Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File: hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier: IT6pMMaALA94mzC+jGBk+sn5bpEMv8cvFwr6sX9XxiI=
Subject key identifier: FD:5E:8A:16:3D:93:D9:0C:E9:61:74:98:98:55:82:44:DE:6B:EE:72
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer: /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial: 019EC36DF8206A3B0928C12F04981339F1B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number: 0E4D
Signing time: Sun 14 Jun 2026 00:00:24 +0000
Manifest this update: Sun 14 Jun 2026 00:00:24 +0000
Manifest next update: Mon 15 Jun 2026 00:00:24 +0000
Files and hashes: 1: D07dxDXxrFaWAK13Zm1gQWe6sqM.roa (hash: WEmuyO7ijZIUqK6Kdgpk4wxDQKr57OBRHR5wIMw0Uxo=)
2: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: TzzMACjooc7img0xOe5ZPzkrXUah4mYJBkRCU5+GHjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 00:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6d:f8:20:6a:3b:09:28:c1:2f:04:98:13:39:f1:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
Validity
Not Before: Jun 14 00:00:24 2026 GMT
Not After : Jun 15 00:00:24 2026 GMT
Subject: CN=fd5e8a163d93d90ce961749898558244de6bee72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b1:33:82:04:06:2f:d9:fe:e1:7a:a5:77:d4:
de:fd:76:e7:81:25:8d:de:33:53:af:34:2e:2b:c3:
70:8e:4b:37:7c:e5:2b:ac:a2:aa:b5:44:a9:06:da:
d5:04:51:58:24:4d:91:53:85:7d:28:7a:c4:d8:f8:
42:e3:00:c5:fd:88:e5:11:b7:4f:b8:7e:6f:27:0f:
94:b4:d9:e2:11:6e:02:f2:1f:8c:05:b7:46:e7:2c:
8b:e4:82:08:bd:e0:0a:c0:18:10:08:e0:2c:f3:87:
fb:a5:10:20:e4:72:be:40:d0:e0:cf:35:bd:66:ff:
4f:bf:35:38:fd:66:0c:10:b4:ce:0c:5d:5d:11:e2:
17:ed:e8:03:88:cb:31:90:6e:35:88:ac:f2:a8:e7:
78:ad:72:21:bd:6d:12:c0:a7:11:56:f6:7c:11:e1:
88:e2:23:f7:2c:72:59:af:90:d9:89:26:3b:22:cd:
37:4a:54:e9:74:7c:21:b4:49:09:af:ab:a9:3b:e2:
c2:a5:e7:eb:54:73:ba:ba:f9:e3:c1:b0:39:a9:1d:
d3:6c:fa:f7:d6:2c:8f:dc:4f:dc:5f:fc:d3:de:16:
24:9d:d8:ba:3c:37:71:ca:e5:7f:cd:6c:68:5c:d8:
fd:c2:ba:24:60:9e:5c:dc:37:26:7d:b2:8f:41:0b:
0f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:5E:8A:16:3D:93:D9:0C:E9:61:74:98:98:55:82:44:DE:6B:EE:72
X509v3 Authority Key Identifier:
keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:40:b4:d4:aa:69:b6:72:71:3d:f1:c4:03:dc:59:09:1f:a7:
c3:2e:ef:67:ea:0c:96:ae:54:6e:f2:27:f4:03:83:fc:24:de:
a7:1a:73:7d:38:08:ab:75:e5:d2:9f:70:02:53:61:00:87:41:
a7:54:f3:c8:54:ef:21:0c:b8:da:43:79:3c:92:81:69:38:20:
7a:28:ec:f7:e3:5f:f4:a9:3d:08:f7:0b:6a:62:3d:ea:40:0b:
66:aa:7a:9b:bb:f8:05:24:71:ac:78:60:ce:a3:e6:bc:a3:b0:
b2:ae:29:52:74:b7:2d:5f:c0:03:20:e6:e4:91:d3:7d:e3:76:
9b:96:ee:71:ff:72:e1:7d:b1:25:c0:bf:30:6f:e9:b8:ef:68:
1d:79:b0:ef:a3:fb:12:5b:1d:49:30:f4:c7:f0:95:74:d6:35:
2e:43:73:75:2d:19:aa:d8:91:66:17:ea:c2:a0:a0:82:a9:05:
ea:67:9a:cf:fd:91:ba:ee:56:b4:4e:ed:e9:8d:af:3f:59:76:
68:85:a2:7e:e1:51:3a:93:49:ab:8d:e6:4c:6d:35:45:45:da:
3c:1a:2a:e2:ad:55:76:8c:97:eb:1a:21:0c:07:70:58:00:3c:
cc:70:c7:f5:a1:ca:ad:1f:c9:ca:3e:4d:9b:a6:2d:ba:ea:ca:
32:c3:0f:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 09:35:08 2026 by rpki-client