Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
File: hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft (raw, json)
Hash identifier: FOtG8mNMKkfhtzihuCFGU0MrEQgBFjBKovs21NxM4QA=
Subject key identifier: 38:19:CC:8B:65:6A:88:A9:B0:70:6B:CF:93:FD:26:96:B4:4F:E6:20
Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
Certificate issuer: /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Certificate serial: 019DCE2BB09F44C79A88E852D879CBA25705
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
Manifest number: 18B2
Signing time: Mon 27 Apr 2026 09:01:02 +0000
Manifest this update: Mon 27 Apr 2026 09:01:02 +0000
Manifest next update: Tue 28 Apr 2026 09:01:02 +0000
Files and hashes: 1: gI4tnW4kPKjRONzlu_6zH8MeB9U.roa (hash: SAYaSp1GRG2E/ye85MqnahXwttShXyHtUuRf8N0xnmI=)
2: hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl (hash: lKIZjfn90uaDtDh/X784S3PSKgmIZaQ2DrHk7yO8bJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 09:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:2b:b0:9f:44:c7:9a:88:e8:52:d8:79:cb:a2:57:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Validity
Not Before: Apr 27 09:01:02 2026 GMT
Not After : Apr 28 09:01:02 2026 GMT
Subject: CN=3819cc8b656a88a9b0706bcf93fd2696b44fe620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f8:40:b6:36:ae:f1:bb:0e:c8:f4:9b:22:ca:
c3:c2:df:e3:07:f3:7d:e8:f3:c0:d3:c5:5d:0f:37:
6e:ab:66:d1:71:f7:9c:fc:bc:70:f7:d6:e7:8f:c3:
1b:85:cc:99:de:e9:16:c9:32:01:a4:6f:27:38:0f:
75:48:ec:b6:0d:31:38:5d:6b:00:30:4d:a6:5a:d6:
db:43:1a:89:32:a6:4b:79:95:95:9a:78:74:bd:47:
cf:6e:23:ec:55:4e:b5:9b:d7:1f:80:b8:85:ec:f2:
a4:82:6e:78:99:cd:24:8f:2d:2d:d2:e6:71:9a:8d:
6f:36:d4:c0:6d:45:7a:92:34:cb:e7:0f:c0:77:c3:
9a:43:4b:9d:b1:12:6f:fe:be:15:d6:8c:33:cc:dc:
47:88:b7:ef:ea:bb:c2:5f:58:10:47:67:6f:8b:a9:
89:3a:66:9e:11:fa:06:03:ca:43:1f:d4:6d:f3:ec:
10:90:76:49:40:cd:ab:9a:b3:eb:17:f2:ad:57:ba:
6c:60:c8:7e:7b:88:a5:4b:8d:1d:71:80:91:8c:a7:
5e:d8:2a:62:13:e4:9a:c8:0e:89:b5:2b:c8:90:1f:
04:1b:45:39:22:75:7c:be:ad:f5:72:a5:71:c7:97:
f5:51:cb:c6:4c:5a:a8:a7:a6:55:97:09:78:bf:c8:
1a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:19:CC:8B:65:6A:88:A9:B0:70:6B:CF:93:FD:26:96:B4:4F:E6:20
X509v3 Authority Key Identifier:
keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:00:ba:3f:9b:38:90:22:d9:8b:bb:cb:30:39:fd:f4:c0:51:
e0:47:df:d5:88:4f:63:ad:63:3b:3e:6d:39:60:4d:47:bb:57:
e3:fb:c0:e3:63:76:7a:24:ba:5f:91:ce:77:a4:e3:06:db:49:
3d:d1:5c:c0:2a:01:0e:25:2c:ed:d3:bd:e1:9b:51:a4:f6:2d:
bb:53:74:f1:6b:16:6a:24:63:23:32:94:47:72:3d:53:5a:79:
06:db:d7:e3:05:7f:eb:75:f8:b1:1a:a7:fd:96:ac:3a:f6:70:
f3:da:e5:08:d1:61:44:fe:95:82:1f:29:d6:01:75:40:df:e3:
63:59:dd:b8:08:d2:6e:fd:6e:bd:f8:be:30:db:cb:89:b3:ca:
11:62:c3:1b:10:93:11:e3:b0:cc:b7:8b:72:f4:c2:ad:b8:a4:
22:ce:92:8b:6b:e6:94:46:4a:8b:5a:51:da:12:5d:c3:ea:c1:
e5:70:cc:2e:47:cd:d2:af:2c:92:36:33:7a:ee:ce:d1:4b:64:
45:dc:f3:96:98:3b:76:99:88:1f:d7:f8:2b:70:c8:5a:90:f6:
ff:ce:33:ff:a7:91:e7:08:37:13:ef:da:7a:67:e6:2d:86:ec:
b5:66:33:be:19:60:59:49:c1:a7:84:05:6d:b9:56:4c:e2:ef:
56:f0:4e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:05:04 2026 by rpki-client