Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
File: hTodtQq3cdy1KTZ92VGmfKzEhSc.mft (raw, json)
Hash identifier: frLI2T4MxTy9aT7AN+2W2Y4RmFHAn0ReRZOuKnlx3z0=
Subject key identifier: CB:0F:67:73:25:17:F6:89:90:2B:BC:E3:58:0E:8B:1F:5F:9B:31:38
Authority key identifier: 85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
Certificate issuer: /CN=853a1db50ab771dcb529367dd951a67cacc48527
Certificate serial: 019EC48125E707189346B05950A0E6479FCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
Manifest number: 195B
Signing time: Sun 14 Jun 2026 05:00:58 +0000
Manifest this update: Sun 14 Jun 2026 05:00:58 +0000
Manifest next update: Mon 15 Jun 2026 05:00:58 +0000
Files and hashes: 1: ClZipqAtGVJ2H4srpt_UxqUYg7k.roa (hash: gRSN7asX/fb1bF2/3SBjZi8n62BnbOxEncNI/Hx/1K0=)
2: hTodtQq3cdy1KTZ92VGmfKzEhSc.crl (hash: 5S8QoWc3I9RdSRwlGCKDVVrEi3Sfl88n6XnLIMJ/G/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:81:25:e7:07:18:93:46:b0:59:50:a0:e6:47:9f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853a1db50ab771dcb529367dd951a67cacc48527
Validity
Not Before: Jun 14 05:00:58 2026 GMT
Not After : Jun 15 05:00:58 2026 GMT
Subject: CN=cb0f67732517f689902bbce3580e8b1f5f9b3138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e8:d2:f5:80:c5:af:2b:01:cb:af:54:b6:67:
fa:d5:da:2b:04:bc:f8:22:49:03:71:c6:0e:90:58:
21:26:c1:ea:90:94:1f:ee:00:b2:6d:e6:3f:97:0c:
c0:97:3d:9b:32:ed:a0:dc:24:58:74:02:b3:47:81:
d3:b0:bc:44:65:3e:65:af:3b:05:01:b7:57:6b:21:
1a:6c:53:e3:01:dd:e5:52:de:a3:18:d0:37:3b:d4:
2a:08:1f:de:56:7e:8d:0f:2a:85:8b:85:20:05:0e:
62:3b:10:17:e2:e2:24:7c:7d:f0:11:f0:55:20:db:
27:6a:27:f3:f6:83:de:24:32:42:90:b2:2b:52:3b:
16:de:53:12:2d:9c:2e:a2:02:82:f9:c8:2e:46:70:
14:90:04:d7:f9:18:ee:04:62:e8:1b:73:49:aa:3b:
20:35:c8:4f:5d:2a:ba:a2:37:80:1b:d9:b0:ab:9c:
3e:18:c8:b5:83:50:88:68:20:ec:91:8e:b1:f6:d2:
b3:dd:e9:e7:60:0c:cc:c4:3f:ba:5e:95:7d:e3:73:
8d:c2:bb:7b:a7:01:28:5b:b1:bc:e8:90:c9:7c:89:
a7:89:9f:56:85:22:38:bf:16:93:98:be:76:32:be:
df:95:1e:db:26:0e:22:19:c0:dc:90:e8:c3:c8:af:
e3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0F:67:73:25:17:F6:89:90:2B:BC:E3:58:0E:8B:1F:5F:9B:31:38
X509v3 Authority Key Identifier:
keyid:85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:51:8d:70:8b:62:96:84:ef:50:33:4a:f0:ad:e4:b1:76:21:
ca:60:a6:59:53:25:ca:12:0c:55:40:18:51:b8:6d:1f:0c:e5:
c2:fb:75:f3:c0:27:7a:8a:08:70:ca:17:d5:ed:99:27:af:3a:
2b:5f:9b:d0:37:bc:c3:0f:4c:5a:e6:69:9f:d6:48:15:8e:69:
ea:6f:d7:4f:b6:2a:87:33:f1:a6:be:87:b6:e8:04:b1:93:65:
dd:70:24:d5:81:b7:4d:cb:c1:76:f2:d8:af:0f:9c:de:17:5a:
0b:52:1a:0e:7f:3d:5d:d0:4b:47:34:7b:99:72:36:33:6f:ac:
5c:77:4b:6f:11:4c:eb:8d:17:fd:7e:5a:6d:b5:d4:23:39:fa:
40:bd:09:23:58:b4:90:88:a5:e2:79:30:9b:db:38:83:58:e3:
21:cc:ed:68:30:62:9c:6b:ad:ad:a2:c8:32:68:fb:e8:18:32:
f1:75:bf:08:ad:5b:65:ab:d3:8a:3c:b7:b8:9e:ed:0a:3b:ef:
ea:85:28:e6:c6:c4:95:32:15:ff:33:7e:e2:b9:9c:21:fb:19:
b0:d4:b5:e9:56:0b:ce:d9:50:ac:19:4a:01:d2:73:61:3b:87:
ad:d1:38:60:2b:0b:7c:b2:2e:7e:eb:5f:7f:64:49:3f:75:1f:
49:48:5e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 09:13:43 2026 by rpki-client