Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: vTZpQn4WQQex+QASoBMUBPYo9WS7OXug6endAF5D/vc=
Subject key identifier: F8:7A:88:7B:5A:48:A4:04:B5:51:64:78:D0:3F:53:A5:A6:65:B3:4C
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 019D386563E88FDCA0FC3185B8887BBED4BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 138F
Signing time: Sun 29 Mar 2026 07:01:01 +0000
Manifest this update: Sun 29 Mar 2026 07:01:01 +0000
Manifest next update: Mon 30 Mar 2026 07:01:01 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: x3Vt/Nr4mx/7y5KAPHtKcYKU8Hb4/0LOMWGq9+vHeMU=)
2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:63:e8:8f:dc:a0:fc:31:85:b8:88:7b:be:d4:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Mar 29 07:01:01 2026 GMT
Not After : Mar 30 07:01:01 2026 GMT
Subject: CN=f87a887b5a48a404b5516478d03f53a5a665b34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:92:c0:8f:cc:3b:12:9d:f9:58:84:36:5c:c4:
11:74:a3:40:15:e7:9b:e5:19:5d:ee:63:ff:05:ae:
26:f0:19:2b:48:b2:be:40:a1:38:ed:c0:09:61:4b:
49:22:f6:c0:49:9b:d5:f7:b1:36:84:29:20:2b:b1:
5c:b0:7c:fb:08:00:db:02:88:8b:67:97:87:4c:f7:
3f:b6:10:a3:1e:99:d5:2e:76:60:49:97:0f:3c:b5:
ce:33:ce:79:cb:37:42:76:95:0b:11:a0:8d:69:aa:
58:40:a3:37:64:a0:ee:47:81:8f:d3:8a:8a:4a:15:
08:af:97:5e:c6:d3:96:b6:6c:30:dc:75:36:d7:dc:
a5:70:b3:cb:49:1e:19:7b:e0:ba:20:54:dd:65:9d:
25:e0:00:f3:45:7b:50:32:47:39:fc:01:2d:c8:78:
c1:20:0f:f2:9c:84:c7:a7:92:56:66:55:19:70:54:
4d:4d:a9:cc:c0:b3:77:5a:04:e3:7f:ea:3e:05:0d:
23:ee:22:c5:91:09:80:ac:3d:38:60:0f:00:71:29:
82:d0:c5:30:44:a5:ec:19:15:b0:a8:ed:6d:c8:41:
7a:92:d7:7e:bc:5e:30:64:f5:d3:67:ba:57:f3:a0:
74:eb:39:27:3b:c6:33:31:dd:4e:6f:b6:9d:50:79:
bf:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7A:88:7B:5A:48:A4:04:B5:51:64:78:D0:3F:53:A5:A6:65:B3:4C
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:3d:60:2c:27:e9:21:4e:5d:57:5d:a4:00:ff:a5:6e:bc:e0:
d6:a6:28:8d:05:bf:75:55:72:12:19:ca:2a:74:dd:27:9c:ed:
22:84:0b:11:24:e6:e5:62:82:3b:40:3b:8a:2b:c1:48:09:b3:
48:53:87:06:15:75:ef:79:e8:c6:80:e1:93:32:1a:30:3e:96:
87:58:cf:83:32:dd:7f:94:31:32:3a:56:7e:66:68:b1:cc:3b:
23:c2:f7:33:28:c7:98:7c:5a:6e:2b:e3:1c:14:9a:e8:08:63:
d7:01:3a:b0:e6:f8:99:29:ef:ec:77:52:94:57:fe:3b:3d:b7:
4c:68:c1:a1:a5:2f:08:fb:25:60:e3:db:72:60:49:4e:81:34:
f4:00:27:de:b3:af:e1:ea:ed:a1:22:10:5e:42:88:81:d1:d2:
1f:a0:3a:e7:bd:0a:62:ae:33:ae:77:3f:79:43:07:1c:a8:cc:
9f:f4:e2:86:8a:ed:d5:94:29:6e:a1:26:aa:66:cc:f4:ca:cc:
05:73:50:5f:eb:1f:9a:12:68:a0:ff:3f:0e:d6:63:a2:01:69:
63:20:4f:b5:c7:94:df:f9:f8:09:6b:e1:c7:3f:ff:a8:be:7a:
31:7e:d5:a7:0b:c1:c2:ea:bb:b6:f1:54:39:3a:3f:e2:fa:7b:
ce:08:18:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZWPoj9yg/DGFuIh7vtS9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0
MTJmMmEwHhcNMjYwMzI5MDcwMTAxWhcNMjYwMzMwMDcwMTAxWjAzMTEwLwYDVQQD
EyhmODdhODg3YjVhNDhhNDA0YjU1MTY0NzhkMDNmNTNhNWE2NjViMzRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ZLAj8w7Ep35WIQ2XMQRdKNAFeeb
5Rld7mP/Ba4m8BkrSLK+QKE47cAJYUtJIvbASZvV97E2hCkgK7FcsHz7CADbAoiL
Z5eHTPc/thCjHpnVLnZgSZcPPLXOM855yzdCdpULEaCNaapYQKM3ZKDuR4GP04qK
ShUIr5dextOWtmww3HU219ylcLPLSR4Ze+C6IFTdZZ0l4ADzRXtQMkc5/AEtyHjB
IA/ynITHp5JWZlUZcFRNTanMwLN3WgTjf+o+BQ0j7iLFkQmArD04YA8AcSmC0MUw
RKXsGRWwqO1tyEF6ktd+vF4wZPXTZ7pX86B06zknO8YzMd1Ob7adUHm/2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPh6iHtaSKQEtVFkeNA/U6WmZbNMMB8GA1UdIwQY
MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt
ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy
LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApj1gLCfp
IU5dV12kAP+lbrzg1qYojQW/dVVyEhnKKnTdJ5ztIoQLESTm5WKCO0A7iivBSAmz
SFOHBhV173noxoDhkzIaMD6Wh1jPgzLdf5QxMjpWfmZoscw7I8L3MyjHmHxabivj
HBSa6Ahj1wE6sOb4mSnv7HdSlFf+Oz23TGjBoaUvCPslYOPbcmBJToE09AAn3rOv
4ertoSIQXkKIgdHSH6A6570KYq4zrnc/eUMHHKjMn/Tihort1ZQpbqEmqmbM9MrM
BXNQX+sfmhJooP8/DtZjogFpYyBPtceU3/n4CWvhxz//qL56MX7VpwvBwuq7tvFU
OTo/4vp7zggYhA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:00 2026 by rpki-client