Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
File: hYPpE4a3wAKken-k97f9Nf-eTgo.mft (raw, json)
Hash identifier: B5ING2knHfE6MQiOItHI3TmNMGC++KD/EOf+y59LYY8=
Subject key identifier: 1A:10:1B:1C:DA:9D:4D:15:C2:14:E9:99:5A:FB:CC:AF:4F:5B:A9:6B
Authority key identifier: 85:83:E9:13:86:B7:C0:02:A4:7A:7F:A4:F7:B7:FD:35:FF:9E:4E:0A
Certificate issuer: /CN=8583e91386b7c002a47a7fa4f7b7fd35ff9e4e0a
Certificate serial: 019EC1EE05A0780DA44AC003C5A51BD0C2EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYPpE4a3wAKken-k97f9Nf-eTgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
Manifest number: 011A
Signing time: Sat 13 Jun 2026 17:01:01 +0000
Manifest this update: Sat 13 Jun 2026 17:01:01 +0000
Manifest next update: Sun 14 Jun 2026 17:01:01 +0000
Files and hashes: 1: hYPpE4a3wAKken-k97f9Nf-eTgo.crl (hash: YnYl3uvMg5JUghB+BDMW/tkqZVEVhC9v91tu2Qqwxgg=)
2: rdpASP2znJQvquGxJOvyDRpnmhU.roa (hash: 2K9g0ofmwtg+0wCGPKVHPvtZQPkH/atZkucjpNuBbHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYPpE4a3wAKken-k97f9Nf-eTgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:05:a0:78:0d:a4:4a:c0:03:c5:a5:1b:d0:c2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8583e91386b7c002a47a7fa4f7b7fd35ff9e4e0a
Validity
Not Before: Jun 13 17:01:01 2026 GMT
Not After : Jun 14 17:01:01 2026 GMT
Subject: CN=1a101b1cda9d4d15c214e9995afbccaf4f5ba96b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a0:3b:09:a2:7c:b3:1f:b4:e9:19:32:33:dc:
e6:bc:76:52:57:7a:1c:78:cc:c2:50:ec:74:73:dd:
c6:58:8d:3b:d1:02:be:73:f0:63:1f:10:f3:40:50:
71:2f:82:70:16:24:79:7c:cb:03:9e:b7:ad:70:e4:
2f:9b:aa:14:bd:62:16:c7:0c:69:4a:e1:ca:5e:32:
43:a6:3c:e8:b4:dc:68:64:51:50:fa:ba:e8:3e:cc:
59:64:4f:1f:73:4e:17:9b:ae:91:fe:3c:37:a5:7c:
02:2c:44:32:c5:55:4e:aa:d4:e0:b7:9c:79:66:b7:
be:81:b3:cc:21:c7:8a:0c:d2:69:1b:64:25:38:c5:
b0:4d:53:e1:c6:eb:3c:73:c2:3e:be:9c:85:6f:39:
9c:3f:7c:93:9d:b7:24:ab:f7:29:e2:8f:ad:c9:2c:
25:7c:7a:82:98:ed:59:dd:35:90:b2:82:e6:1f:8e:
a4:41:04:d7:51:7f:83:f3:9b:5d:31:52:c5:77:d7:
2f:3f:70:30:d1:83:12:79:84:73:cd:ba:c1:54:09:
8d:c5:c4:08:32:56:95:d0:30:f0:61:01:3a:b0:19:
8c:fb:25:fe:d4:69:eb:7c:92:bc:4d:7f:ec:4f:4d:
57:bf:5f:be:43:4c:72:25:d2:06:fb:bc:18:9d:1f:
f4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:10:1B:1C:DA:9D:4D:15:C2:14:E9:99:5A:FB:CC:AF:4F:5B:A9:6B
X509v3 Authority Key Identifier:
keyid:85:83:E9:13:86:B7:C0:02:A4:7A:7F:A4:F7:B7:FD:35:FF:9E:4E:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYPpE4a3wAKken-k97f9Nf-eTgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:69:02:70:70:9b:e3:26:7a:03:80:9e:c3:4b:03:b5:94:4a:
