Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: QjpE71lMaamlo/mYFuq9eZptZmR3NIPeuogeWPElEaw=
Subject key identifier: C5:1D:8D:5C:A6:85:F6:E1:AE:45:6B:21:6F:CF:18:AC:0E:3A:4D:36
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019EC2C9BCB0069E693D5B4A285799115FA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 0572
Signing time: Sat 13 Jun 2026 21:01:01 +0000
Manifest this update: Sat 13 Jun 2026 21:01:01 +0000
Manifest next update: Sun 14 Jun 2026 21:01:01 +0000
Files and hashes: 1: 1-eF7e7FBTv1kNZvAqKgKcchP_r8.roa (hash: NJzA8zp4PiibAViDgdZjRywfinrsmcRR8mpxvA7kUN8=)
2: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: BDBBqay9f8WWru9lBjX7TKvQfven3S3V90mD9WK8Dlk=)
3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:bc:b0:06:9e:69:3d:5b:4a:28:57:99:11:5f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Jun 13 21:01:01 2026 GMT
Not After : Jun 14 21:01:01 2026 GMT
Subject: CN=c51d8d5ca685f6e1ae456b216fcf18ac0e3a4d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:23:dd:5f:e4:1b:08:d1:df:ec:00:db:43:91:
b1:67:9e:46:c6:db:00:b3:00:27:d1:50:ff:1b:bf:
e1:a0:3d:68:12:04:1a:98:92:87:00:e3:17:99:60:
6f:37:52:c1:df:a0:bf:4a:47:ee:b5:97:81:6c:97:
71:06:a0:73:cf:ef:b8:49:11:06:37:07:1c:31:fa:
6c:81:50:1f:e2:3b:02:58:ad:bd:71:d4:3d:13:78:
01:de:74:83:fa:d3:07:a8:5b:4a:60:3d:4a:37:f5:
44:a7:9d:ee:cb:09:3b:79:d4:de:61:3c:a4:ad:c3:
47:bf:5c:1c:4b:f9:bc:e0:52:8d:36:41:cf:5f:05:
f7:4c:b0:4b:7c:29:29:3a:35:2b:6f:35:bc:98:e6:
07:cd:2b:aa:67:d8:26:e4:9a:9c:5d:4a:ea:c5:cc:
79:54:f3:a4:80:5a:04:60:d3:99:d2:13:f5:71:42:
f1:c5:d7:74:41:f2:fe:c4:15:93:8d:1b:ef:4c:66:
32:68:1e:09:e3:13:12:78:56:6f:72:a3:61:dd:92:
f1:a2:7c:c1:53:1b:a1:53:e7:f3:b5:40:8d:60:41:
87:37:eb:e6:d1:02:27:17:ed:1f:52:f6:fd:1e:10:
c9:a7:ec:17:a4:53:b5:7d:eb:c3:f9:42:df:bc:24:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1D:8D:5C:A6:85:F6:E1:AE:45:6B:21:6F:CF:18:AC:0E:3A:4D:36
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:dc:41:b8:19:92:6b:e2:3c:a6:ff:7f:9d:e1:0f:2d:4d:59:
dd:1d:c5:49:33:27:2e:a3:cf:d6:42:ef:b3:38:de:8e:c2:73:
6f:1b:ff:21:12:d9:8c:99:16:c9:40:9e:36:e6:f0:01:b4:4f:
0b:a6:e1:8a:b4:17:0d:4f:af:ce:36:22:57:55:10:b7:43:b0:
fb:b5:5f:c3:07:54:c8:6b:9b:56:a2:85:8e:b9:b9:24:a6:06:
3d:77:c8:36:79:0e:01:af:9e:12:0c:ba:45:ac:a1:98:21:1a:
c8:78:c1:76:40:4f:04:30:f1:ad:01:83:6e:61:bd:69:1d:44:
76:68:ab:f5:1b:62:7f:2c:cb:47:40:7d:f7:3e:5c:81:48:dc:
63:16:e2:e1:a5:22:99:e3:b5:d1:a7:34:39:00:22:c6:8d:d8:
61:bb:f3:70:01:0d:aa:00:41:e4:35:18:5b:f5:dc:c2:9b:31:
c1:3a:6f:62:74:f2:43:d3:58:30:a9:b2:d6:83:6f:9a:f0:de:
53:a5:78:6c:04:4f:69:db:d9:ea:10:bf:b3:94:6d:37:f5:92:
27:bb:32:c1:7f:1f:3e:1c:37:d6:8e:62:38:4f:73:98:83:aa:
55:53:be:2e:f3:44:0f:7d:7b:32:11:cc:cc:1f:75:9b:07:f2:
4e:a8:cd:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:44:03 2026 by rpki-client