Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: XGZliy1z5icl/koaznfPzC17o1zwbYnmRC/M5xhPUVs=
Subject key identifier: 2E:FA:1B:E4:0F:A2:B1:EB:B1:F4:4D:B6:69:66:C4:46:80:8C:58:CC
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 019F122E619D48B01AE492792B7F3227DB18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 16F8
Signing time: Mon 29 Jun 2026 07:00:57 +0000
Manifest this update: Mon 29 Jun 2026 07:00:57 +0000
Manifest next update: Tue 30 Jun 2026 07:00:57 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: VACZmWsKpwurr+XMO7WTcx+eGdfZ8bQeIqCRs5Y7plU=)
2: IMhrDeS7pt6POgdqkwhQn8NXjdQ.roa (hash: 8Co4GdnGTbaplfNAIs0VU0evrLpH3iNJkhwVpK6YVsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:2e:61:9d:48:b0:1a:e4:92:79:2b:7f:32:27:db:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Jun 29 07:00:57 2026 GMT
Not After : Jun 30 07:00:57 2026 GMT
Subject: CN=2efa1be40fa2b1ebb1f44db66966c446808c58cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e0:1b:52:6a:57:04:54:b3:ea:f4:07:40:5a:
e5:ed:5e:cd:31:18:2b:80:7c:57:d6:cc:5f:ed:4c:
24:99:77:e5:a8:99:a8:68:c0:ea:86:29:7e:bd:0f:
de:e2:a8:61:73:0e:bd:b5:15:d3:9e:fd:77:22:b4:
cf:a5:6d:1b:49:93:6b:e1:42:2b:63:b3:9a:e9:ed:
b5:b9:e6:4c:47:39:03:ea:8a:39:9b:0e:0a:cb:90:
c2:68:af:de:fa:7b:ab:72:63:ed:0c:da:83:07:fe:
e0:4d:cf:2a:7a:25:69:4c:74:ca:1b:67:97:92:ae:
ac:e5:f8:d2:0f:d6:aa:0d:bf:f4:2a:67:16:50:94:
5f:07:c1:07:05:f5:08:0d:a6:71:02:e4:c9:3b:73:
93:5c:7e:6d:e4:4b:d7:a3:ff:cf:ed:1b:65:82:58:
ba:9a:0b:2d:be:81:e4:51:6e:fb:d7:fa:97:45:e9:
45:c7:f4:8c:3e:bf:37:0c:19:03:e8:f1:3e:d4:a4:
1b:04:0c:40:67:f7:ec:e1:29:02:98:8f:ed:52:de:
e7:87:76:6a:b4:3f:b7:80:11:f0:fc:79:91:11:00:
15:cf:f5:b0:bf:99:d4:2a:ba:67:e0:be:b5:10:cf:
d0:2e:a9:af:38:df:3b:a0:11:52:ef:7e:d8:05:d3:
6b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:FA:1B:E4:0F:A2:B1:EB:B1:F4:4D:B6:69:66:C4:46:80:8C:58:CC
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:81:c0:43:d1:5c:28:e6:ab:12:1b:03:c0:27:22:a9:2c:da:
5e:cb:aa:37:86:20:21:df:36:00:42:da:32:35:de:1a:d4:64:
77:4f:e3:09:3a:77:9c:45:ec:6c:cd:0f:99:94:5f:ff:0c:99:
8e:3d:b2:42:7b:88:16:4f:17:09:cc:c9:ad:1a:5b:ee:cd:51:
21:95:78:6f:18:09:5e:e9:14:3d:6a:f9:e5:6c:5b:c7:f9:4c:
d7:a2:df:74:11:2f:c8:7a:4b:c0:e6:7e:49:8c:f8:da:2f:0c:
ba:c8:59:da:2f:f2:31:59:82:2e:60:a6:4c:16:43:ce:0c:fe:
ff:c5:fd:49:95:3f:a8:c0:80:36:6e:f1:32:fa:bc:10:57:e8:
62:8f:e7:c8:27:6e:1d:aa:db:d9:aa:7b:ba:85:57:33:b9:49:
32:11:98:dc:1d:a4:c9:43:88:d2:e1:b9:25:38:84:9d:8e:49:
ba:a2:55:ee:da:9a:2e:88:1f:8f:4d:1e:74:df:dd:f8:6a:ae:
a3:22:69:c3:34:46:e4:68:66:76:b6:92:ac:a4:c1:2c:74:59:
c1:22:4d:d7:73:97:da:55:d9:8b:85:65:9b:c5:08:b4:8c:0b:
47:e5:4d:85:1a:0a:01:56:d9:23:3a:7f:3b:92:f3:f2:0b:10:
ec:53:ed:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 14:51:47 2026 by rpki-client