Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: Ns0vqBgujSlOFsFr/T6/4hMIIgVj7TTz3Nsq89p0R9c=
Subject key identifier: 40:AD:70:9F:8B:7F:9E:E2:C4:3E:26:28:1D:DF:9D:2D:99:11:DC:10
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 019E2A7063FFCAF3EAD9C2549417F65B1670
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 1680
Signing time: Fri 15 May 2026 07:01:09 +0000
Manifest this update: Fri 15 May 2026 07:01:09 +0000
Manifest next update: Sat 16 May 2026 07:01:09 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: CC/Yrp83ZIKyPxxjH/5s3fplU8HuNoxL681dZR8ciTg=)
2: IMhrDeS7pt6POgdqkwhQn8NXjdQ.roa (hash: 8Co4GdnGTbaplfNAIs0VU0evrLpH3iNJkhwVpK6YVsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:70:63:ff:ca:f3:ea:d9:c2:54:94:17:f6:5b:16:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: May 15 07:01:09 2026 GMT
Not After : May 16 07:01:09 2026 GMT
Subject: CN=40ad709f8b7f9ee2c43e26281ddf9d2d9911dc10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:08:e7:0c:7b:67:00:b1:f7:ed:9d:37:e0:32:
1f:06:c9:0d:43:93:cf:a0:45:b0:6e:5c:04:ec:7f:
65:21:75:74:11:c4:46:f9:4c:3d:15:3e:d3:27:bb:
e0:4b:b8:f0:5c:c5:d7:a6:90:f5:3a:be:69:2b:d0:
99:eb:7f:81:c3:07:f5:77:7c:44:e3:df:a4:ed:76:
77:bc:9b:01:74:9f:12:5f:05:5a:85:34:e4:2f:59:
dd:77:e3:07:11:b2:93:04:ef:72:c2:65:33:a9:97:
4c:b4:54:13:e9:8e:50:70:93:78:0f:fc:72:b7:cc:
c4:c0:ad:8c:dc:51:b3:0d:3b:c0:d8:21:45:a9:25:
cd:3e:97:0b:3a:af:5b:64:a3:45:16:c4:5c:23:1b:
e1:3f:87:63:ef:d2:52:eb:c7:4d:a6:9e:c5:94:07:
55:c0:ac:1c:69:21:7b:62:0f:f4:d3:d4:98:a0:c0:
c6:5e:d4:8a:be:e3:89:29:19:24:5a:c4:94:e4:82:
42:0f:ca:bc:11:aa:fe:e5:e8:71:9c:18:32:59:55:
52:be:8d:8f:ed:aa:ca:0f:b7:a9:77:70:9b:21:32:
29:db:f7:6e:12:20:4c:91:28:bf:bc:a7:65:84:74:
1c:98:b0:4c:e2:e1:9c:7b:e8:1e:f5:bd:ef:0a:64:
38:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AD:70:9F:8B:7F:9E:E2:C4:3E:26:28:1D:DF:9D:2D:99:11:DC:10
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:98:12:4c:c6:38:c1:0e:2c:78:19:d5:fd:b1:49:ed:69:62:
b8:87:b7:90:9c:84:f4:ab:b1:44:a2:93:99:aa:5c:81:7b:82:
d1:8f:ae:55:d7:81:eb:fc:fd:94:02:fa:05:95:ba:d6:13:b1:
04:0f:01:6a:ff:bf:d9:64:7b:71:4f:3d:c3:70:30:f4:91:94:
53:aa:6f:26:02:02:3b:cd:df:19:1c:d6:ef:d7:58:b1:b1:a3:
c7:5a:7f:75:ba:e3:1c:f4:99:94:20:f3:a9:51:ea:37:25:03:
e0:63:01:e1:34:e7:b6:a7:e4:2f:4c:63:4a:d1:e8:49:38:fa:
a8:f5:c1:f8:a9:21:2f:e3:65:43:40:67:94:fc:fb:4b:61:96:
cc:d9:00:51:0b:10:24:b9:dd:58:16:1f:d2:a6:4b:ee:bd:cf:
5d:19:ce:3a:03:ef:cf:ea:95:3f:69:47:af:0d:cd:2c:4d:1d:
e3:dd:82:36:9b:1f:8c:1a:f9:69:77:88:fb:2d:9a:06:b4:d7:
fb:3d:89:d8:7d:c8:18:ce:7e:37:ed:de:c5:e0:13:ce:86:9d:
df:0b:53:a1:6f:5a:ed:4a:42:36:49:24:0c:03:50:8c:24:65:
70:65:ea:42:69:fc:20:a7:d4:10:a8:f8:3a:79:2b:f0:d5:21:
ae:08:bb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 09:51:25 2026 by rpki-client