Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: uWJdZdMzEHu1ukd4Aj6CW5fccokCpsnSevnJjWjqdJk=
Subject key identifier: 5F:5C:ED:C8:48:4B:08:0F:60:16:84:FB:91:89:60:C8:D1:64:38:07
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019EF8DCE497267E452B93227580FE20BC5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 0520
Signing time: Wed 24 Jun 2026 09:01:26 +0000
Manifest this update: Wed 24 Jun 2026 09:01:26 +0000
Manifest next update: Thu 25 Jun 2026 09:01:26 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: JERVSmAMAUhGPl20G9hl8eoAPO095NwMV13brciMfrs=)
2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 07:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f8:dc:e4:97:26:7e:45:2b:93:22:75:80:fe:20:bc:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Jun 24 09:01:26 2026 GMT
Not After : Jun 25 09:01:26 2026 GMT
Subject: CN=5f5cedc8484b080f601684fb918960c8d1643807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a2:e6:7b:93:d1:35:8b:10:69:4f:22:53:a5:
90:11:32:ff:ce:3b:74:85:93:13:b2:e9:dd:08:01:
83:6c:b0:8c:b3:b3:00:ff:cb:e5:fc:de:4d:8f:0e:
4f:5e:eb:ee:21:35:d8:ad:ac:b7:19:58:46:30:49:
06:0d:d9:61:32:77:8e:65:64:03:9d:56:08:80:cc:
e0:d4:fe:f7:53:a3:ee:d5:2a:66:f9:22:9c:8d:2f:
f7:54:9d:97:0e:4a:e0:d5:52:4c:8a:0b:95:c2:95:
9d:a7:cc:91:ec:23:9d:88:af:79:1b:4e:26:97:70:
47:51:82:44:52:d5:3a:39:99:6d:df:38:d6:5b:b0:
5c:7b:e8:50:bc:b1:63:44:03:b9:08:73:31:ee:ac:
dc:6f:a6:51:a8:5f:8a:0a:6a:28:b3:59:8f:41:e8:
e0:37:15:a7:fe:5a:a7:fd:90:fd:96:a3:de:28:56:
05:64:9c:2d:29:03:18:0e:2b:08:84:de:b3:7d:ae:
1b:a7:6d:68:56:ae:61:a5:30:c0:f4:8c:b3:5b:69:
a3:97:c5:7f:d8:b2:d4:93:18:bc:89:df:9f:71:21:
55:fa:fb:39:ae:a7:d2:99:f5:20:61:8c:54:3d:d4:
40:31:90:0e:8a:87:a4:ff:1e:f8:2e:44:51:69:21:
0d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5C:ED:C8:48:4B:08:0F:60:16:84:FB:91:89:60:C8:D1:64:38:07
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:de:10:7a:66:c3:e2:5e:72:40:a9:7c:02:41:28:48:90:4e:
cb:d7:c9:55:81:b0:2d:b8:a5:e2:85:40:49:b3:37:35:4a:12:
cd:26:ff:73:52:55:4d:7e:d4:ba:d7:d2:d8:68:7c:4c:5c:1c:
c7:b8:eb:69:8c:6e:62:30:88:ef:92:75:fd:93:f2:f1:6a:95:
45:34:5a:d7:78:f0:97:e4:3d:19:55:0d:64:00:9c:c9:eb:b6:
a1:54:5d:e9:3d:5a:eb:6c:2f:5c:a2:17:3f:41:4e:a2:19:7a:
ca:19:a5:4a:60:cb:70:cc:17:f6:93:18:01:e0:49:c8:a2:06:
21:df:22:bc:a9:e8:71:ea:38:7d:6b:69:eb:3b:29:83:b1:a3:
87:86:30:da:eb:f4:9d:40:75:fc:3b:a2:69:91:83:9f:45:bc:
75:f3:c6:6b:a7:16:00:95:ab:c7:25:61:3e:5d:ec:e0:78:b7:
b1:75:5a:4d:4a:fa:76:9a:d4:6f:c9:dc:45:37:d0:3d:01:ce:
e0:d2:fc:9a:ca:7b:34:44:b0:02:9c:90:aa:9d:dc:3e:6f:c9:
3d:19:f2:0f:5f:66:a1:0b:08:f2:2c:e3:91:0e:f6:ff:52:52:
9a:f1:36:69:22:f1:ca:a1:f8:71:90:cd:c8:d3:79:cd:3c:3d:
87:b2:c7:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 12:13:17 2026 by rpki-client