8d:35:cd:6c:d0:fd:5a:d5:a4:63:21:ca:f3:01:13:30:fb:91:
e2:13:56:3d:b9:9f:86:27:e1:47:ed:38:8e:f1:6b:84:12:f0:
11:7d:40:ab:13:e3:36:2f:20:9a:13:47:83:68:21:f6:3f:2d:
fc:e7:14:fe:07:39:a9:d2:bf:b3:f2:35:07:71:56:2d:44:59:
c0:c6:45:ea:7c:65:0e:81:64:d2:53:e9:72:ba:3a:f7:32:66:
b5:e4:d3:8b:e3:a9:ab:d4:d1:d6:8a:65:37:21:5c:12:1f:e4:
9e:b3:b1:04:61:b3:9b:22:e4:75:68:7a:bd:4a:b1:f0:d5:0b:
61:f5:04:88:43:58:08:59:09:3d:05:f4:3b:91:e5:19:46:0e:
0f:ac:cc:ce:a1:87:cf:c0:e0:68:37:9c:2f:79:fa:c8:31:53:
03:2d:7b:31:1b:74:16:46:50:58:fa:1f:d6:93:8e:2a:bd:be:
3c:7f:f6:13:2a:4d:1a:15:1d:ae:a7:2e:03:30:3a:33:2b:1c:
43:66:2e:04:f1:a2:bf:e4:1d:51:8e:fb:06:51:3e:df:9a:d7:
7f:ac:3a:5c:9c:36:8e:81:21:7f:e5:ad:e2:3a:d5:d1:37:ab:
36:c2:da:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7B7gWgeA2kSsADxaUb0MLrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ODNlOTEzODZiN2MwMDJhNDdhN2ZhNGY3YjdmZDM1ZmY5
ZTRlMGEwHhcNMjYwNjEzMTcwMTAxWhcNMjYwNjE0MTcwMTAxWjAzMTEwLwYDVQQD
EygxYTEwMWIxY2RhOWQ0ZDE1YzIxNGU5OTk1YWZiY2NhZjRmNWJhOTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qA7CaJ8sx+06RkyM9zmvHZSV3oc
eMzCUOx0c93GWI070QK+c/BjHxDzQFBxL4JwFiR5fMsDnretcOQvm6oUvWIWxwxp
SuHKXjJDpjzotNxoZFFQ+rroPsxZZE8fc04Xm66R/jw3pXwCLEQyxVVOqtTgt5x5
Zre+gbPMIceKDNJpG2QlOMWwTVPhxus8c8I+vpyFbzmcP3yTnbckq/cp4o+tySwl
fHqCmO1Z3TWQsoLmH46kQQTXUX+D85tdMVLFd9cvP3Aw0YMSeYRzzbrBVAmNxcQI
MlaV0DDwYQE6sBmM+yX+1GnrfJK8TX/sT01Xv1++Q0xyJdIG+7wYnR/0VQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBoQGxzanU0VwhTpmVr7zK9PW6lrMB8GA1UdIwQY
MBaAFIWD6ROGt8ACpHp/pPe3/TX/nk4KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFlQcEU0YTN3QUtrZW4tazk3ZjlOZi1lVGdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9hNmRlODctNTUxNy00NjgxLWEyMzYt
MzY4YmMxYmY4M2VhLzEvaFlQcEU0YTN3QUtrZW4tazk3ZjlOZi1lVGdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9hNmRlODctNTUxNy00NjgxLWEyMzYtMzY4YmMxYmY4M2Vh
LzEvaFlQcEU0YTN3QUtrZW4tazk3ZjlOZi1lVGdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABGkCcHCb
4yZ6A4Cew0sDtZRKjTXNbND9WtWkYyHK8wETMPuR4hNWPbmfhifhR+04jvFrhBLw
EX1AqxPjNi8gmhNHg2gh9j8t/OcU/gc5qdK/s/I1B3FWLURZwMZF6nxlDoFk0lPp
cro69zJmteTTi+Opq9TR1oplNyFcEh/knrOxBGGzmyLkdWh6vUqx8NULYfUEiENY
CFkJPQX0O5HlGUYOD6zMzqGHz8DgaDecL3n6yDFTAy17MRt0FkZQWPof1pOOKr2+
PH/2EypNGhUdrqcuAzA6MyscQ2YuBPGiv+QdUY77BlE+35rXf6w6XJw2joEhf+Wt
4jrV0TerNsLabQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 22:09:21 2026 by rpki-client