Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: 2y+Of3DLy9dT53gBGOSOzYSJMNru+Yxewo1MhVshBQ4=
Subject key identifier: C3:7A:C1:67:EB:58:78:B2:13:B3:EC:83:3F:93:26:2D:A9:15:B6:2E
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 019CAAC6074110670FA6271DBFACEC63D45A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 060E
Signing time: Sun 01 Mar 2026 19:00:30 +0000
Manifest this update: Sun 01 Mar 2026 19:00:30 +0000
Manifest next update: Mon 02 Mar 2026 19:00:30 +0000
Files and hashes: 1: A_-FW985zbY15HsoQHY3jzaLsqE.roa (hash: eSJY0BewKa72GIdMnrs7+2x+KiKuirCjSmv68OLB6u4=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: nlR+DKB9NbLWwzaKQLzot9ohQAB0k0D5m5yvcqxqETU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:07:41:10:67:0f:a6:27:1d:bf:ac:ec:63:d4:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Mar 1 19:00:30 2026 GMT
Not After : Mar 2 19:00:30 2026 GMT
Subject: CN=c37ac167eb5878b213b3ec833f93262da915b62e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f2:b7:28:fa:e2:9d:06:a0:0e:f2:48:0e:2b:
a3:6a:d3:07:7a:37:f5:c2:c7:2c:f1:0f:55:50:35:
27:20:65:d2:b7:30:81:d9:48:6c:b0:94:ad:91:fb:
ac:41:e0:62:66:99:b5:4a:87:53:2d:da:2f:3e:59:
77:2e:a8:1c:e1:05:d4:60:59:bf:a8:05:ea:ee:6e:
1a:09:1d:fe:de:4c:5a:14:00:2f:9a:a8:36:b5:b2:
ac:90:01:a0:bc:eb:47:bb:a7:9b:2c:98:ba:2a:de:
fd:b9:2b:af:c2:72:a3:91:ee:b2:f0:f8:a9:c0:dc:
e4:f6:02:cf:1e:93:6e:22:92:c0:bc:03:2e:d9:7c:
cd:e0:ee:24:78:c2:12:75:d6:4a:af:38:92:66:6c:
7b:e5:96:fe:72:06:db:a5:65:8e:5a:69:53:9f:d4:
31:fa:54:b7:e1:f9:65:44:98:aa:7d:51:e6:dd:df:
87:6a:4a:68:0b:bb:97:5e:31:04:e2:70:0e:de:c0:
96:79:25:48:94:c1:fb:c5:6e:f4:9f:0c:ef:b5:66:
b1:93:fa:a0:aa:05:1c:a1:eb:23:f1:6f:99:01:39:
84:fa:63:1c:5c:03:ac:a1:fb:00:2a:f6:d2:3f:4c:
f7:cf:08:69:85:51:f7:60:ad:74:88:34:2a:56:88:
13:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7A:C1:67:EB:58:78:B2:13:B3:EC:83:3F:93:26:2D:A9:15:B6:2E
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:64:1d:1b:20:76:e4:0f:bd:94:35:12:72:4e:b9:38:41:af:
4e:37:1b:80:50:fc:a8:ca:8b:4c:c5:4f:61:29:b4:1a:e5:a5:
ce:64:d7:92:f1:46:e6:1e:4d:36:2b:cb:9c:34:ce:04:e5:1f:
54:ab:48:ee:d9:7b:1d:bc:bd:a6:e9:7d:76:37:75:5d:26:fe:
ec:36:b9:ee:5a:cb:f4:ec:d0:f5:62:b7:20:a3:58:8d:16:3a:
1b:53:8e:1e:e3:29:09:74:aa:e0:aa:fa:19:71:ed:4e:2a:45:
9b:2d:d3:c0:fd:e2:47:4d:84:87:3c:a4:6a:48:23:f6:f5:18:
49:f2:06:d0:51:d2:6c:0a:e7:0c:b6:bc:2a:16:97:b5:a5:93:
bf:92:45:be:78:55:06:6f:c8:da:8f:3c:96:a7:a2:e3:a5:0b:
c9:78:ee:63:b5:83:e6:6a:aa:13:af:0b:d7:5d:5e:56:14:57:
59:24:e2:9d:55:56:e3:cc:12:52:cc:36:a6:27:c5:9d:8a:2d:
d4:3a:0f:76:51:f8:ea:d3:a7:66:c7:91:70:e5:8f:a7:4f:25:
26:33:6a:35:24:1b:dc:f6:06:9f:07:d6:07:1d:e7:57:89:07:
c6:8a:b6:bd:53:02:60:4f:2e:57:18:82:46:f4:7d:5d:16:e9:
b1:cf:c0:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:15:35 2026 by rpki-client