Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: bRueS9NINNPupbJOl6RNh9HcdoB+fYDNENzX2+DK6vA=
Subject key identifier: E9:B8:F7:17:AF:64:CB:5B:69:0A:FF:79:4C:2B:60:04:5C:AE:A1:39
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 019D9B198EEC313E7D616F763CECB5759526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 0AD7
Signing time: Fri 17 Apr 2026 11:00:36 +0000
Manifest this update: Fri 17 Apr 2026 11:00:36 +0000
Manifest next update: Sat 18 Apr 2026 11:00:36 +0000
Files and hashes: 1: 08llQ74BuBaNWqT4Y7FAkII-DJw.roa (hash: pxdI4iXE9K/M2+2A8OZhCl+4882oOXHYqUhqvnxntUE=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: U/pjkzdali/yelr0Mrh2ulMpJhBDPpvwinZqzAWOWnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:8e:ec:31:3e:7d:61:6f:76:3c:ec:b5:75:95:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Apr 17 11:00:36 2026 GMT
Not After : Apr 18 11:00:36 2026 GMT
Subject: CN=e9b8f717af64cb5b690aff794c2b60045caea139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:63:01:5a:64:d2:36:63:44:75:16:ec:68:15:
a8:f2:87:a0:3c:16:ef:6a:8d:3f:e1:4e:85:eb:55:
11:0e:4e:35:cf:ce:f7:c1:eb:bb:f9:78:ca:e2:92:
b1:28:56:28:3f:06:6a:4c:9b:46:bc:c8:cb:82:97:
b9:a4:24:8c:24:a4:a7:9e:65:db:45:c4:d0:d0:9c:
e7:05:cf:c1:74:b8:a8:7a:84:21:9f:2f:87:e5:8c:
95:6a:f1:2f:e8:9e:bd:b3:95:23:ba:d3:be:18:92:
bf:6c:bd:b6:22:f4:6f:ed:0f:e9:37:0f:b8:94:68:
04:58:0c:57:ca:6d:2d:09:96:4a:07:a1:f4:88:5d:
cd:8f:19:10:66:a5:0a:35:a8:ec:22:b6:9b:4b:b8:
90:c0:36:f8:b9:d7:29:d1:3b:5e:f2:42:35:89:56:
3d:02:e8:a8:be:e1:a7:0e:5b:a1:71:f1:c4:13:02:
12:a3:ac:e8:83:a5:15:d3:1c:9e:38:27:72:52:99:
ef:ba:f7:f8:ce:d6:dc:5c:2c:90:fc:bb:96:47:9a:
23:0e:a4:e2:c8:d4:51:64:8b:b4:10:11:76:44:be:
0d:a7:c5:49:48:89:75:f6:84:53:27:42:04:7b:10:
ec:98:40:99:09:81:3e:0c:82:a3:bf:7f:a6:82:5e:
00:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B8:F7:17:AF:64:CB:5B:69:0A:FF:79:4C:2B:60:04:5C:AE:A1:39
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:25:1d:df:cf:73:e1:b0:b8:6d:4f:cf:f7:e3:7b:aa:60:a1:
10:26:3f:ef:59:8b:fd:21:36:67:0b:55:65:f0:63:c1:f1:a8:
51:59:51:11:06:47:67:4d:c2:54:57:94:3a:e3:1c:8c:a6:f8:
33:a1:be:57:34:b1:60:20:03:aa:7b:df:e3:5b:66:31:9f:dc:
c5:39:a8:bc:38:7a:3b:87:97:c7:d1:f7:86:60:55:2f:d7:5f:
5b:44:ec:0f:22:0d:b0:96:7a:b9:a1:38:47:10:ed:f7:04:3d:
b0:37:76:24:b6:fd:cf:d4:fb:e6:21:4c:50:d6:fc:75:d9:a0:
a7:ee:69:58:06:87:1c:07:f7:6d:d4:1a:a4:88:b5:da:45:6e:
b2:4c:d2:32:b0:91:bb:20:79:83:1a:58:88:f7:b8:26:50:58:
20:1a:f2:73:05:79:fe:b3:15:70:d8:34:82:95:e6:4a:39:02:
a0:3d:cb:94:01:e3:9f:59:17:4f:d4:4c:1e:15:bf:0a:64:b9:
23:47:f7:d7:06:04:b0:c2:bc:da:dc:3d:65:b9:6b:fc:b8:ed:
b1:49:fa:cc:3d:47:9c:92:dd:f3:cd:a3:4b:ac:68:8a:6c:99:
60:13:4c:60:e0:81:d2:7c:c7:89:96:ce:41:c5:a5:ad:bc:ea:
12:82:a8:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:10:39 2026 by rpki-client