Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: SUNCXUtcCdmD3aOdMspHaVoEN/XqkJ8JlrznvxsyG/8=
Subject key identifier: E2:15:DA:7E:6B:53:3B:C9:94:19:2C:07:53:55:B5:2A:74:12:57:A4
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 019D984FBC06B8BCBA2CC421C326267B1F30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 0689
Signing time: Thu 16 Apr 2026 22:00:55 +0000
Manifest this update: Thu 16 Apr 2026 22:00:55 +0000
Manifest next update: Fri 17 Apr 2026 22:00:55 +0000
Files and hashes: 1: A_-FW985zbY15HsoQHY3jzaLsqE.roa (hash: eSJY0BewKa72GIdMnrs7+2x+KiKuirCjSmv68OLB6u4=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: qJlWzu8aaTz4jV/Lco78q3l5Ai53uIf4BA9xw0hstz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:bc:06:b8:bc:ba:2c:c4:21:c3:26:26:7b:1f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Apr 16 22:00:55 2026 GMT
Not After : Apr 17 22:00:55 2026 GMT
Subject: CN=e215da7e6b533bc994192c075355b52a741257a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e9:dc:c6:39:ed:cf:9c:7e:98:8b:ab:04:db:
e4:2e:71:9e:d4:12:33:f1:cf:ff:92:e6:33:f6:1f:
4b:c9:c5:67:b9:5f:98:86:a5:75:bd:5d:cf:e6:fb:
c9:36:13:4f:f2:16:23:8c:aa:a3:bc:1e:cc:01:a4:
45:03:4c:47:80:76:b4:10:08:3c:75:fa:e1:7e:ef:
63:44:a6:62:f5:06:1e:cc:b3:42:b1:f5:73:69:50:
90:62:7c:29:44:f8:b5:b1:0d:b9:95:ad:c2:31:a7:
c5:02:a5:34:a0:58:c7:a1:6b:0d:bd:f3:86:7b:7c:
48:26:bd:9f:90:b3:3e:fe:ca:4b:4c:94:58:24:d3:
14:80:da:c4:8a:86:34:a6:14:e0:7a:82:e4:a7:2a:
e0:41:cc:59:a3:9a:78:04:09:48:28:1f:94:27:89:
b6:e6:aa:6c:dc:b4:d0:1b:fe:cc:0b:07:0d:24:d0:
37:90:13:b1:9c:9a:61:fe:c4:45:d4:ce:aa:cf:8e:
ff:b5:75:17:3f:48:7d:7b:3f:5a:78:2f:95:15:c1:
2e:ad:5a:de:2f:82:a7:ba:44:df:f2:94:d5:c3:fb:
8f:ca:47:e5:ea:a8:94:b8:3e:01:c9:6f:d4:da:bf:
12:91:84:ea:d8:d2:ed:85:64:98:33:36:66:49:99:
79:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:15:DA:7E:6B:53:3B:C9:94:19:2C:07:53:55:B5:2A:74:12:57:A4
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:ea:7e:a4:c5:10:1a:ea:64:93:b1:45:f3:46:ec:46:a0:ee:
43:e2:aa:d9:f9:0b:fe:22:ed:f3:c4:e6:72:f2:cc:29:b6:45:
45:3d:a6:36:9f:5b:35:76:8a:d3:a0:e2:36:f0:84:8d:a6:df:
f1:25:17:d3:ef:c6:32:cb:28:0e:a4:05:92:ab:a7:4c:c6:73:
85:52:d9:02:c0:7a:1f:7f:7e:39:b2:c4:48:2a:d4:7e:19:07:
5d:8d:85:8a:42:1e:27:8a:c8:12:76:f6:50:d9:0a:1d:b5:c9:
34:0a:c5:ff:f0:9f:48:dd:2d:3d:a8:62:47:9f:cb:7d:f4:16:
79:7f:3b:a9:97:09:c0:9a:e1:bc:f3:26:a0:6c:64:92:d7:d9:
3a:be:62:b9:8e:e4:98:7d:88:09:88:3a:4d:36:cd:2c:90:b7:
14:bd:0a:e0:37:45:23:b4:d4:6b:61:57:71:cf:3a:a8:2b:78:
75:07:9b:ba:93:61:51:b9:06:96:4b:76:fd:c2:fd:9e:09:00:
1a:4b:90:14:83:89:74:9e:12:99:10:3f:98:02:7e:e1:e3:9e:
3c:d3:b3:a2:33:76:e2:1f:0d:70:71:88:54:d0:a3:95:c6:44:
f9:2c:87:ba:95:b2:32:78:d3:28:32:84:47:c3:51:f9:dd:b3:
47:c6:38:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:05:24 2026 by rpki-client