Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: kOlCb68FZbHqavgXDocp0Ff5oIrdPvdX4TeCUvonifE=
Subject key identifier: 32:E4:9D:BB:0C:32:52:B0:ED:FD:CD:69:06:73:A8:EF:57:6F:CF:58
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 019EB6C52814CBDA4725B5627004B47BB38B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 1455
Signing time: Thu 11 Jun 2026 13:00:34 +0000
Manifest this update: Thu 11 Jun 2026 13:00:34 +0000
Manifest next update: Fri 12 Jun 2026 13:00:34 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: wkFD9jtr1maPHtKVv+JfrnW51Zl/94tNWnn0ahNoL8o=)
2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:c5:28:14:cb:da:47:25:b5:62:70:04:b4:7b:b3:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Jun 11 13:00:34 2026 GMT
Not After : Jun 12 13:00:34 2026 GMT
Subject: CN=32e49dbb0c3252b0edfdcd690673a8ef576fcf58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cd:64:33:df:80:3f:85:f5:fa:eb:3b:b5:58:
83:1f:cc:c2:2d:f8:72:e4:ab:dc:dd:d3:fc:92:5f:
a6:bf:b6:93:68:36:45:13:eb:94:28:e9:94:5f:d1:
73:ec:fa:43:5f:ec:f6:60:e8:54:02:87:55:d1:14:
fa:62:d8:85:a0:95:9f:e1:57:fc:82:c8:85:69:b5:
de:9d:05:e3:a4:96:05:51:16:2e:08:8e:ab:87:a5:
3a:f8:63:50:34:d6:c4:35:fe:ee:5d:7c:e0:0e:52:
01:1d:0e:a5:23:42:7b:b0:77:56:91:a0:79:6a:0e:
d5:62:e6:e0:25:ff:8c:fa:74:0b:8b:e4:30:ce:bb:
49:83:01:53:6a:bd:72:88:53:3d:e9:48:3e:a1:83:
17:70:c6:ec:49:65:7c:78:88:f4:ba:8f:27:9e:08:
06:5d:aa:6c:54:86:f3:83:30:76:40:d1:24:1f:46:
66:2c:cf:ad:06:3c:9a:30:2e:f5:02:55:83:e3:9f:
79:44:84:23:19:41:13:d6:06:23:f8:e2:ea:d5:1e:
8e:51:85:3f:f2:6f:f9:ed:56:20:e6:52:b2:48:e3:
68:f1:4b:31:31:d6:84:31:44:c1:7f:5b:0f:fc:38:
f6:25:08:a6:e1:79:4c:e0:1b:bb:7c:e3:67:b1:b4:
2d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E4:9D:BB:0C:32:52:B0:ED:FD:CD:69:06:73:A8:EF:57:6F:CF:58
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:11:1e:68:90:ed:67:1a:1f:66:fa:4a:6e:fa:a6:a4:b2:13:
6d:e6:25:53:f8:57:b5:70:9f:1d:7a:52:35:5b:9d:f7:31:22:
02:1f:0d:66:30:d7:09:f0:3d:d3:03:be:ee:cb:b5:9c:a6:48:
6c:4f:24:a9:e0:90:b7:b9:22:98:81:a1:85:a1:90:5e:aa:be:
c1:85:d5:c8:5f:8d:6d:7f:fa:66:e7:81:57:59:7a:a1:e4:79:
4e:7d:4d:08:46:df:73:8f:f0:e0:31:76:d8:b4:cc:d6:8f:b0:
be:59:35:08:69:17:91:de:7f:09:f0:2d:c0:1e:8c:1d:07:3e:
b7:ab:fe:bd:f2:36:f8:34:df:44:bf:d3:7c:17:d4:a1:65:52:
a3:c5:2e:26:3b:0a:2b:a1:a8:66:04:69:ec:fb:5d:14:1e:b6:
c2:c2:0a:92:65:de:3b:78:2a:b7:01:71:7e:9f:50:a3:ae:81:
b7:b6:58:70:ab:97:bb:d9:c2:48:37:2e:7a:ee:5e:a1:20:a9:
a6:ab:ce:f2:69:e7:a4:f1:32:f4:4c:31:6e:4c:50:2a:6b:66:
a2:33:b3:61:84:ac:9b:20:33:6c:96:56:1a:6e:5a:dd:80:c5:
a3:53:c0:33:75:22:93:1e:27:4b:51:7a:d2:9f:1d:3b:7f:7d:
fd:54:f5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:03:37 2026 by rpki-client