Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: 1W35EIYMZnZBXdxqMjuVBW0ISHIPsHQe2RTWdEIsEyE=
Subject key identifier: B4:6F:7F:02:8D:2A:23:BE:4D:31:40:54:54:CD:7C:78:BB:F0:91:60
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 019D37F76533A4A20613726B27D7162CB77A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 189E
Signing time: Sun 29 Mar 2026 05:00:53 +0000
Manifest this update: Sun 29 Mar 2026 05:00:53 +0000
Manifest next update: Mon 30 Mar 2026 05:00:53 +0000
Files and hashes: 1: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: ijD1mRbvDF1YKW/lDPoH9fR+SWsuMGLaz3Sdh/TdqZo=)
2: bDrj-tZkqPqGj2uPI5o7mN3ny5k.roa (hash: WctHj8uUD5EoOkvtFB0q+2ZJ4vqUF2yl3XDa913n+Fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:65:33:a4:a2:06:13:72:6b:27:d7:16:2c:b7:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Mar 29 05:00:53 2026 GMT
Not After : Mar 30 05:00:53 2026 GMT
Subject: CN=b46f7f028d2a23be4d31405454cd7c78bbf09160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c7:66:b4:32:0a:5f:bc:e7:0e:fd:c4:d3:2c:
62:99:f9:be:ff:30:2a:d2:7d:3d:dd:93:86:bd:52:
55:07:5e:6d:44:81:63:9d:0e:1a:40:4b:66:a0:d2:
ec:ab:2f:02:b8:d5:84:68:3b:ec:35:60:2a:8a:8c:
25:47:5f:c3:d3:27:dd:e0:fc:f8:3f:bc:49:f2:32:
51:13:7f:73:ca:2c:e7:9c:a8:01:b9:57:08:d8:7e:
20:3d:6a:50:f1:9d:00:96:c1:f4:d9:d1:c4:7c:d0:
81:08:56:99:1c:8b:ae:ab:76:05:43:f3:80:7d:23:
24:02:03:2c:93:05:40:f7:d5:2b:1a:78:99:da:87:
d8:91:e3:58:2a:2a:5f:2a:9d:e0:9b:13:00:b8:b1:
9a:d1:10:5b:7a:17:bb:45:79:61:27:cc:91:b6:2f:
74:43:db:74:f9:e0:e6:d1:9a:6a:25:24:45:db:1a:
ab:ee:9d:7d:e9:b1:0d:78:96:d5:80:f1:4f:6d:40:
43:2f:88:c2:4e:fa:c7:bc:e0:4f:d8:cc:47:e6:d0:
47:98:a0:47:06:09:6c:cd:a7:65:55:b6:5a:be:8e:
9f:12:7a:ca:ca:f9:2c:d0:8d:18:71:04:ca:06:fe:
c2:ba:70:c4:70:36:83:62:a3:a1:27:1c:44:2a:4d:
5f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6F:7F:02:8D:2A:23:BE:4D:31:40:54:54:CD:7C:78:BB:F0:91:60
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:24:78:7e:40:1b:fb:13:96:0b:8b:42:d3:6b:d2:07:e4:64:
7d:c4:78:db:8f:22:d8:83:73:bf:00:96:44:2c:87:f7:21:ae:
a8:9d:2d:45:c7:b8:e2:23:79:de:b8:33:bc:d1:9f:8c:57:ba:
99:51:7b:4e:5b:44:d1:9e:ea:1b:68:23:76:54:a5:8f:de:a0:
94:b8:8c:01:74:95:cc:b0:1f:6c:5e:f1:c3:da:f5:6e:ca:d6:
3e:be:6c:27:d9:8d:84:22:04:5a:9f:6b:5a:1b:ae:a4:de:af:
15:8f:87:35:12:5f:8c:8b:86:fd:95:d0:f1:83:b3:ce:26:19:
39:43:cb:46:fd:fa:b8:b1:d8:c2:71:0c:63:4d:4a:31:4e:08:
34:8a:cd:50:25:0c:fd:04:f1:0f:03:54:ca:35:7f:57:b7:d0:
dc:c4:52:0b:ba:f7:cb:01:e8:01:00:9f:45:ec:3d:c2:b2:08:
eb:00:e2:fa:d4:87:49:1f:e4:9f:f6:67:07:10:5d:64:b0:a0:
6c:0f:96:01:cb:d9:56:84:f2:45:4a:a8:d3:9c:43:bf:f0:4a:
ad:26:5f:08:e6:64:a9:fc:9d:bd:89:bb:3b:7b:0a:30:ca:a2:
29:12:66:45:70:e6:23:b4:c2:09:ed:7a:c4:03:ec:a6:2f:f0:
63:34:e1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:46 2026 by rpki-client