Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json)
Hash identifier: 5MDjjADiphZirQ6nGnCb4OB0AgR7ykTqJzl6BFzqOr8=
Subject key identifier: 22:7E:FC:3A:33:0F:A7:A6:1F:80:D0:63:1C:28:9B:02:04:B6:B7:22
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 019D99D0E36ED9D7144282D43D8ED41D70B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
Manifest number: 0F05
Signing time: Fri 17 Apr 2026 05:01:36 +0000
Manifest this update: Fri 17 Apr 2026 05:01:36 +0000
Manifest next update: Sat 18 Apr 2026 05:01:36 +0000
Files and hashes: 1: fFmupf3ZOulomw7RbTfFJI9HA-I.roa (hash: T13v7SVdmP/WoBkNmWlki+xwBbJ6Z16koZYacLEH9hQ=)
2: fVLd8tnnZrZdk6_lGRwthnV2H_Q.roa (hash: 18IWDikGUyDUw9Z2asfSid0KurOOqdvL3jCCr8MGrKw=)
3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: H44Ven8WWmaAeQCZMU6tHouUJokqrjw2eUdIXm375MI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:e3:6e:d9:d7:14:42:82:d4:3d:8e:d4:1d:70:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Apr 17 05:01:36 2026 GMT
Not After : Apr 18 05:01:36 2026 GMT
Subject: CN=227efc3a330fa7a61f80d0631c289b0204b6b722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:33:28:e5:8e:94:64:7b:a8:8f:e5:56:ce:79:
ca:5e:88:2e:d0:c8:df:96:20:1d:35:10:39:30:4b:
13:29:f8:d1:83:06:b5:6a:84:4a:8f:73:4b:85:e9:
2d:d7:fa:d3:90:e3:a5:a9:58:8b:ae:e5:c1:87:8d:
78:6f:fb:1c:d9:0f:f8:83:c0:6b:6f:2d:70:c5:ff:
52:44:df:2f:9c:eb:00:ab:fd:91:32:18:81:e7:61:
f8:22:c6:d4:4f:fe:14:c9:19:03:9d:34:cb:29:1a:
27:82:2a:18:22:97:32:87:8a:d6:4a:05:b1:c9:4f:
91:e6:fa:04:ae:6b:ce:80:f5:f6:7c:ff:2c:fd:d5:
bd:73:15:41:be:de:ae:23:f1:fc:dd:b7:dc:89:db:
75:d1:25:7d:25:7b:79:73:6f:21:8b:39:d3:01:e5:
dd:15:27:a7:6d:b5:ff:68:6a:22:c2:d0:ec:0c:a5:
d5:4e:b0:81:ff:18:65:1f:55:52:b2:bb:2a:79:0c:
bd:94:13:16:fa:b8:23:7c:41:ab:8d:bd:7b:7e:49:
a4:0b:0a:86:ee:16:2b:10:c1:60:94:b9:d8:45:a7:
d3:61:6a:a7:fd:be:e0:9f:e6:4f:a6:2b:a9:9d:7d:
ba:ab:d9:75:73:e8:ab:b1:d0:59:da:c4:de:60:f0:
b3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:7E:FC:3A:33:0F:A7:A6:1F:80:D0:63:1C:28:9B:02:04:B6:B7:22
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:ef:13:11:5b:ec:20:0e:12:a3:56:b1:de:69:80:9e:dc:44:
70:37:32:87:89:02:d4:5d:af:df:f0:d1:68:90:4d:ae:07:35:
6c:09:ea:5d:f4:00:47:43:a3:ec:8d:76:98:bb:f5:43:25:aa:
2b:37:99:8f:41:95:13:4f:6a:a5:9d:9f:79:31:e3:74:b9:e3:
35:fb:9d:11:73:f9:e2:b1:43:0f:90:ce:88:0b:f6:9a:8e:98:
1b:f3:ca:f7:a9:89:6f:e8:c9:36:b1:c7:83:53:0d:bc:c0:af:
94:25:c5:67:f8:89:99:8d:1b:87:f0:b4:6b:0b:8d:68:30:f1:
45:57:ca:a1:c4:5f:0d:6a:95:07:fd:4f:1d:13:c1:43:b4:42:
57:aa:d8:ef:a2:08:8d:06:71:c4:2b:45:49:82:61:c0:c9:0d:
f2:05:28:a7:7d:17:88:65:81:fa:c4:72:ba:37:0a:fe:fc:63:
55:dc:89:35:cc:0b:a5:37:1b:4b:c6:67:1e:a9:11:ad:45:ef:
44:19:a0:5d:8c:85:9f:93:8c:a2:7e:cf:34:4e:a4:42:0e:de:
52:38:ef:26:9c:8e:d6:86:4a:bf:c9:dd:e4:f3:c0:46:94:7a:
98:d7:29:5b:bc:b0:c3:b7:a5:eb:5c:34:48:d3:68:ea:37:eb:
b5:5d:16:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:31:19 2026 by rpki-client