:39:43:0d:c5:c0:71:af:bb:6d:d8:b8:f4:fa:
51:16:01:b5:0d:1e:a5:01:07:d5:75:44:c5:79:68:af:55:12:
09:85:b8:4e:12:8c:66:a8:e2:85:38:22:21:15:f1:1e:41:e0:
0f:c9:47:d5:19:80:83:19:25:45:00:0c:93:84:73:40:43:ae:
63:69:32:c9:14:85:37:f4:a0:60:e2:b2:cf:f8:0a:5b:e1:db:
ec:d1:25:34:c4:27:cb:21:dc:96:53:64:cb:30:e5:cc:ec:14:
a3:60:a9:e9:57:30:1c:34:7f:9d:22:09:e1:97:5d:9a:76:7e:
ce:bc:f6:24:98:3e:71:5c:27:7d:6d:b5:9e:4c:0c:76:36:e5:
64:b6:f9:3e:ce:ed:f3:c7:99:8e:28:6c:bf:ad:fa:8d:f9:df:
8d:6c:b0:9f:ce:e7:5b:b6:ef:08:06:d3:5d:0f:df:ea:2c:4b:
b2:9b:2c:6e:6b:d8:5d:ac:b8:36:43:ba:0f:2f:d5:0c:ea:2d:
85:e6:cf:dc:68:bc:44:c7:8e:93:f4:09:cc:0c:9a:86:93:1b:
d4:25:5a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 13:00:45 2026 by rpki-client