Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json)
Hash identifier: uZ5+NnmWZK6FifcURcxgXLEk42keNkmV3d/zoVZDnTI=
Subject key identifier: 53:6E:92:14:3A:3E:C1:D2:AA:AA:DF:14:2C:05:B7:FC:6F:A5:B4:F1
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 019EC25CA3F023DB1D834EDB7E985FB8D4CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
Manifest number: 1508
Signing time: Sat 13 Jun 2026 19:01:51 +0000
Manifest this update: Sat 13 Jun 2026 19:01:51 +0000
Manifest next update: Sun 14 Jun 2026 19:01:51 +0000
Files and hashes: 1: R833NOdXTD2aQWG3JavzKd06mys.roa (hash: fWZj94n90bNsji3CFK3WkNid37wFqWD8C1Qx/wwtaQQ=)
2: ZmLewUIWz9_zdShetR7Jdzl8lfo.roa (hash: fPaCPLobKeVWk/RzinoeDdlx4MxMtKzniHguRoc5v/k=)
3: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: 6udrml1FqcAGqTUaZ/EIyoH5u6nJLRZ9qO9jeb8rH3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5c:a3:f0:23:db:1d:83:4e:db:7e:98:5f:b8:d4:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: Jun 13 19:01:51 2026 GMT
Not After : Jun 14 19:01:51 2026 GMT
Subject: CN=536e92143a3ec1d2aaaadf142c05b7fc6fa5b4f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b1:01:b4:23:d9:ad:59:6c:e7:c2:a9:da:5d:
02:97:f7:a3:ce:5b:1c:8f:c0:cb:d3:0a:81:44:55:
e7:24:4b:6a:5e:9f:98:df:bd:45:df:8d:1f:8e:4a:
bb:6e:03:60:1e:48:16:db:b0:24:bf:6b:82:1c:6a:
65:4e:57:9e:ae:38:1d:ed:0d:67:6d:08:16:6c:5d:
c5:ae:65:87:5f:d7:21:69:e6:d8:89:c0:e5:c0:dc:
2f:7e:31:32:cf:5e:38:05:41:a5:e3:39:b1:a4:64:
eb:29:be:7f:7f:81:d8:b9:f2:4e:82:2a:f2:eb:90:
cf:4b:00:1d:cc:04:01:32:98:a2:34:9e:e1:90:19:
9a:14:27:5d:78:0c:78:aa:f9:a9:41:97:ab:00:ea:
c2:19:11:4c:aa:0b:3b:c4:63:d9:41:a6:37:3f:f2:
06:cd:c9:4c:db:fe:db:69:3c:d8:39:fd:e7:5f:d4:
ff:ab:73:97:77:ad:77:a9:55:26:b7:d7:0b:a6:4d:
4c:3c:92:60:83:76:74:ce:98:2d:d9:ea:34:de:63:
c8:dd:e9:a7:f0:75:e9:94:68:49:57:ee:58:e9:98:
c1:4f:ca:a2:5f:6e:ac:c0:ba:04:8a:a9:9b:ee:93:
ea:7c:18:41:7e:a2:a6:0c:0a:fc:31:7f:c4:7c:ea:
a1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6E:92:14:3A:3E:C1:D2:AA:AA:DF:14:2C:05:B7:FC:6F:A5:B4:F1
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:64:91:31:d1:1e:b0:07:f4:e3:34:69:db:88:23:4d:35:6f:
fd:77:39:48:da:12:8f:c1:09:37:4c:74:1f:f6:55:c8:13:74:
d9:e8:44:43:67:03:55:cd:17:7a:4a:28:bc:c3:8c:59:2a:71:
bf:25:24:16:92:ea:9d:21:87:c4:dc:e0:3f:95:d0:ca:15:c2:
21:5e:34:53:cf:88:9f:d3:f6:b3:25:b4:ad:6c:bf:b1:3d:be:
ed:de:34:25:dc:6f:c4:fb:cb:36:9b:8f:78:fe:1b:e0:ad:6f:
42:8f:d2:7b:d7:08:d2:e0:a0:ac:58:fd:eb:95:d5:69:f9:c0:
13:9c:05:c6:6d:e5:db:9d:0a:e5:f6:c2:59:63:38:09:62:df:
b0:69:5f:3c:0c:1c:e5:a8:c3:65:6a:eb:72:b3:f8:bd:2b:e9:
a7:92:46:5f:da:68:b8:de:89:b4:3d:06:81:31:cc:6d:51:d1:
94:6f:cc:4c:a6:82:e4:1d:e7:ea:27:79:d5:eb:ed:15:b3:72:
8b:ac:a3:7c:20:37:57:74:71:65:7d:c6:0d:3e:15:ea:32:b9:
38:91:4f:29:37:3f:88:c1:6a:49:f8:97:fb:17:5c:fa:ec:df:
ed:1d:b4:86:1f:f2:7e:63:dc:c2:b3:cb:6f:0e:48:10:31:e8:
12:22:ac:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:30:34 2026 by rpki-client