Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: Fn65Uq1908deeJgb+xNhTjZz5h8ZaV5gwoGaURLMl3g=
Subject key identifier: 7C:5C:AA:55:23:66:3A:23:A2:B7:77:AC:4D:87:A0:00:CB:FA:C2:90
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 019D9A0716F55A7A7A51FFD446CCE075E9A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 12F6
Signing time: Fri 17 Apr 2026 06:00:48 +0000
Manifest this update: Fri 17 Apr 2026 06:00:48 +0000
Manifest next update: Sat 18 Apr 2026 06:00:48 +0000
Files and hashes: 1: Kj0HsXicjlUn-679OFq2n6YXriA.roa (hash: oCViwBHC3VWx+KMwr83UJNJcJLGK68aAWyXoMhEGcUQ=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: f1mW1Ba+/UFhLE6Fi3KZiFr/niwiyiYBL5JlMFp+Tlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:16:f5:5a:7a:7a:51:ff:d4:46:cc:e0:75:e9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Apr 17 06:00:48 2026 GMT
Not After : Apr 18 06:00:48 2026 GMT
Subject: CN=7c5caa5523663a23a2b777ac4d87a000cbfac290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d4:99:48:63:2d:60:b9:22:6b:83:3a:af:80:
0f:9d:5b:67:ec:35:c7:82:6a:b8:c7:dc:90:c4:a2:
77:36:d2:00:cc:e7:6e:3d:6e:93:7a:4c:99:13:3e:
e7:88:c1:13:91:4e:32:e8:a4:96:d0:76:42:9f:02:
d6:af:55:e4:4a:5d:48:c1:9f:fd:a6:39:72:ea:49:
cf:1f:31:37:4f:7f:1c:3a:4d:2f:fa:9c:47:92:26:
b3:ad:f7:19:2e:24:41:4c:38:36:1d:81:70:28:4a:
ab:e5:01:74:b7:81:d1:59:11:70:ac:67:cd:f3:54:
97:a8:24:2f:a6:1b:43:99:e2:a5:41:9a:81:cd:24:
31:29:05:ef:98:3c:fb:f9:5d:03:d8:85:e1:4d:a1:
eb:c7:e2:6c:2c:c6:de:ed:a1:b1:1e:10:d3:5e:f1:
df:83:f4:e2:e2:17:3a:2e:d5:a5:29:7e:1b:43:eb:
e2:89:81:6c:9d:aa:84:e9:cc:81:a8:a6:ca:8e:5e:
3a:cf:cc:3f:2a:d0:be:49:92:50:27:87:f3:22:b0:
c2:02:d5:19:91:20:35:1a:2c:ab:6a:40:3c:7f:8e:
ce:78:2c:a8:fc:55:05:10:89:bc:b1:0e:4c:90:f6:
e4:48:94:b4:c4:46:ca:d6:a5:e2:5b:fc:64:0f:70:
ce:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5C:AA:55:23:66:3A:23:A2:B7:77:AC:4D:87:A0:00:CB:FA:C2:90
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:10:56:12:5b:6c:45:8d:ef:2f:96:2b:30:24:e5:e8:7b:92:
a1:a3:29:70:ec:7c:4f:47:a4:70:b1:8b:72:f4:07:5a:70:3a:
9c:7a:fb:05:4d:3e:37:92:27:09:cf:cb:30:81:43:fd:12:7f:
54:ca:19:6c:48:f8:ab:0f:80:30:69:e9:de:56:4e:8a:58:a5:
1d:90:36:f0:a1:05:0b:8f:5c:20:d1:a6:9d:55:b9:39:a5:36:
47:a6:5e:dd:e1:2e:24:17:cb:be:c9:aa:d7:6d:58:90:5a:35:
22:cb:85:a6:22:50:af:6e:c7:83:d6:d4:1b:30:67:a5:97:dd:
74:e6:27:b1:5e:c2:60:10:74:3b:e6:9b:bf:06:8e:c6:fb:0d:
52:74:29:18:0c:e3:d9:7f:d1:13:4a:32:ee:cc:e0:68:52:af:
3c:e2:5a:d6:82:41:fa:b8:81:62:7a:a7:6c:fe:70:0e:4b:5c:
bf:91:5d:c9:02:5a:c8:c6:b6:95:bb:08:c9:b9:b3:fc:06:5d:
ac:db:4d:13:7e:85:0a:10:b3:30:35:85:73:64:5f:59:af:19:
51:e4:5d:02:22:2e:c6:4d:d0:f6:85:08:12:33:cc:d8:5b:04:
05:22:14:77:54:cd:79:15:d3:43:10:99:06:d1:38:32:37:31:
80:5c:2e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:00:08 2026 by rpki-client