Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
File: hst0KgO8nIVQcheiUgTf_4L8zfk.mft (raw, json)
Hash identifier: 5Q83qjNHwlD0mYQ3Q31nu1802CNKzzrOWbT5Lr5XCns=
Subject key identifier: B6:5A:67:36:62:B4:96:BF:8D:F7:1C:A8:CA:9E:42:D0:00:5F:3C:F1
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: 019D9962FCE83748481766D343CA42FA7FCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
Manifest number: 11CE
Signing time: Fri 17 Apr 2026 03:01:34 +0000
Manifest this update: Fri 17 Apr 2026 03:01:34 +0000
Manifest next update: Sat 18 Apr 2026 03:01:34 +0000
Files and hashes: 1: FsEYUQUVL6IgAyC_3hTmIC05sYA.roa (hash: erfQp237zxf8AD8EH/ivbDYnw0vQY88Vf8ov2LTkk+Q=)
2: KhePy2KSChqSTO56xjFNB88Adhw.roa (hash: jSbx1Mp1yMnht16w7llcf9K2ZLPdIRkxkGJ6/eCHfII=)
3: Z-DKyWN4NlE9Oe6WxuczFCionOA.roa (hash: DCMKgnjrJbcUZjEDqwNnXXjpRG/93HbByWia9wwVNVM=)
4: hst0KgO8nIVQcheiUgTf_4L8zfk.crl (hash: zKbB5jFVnfxmKw4Xro7GQfQSCxODibhMF64DHiI0RNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:fc:e8:37:48:48:17:66:d3:43:ca:42:fa:7f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Apr 17 03:01:34 2026 GMT
Not After : Apr 18 03:01:34 2026 GMT
Subject: CN=b65a673662b496bf8df71ca8ca9e42d0005f3cf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:de:16:c5:14:5c:85:8f:ca:37:30:40:82:dc:
eb:bd:71:e1:4e:08:2f:7e:98:d7:77:47:1b:19:0f:
3a:0f:cc:6e:10:06:50:4d:f6:02:f8:df:43:7c:0e:
c3:0a:ed:80:e8:9c:5d:47:f9:d6:a2:48:2d:55:10:
39:d2:66:d8:e3:57:49:a4:1d:c1:d2:80:89:e5:08:
0d:cc:2d:64:2d:66:1e:60:31:0c:17:2a:73:0d:e4:
8f:89:9d:d7:31:99:32:0d:82:7a:04:52:12:09:44:
20:59:22:5f:07:a1:a4:01:94:8f:8d:58:e5:49:6a:
c4:cd:09:c4:b8:fd:e3:d9:57:c3:cb:28:b0:58:b9:
70:12:4a:c3:a6:98:09:37:ad:e6:cf:0b:98:07:c4:
0a:3e:5b:f7:e4:60:c1:25:3f:cc:65:63:b7:52:2e:
32:b4:9c:c3:10:33:ec:04:64:b0:73:75:0e:3d:a1:
b7:61:0b:bc:a5:fe:3c:d6:9c:02:90:37:2f:47:b6:
ae:21:13:ec:fa:27:d8:4b:f5:1c:da:7e:18:45:53:
cc:d3:43:f0:9b:d7:d1:59:8a:f6:0e:39:9d:54:55:
d6:15:2c:53:12:90:50:a9:56:b4:e4:06:7f:58:4b:
5c:46:fa:95:27:ff:25:b9:f8:8a:d4:39:01:3d:ab:
a0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5A:67:36:62:B4:96:BF:8D:F7:1C:A8:CA:9E:42:D0:00:5F:3C:F1
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:05:f3:74:37:c6:f7:c1:e5:01:66:88:95:84:13:0f:f6:7c:
8b:37:7c:21:f9:22:02:07:74:49:fd:41:c7:6e:43:b7:0c:98:
e0:a1:e2:67:43:6e:5b:b4:b4:4e:0c:e8:ac:4f:90:64:1a:41:
9c:41:8f:f1:6e:ea:31:0f:db:1c:f8:38:5d:0e:98:ac:d0:e6:
93:47:7d:0d:4d:a9:96:b1:be:38:91:72:d6:03:f9:ab:77:1c:
b6:54:fa:6d:e8:ce:2d:c9:8e:ef:05:97:2c:03:3c:49:ce:45:
43:e6:0f:9a:41:89:fb:9f:eb:f5:69:4a:40:0c:e0:18:ec:d6:
f2:46:c0:59:8d:75:34:7d:46:f6:cd:60:15:43:70:17:03:b2:
bf:5b:c0:41:4b:e7:38:9a:1e:df:0a:f1:03:de:2f:4f:f2:e2:
4a:76:f0:7c:dc:41:ae:7a:f2:26:c2:bb:47:ad:29:3d:d7:79:
15:bf:8a:48:36:85:b6:c1:f0:7d:52:3d:e5:7d:e7:db:b1:2d:
40:a5:a8:4b:4f:0f:05:07:3d:f9:dc:57:2f:17:fd:a3:1d:e6:
94:8b:05:7a:70:31:ed:ff:e5:85:80:ad:0d:73:9a:36:4a:05:
85:cd:74:f2:da:cd:75:9b:59:23:66:a1:c0:b4:e4:8c:d7:89:
46:32:a8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:46:18 2026 by rpki-client