Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json)
Hash identifier: vIbeklKgIpksdn20S8GNtCShGeQ/dh+71gYrjUgRubE=
Subject key identifier: 7E:B4:96:63:5A:9E:52:2C:07:EE:8F:6F:DC:CE:C5:60:E5:10:86:5E
Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Certificate serial: 019DCE6349BBB21A36285B44DC0EBBE61C1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
Manifest number: 045F
Signing time: Mon 27 Apr 2026 10:01:46 +0000
Manifest this update: Mon 27 Apr 2026 10:01:46 +0000
Manifest next update: Tue 28 Apr 2026 10:01:46 +0000
Files and hashes: 1: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: HGiwPORO6AETWExwFZMcyp8Et5HqjodK8Pw99jhxZVI=)
2: emamOYQH7VSgnUMUP8mvfhqm5dQ.roa (hash: MSxhtnoAd2af3qlANifc6U+2SnTTVeaXrUw3+bcJ3Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 10:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:49:bb:b2:1a:36:28:5b:44:dc:0e:bb:e6:1c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Validity
Not Before: Apr 27 10:01:46 2026 GMT
Not After : Apr 28 10:01:46 2026 GMT
Subject: CN=7eb496635a9e522c07ee8f6fdccec560e510865e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:92:72:90:65:de:27:9b:fc:39:32:7d:df:c6:
78:d2:c2:fe:d7:34:fd:41:cf:a9:56:e2:73:e1:ab:
4b:e0:c4:5c:62:4d:28:ca:b0:94:ab:8b:c9:d0:1c:
dc:31:7f:32:3e:4e:49:24:d5:1f:dd:d2:bd:b8:15:
75:42:98:0e:c2:34:42:5c:fc:02:5c:87:c4:66:0e:
90:43:3e:1d:13:2e:42:c6:68:22:ad:c8:54:24:46:
56:d2:18:74:65:df:e6:32:6e:d8:e5:8e:78:eb:ba:
15:11:77:0b:38:a0:9b:70:81:e7:58:08:d6:12:18:
a4:86:e5:0c:e6:d3:08:f0:bd:91:e6:1c:83:b7:a7:
54:32:8c:99:18:39:b7:98:8c:74:ae:a2:a8:ec:47:
8b:7a:6b:08:22:b5:19:cc:aa:4a:a3:70:c9:48:ef:
5a:57:2d:f2:e5:50:3e:b5:5b:f4:3c:88:ab:d2:52:
43:a1:ed:9a:a1:cc:3a:7a:48:85:58:6d:3d:3b:3c:
5f:53:6a:6c:e9:38:d4:80:1a:ad:8d:b0:8a:40:a4:
ed:86:3c:8e:c3:69:c7:13:1b:3d:86:bc:c6:63:3c:
b4:66:91:0c:88:7c:6c:0f:77:de:c7:ac:3b:30:5d:
ae:af:ef:2d:7b:1d:d1:e9:91:fb:97:1d:29:e4:57:
c0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B4:96:63:5A:9E:52:2C:07:EE:8F:6F:DC:CE:C5:60:E5:10:86:5E
X509v3 Authority Key Identifier:
keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:9d:f6:4e:a4:69:89:fd:08:80:91:6a:a1:26:cb:7d:38:3c:
47:e6:30:14:b6:0c:bc:4e:0b:5c:f1:2d:40:41:2a:83:70:1f:
78:a4:a5:c6:c5:d4:8e:91:ef:07:bd:4c:94:62:c5:15:38:b7:
93:2c:2a:51:dd:59:62:01:32:bc:18:df:b4:b5:7a:4e:58:9f:
0f:44:78:4f:c9:bc:5c:bf:0c:60:22:96:dd:32:11:33:68:20:
39:27:da:ad:c3:5d:44:72:3e:62:c0:e5:3d:f3:72:a9:3e:3c:
6e:0d:0f:29:f7:78:d2:c8:7a:ab:5f:7c:67:e9:96:63:ab:98:
31:97:35:2a:9b:e2:22:17:2c:fe:ea:5e:e3:ac:75:7c:d9:f3:
1e:23:02:48:eb:a5:89:8e:ef:c1:1a:de:6c:93:ff:1b:5a:9d:
75:47:0c:4a:e7:fe:f8:2e:5c:40:f6:94:67:dc:5a:66:c0:2d:
70:ab:b8:c5:ab:1d:35:c5:a7:52:ef:a4:43:64:6f:19:6b:1a:
74:68:40:81:63:71:0f:16:85:2c:7e:0e:d3:a7:d4:0c:2e:00:
ce:95:3d:fd:32:1d:74:b9:58:1b:04:02:99:ba:c9:35:fe:48:
4e:bf:81:6c:45:bb:36:e9:de:71:18:d5:22:54:a9:d9:b8:75:
4b:51:95:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:36:50 2026 by rpki-client