Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: rcwVvhTMdDzFmgsaS7WwDK+V5Ufj5/5Qm2WBjOpGqBY=
Subject key identifier: 57:05:C6:34:8F:BF:77:C2:0F:E9:2C:EB:9A:F4:D8:F2:3E:E4:FF:8E
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019D3866521447BE3998BC997BDF6F0CA526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 1015
Signing time: Sun 29 Mar 2026 07:02:02 +0000
Manifest this update: Sun 29 Mar 2026 07:02:02 +0000
Manifest next update: Mon 30 Mar 2026 07:02:02 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: kSHq8RMwiUp+2R4kyRG7VZvoc0RJKpSJmIw2+F91zvI=)
2: WgW7_1NWoWpm4jNdRh3wAV6b-iQ.roa (hash: VRgHLs3EnvMZ31H9FL0qZ2OCVPVRz1uxVc4Bjt1PMc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:52:14:47:be:39:98:bc:99:7b:df:6f:0c:a5:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Mar 29 07:02:02 2026 GMT
Not After : Mar 30 07:02:02 2026 GMT
Subject: CN=5705c6348fbf77c20fe92ceb9af4d8f23ee4ff8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d5:3d:ec:50:bb:5e:03:12:46:18:ec:60:ab:
db:b3:32:e3:c0:c1:51:ad:fc:15:39:1b:3f:12:9c:
90:6c:3f:c3:da:91:1e:8e:95:0d:df:5a:55:6a:ce:
95:97:5a:fc:d2:67:98:ee:15:5b:72:02:db:24:63:
07:55:11:cb:c6:be:c7:79:5c:82:a7:cb:df:6a:83:
0b:5a:a2:f8:5b:31:51:81:3b:2c:ac:79:cf:3a:ce:
f1:18:b4:7e:44:46:91:22:9b:fa:ff:af:9e:53:b3:
fa:f2:90:a4:0c:45:27:bb:0a:99:d8:d0:e1:f7:c9:
1d:c9:84:64:7a:53:7a:29:ff:35:c3:79:bb:68:18:
8a:af:31:1e:59:ec:42:5f:af:24:6c:c3:ac:5c:57:
9e:75:02:c9:24:98:1f:0d:39:b0:d6:5c:49:4a:87:
3a:ef:b8:ed:81:cb:7a:16:c5:b3:b7:b0:0f:7f:b9:
da:06:74:79:4a:4b:5f:79:70:31:0c:2a:4f:28:81:
9b:ff:c0:fb:b5:38:40:53:45:89:47:b7:d6:1c:57:
08:f8:73:91:ff:e3:a2:f6:f8:de:30:42:e0:77:fe:
0f:03:ae:ad:c2:56:1c:f5:ef:3a:7d:78:f9:27:f9:
8c:2e:83:7f:0e:1e:f8:b4:b6:f0:c7:54:ef:5c:e3:
cd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:05:C6:34:8F:BF:77:C2:0F:E9:2C:EB:9A:F4:D8:F2:3E:E4:FF:8E
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:19:d1:ca:6d:52:e4:21:c3:da:af:99:1e:a2:56:2f:a1:78:
28:10:eb:4b:61:ea:99:1b:6a:39:69:a0:75:dd:eb:93:19:4e:
cf:f7:2f:f6:69:a8:3e:85:2c:9c:a1:a7:2c:cf:93:2e:ce:ee:
d4:90:4a:2b:65:fe:98:ac:61:1c:18:7e:f6:f8:27:a8:f5:18:
86:66:73:b7:e5:f2:f9:43:f6:6d:c9:16:63:db:14:7b:a3:b2:
23:ed:7b:0d:c8:90:3f:2c:c4:93:44:27:26:e9:e2:b7:53:b0:
b9:ac:f3:b0:d8:b5:d1:c5:6c:da:4f:f9:68:54:8a:eb:41:e2:
13:c9:18:d5:3c:31:58:43:33:4a:85:af:10:8b:35:9e:ea:77:
c7:32:dc:34:c2:da:7e:57:ed:3d:81:7a:d3:c2:fe:a4:75:87:
05:24:73:1e:cb:29:4f:7a:a3:84:90:13:2b:ca:40:3c:eb:e7:
b8:83:71:54:f5:b0:e4:23:0b:b7:cf:ff:27:0b:86:e0:8d:d7:
62:88:5c:9e:7f:e6:98:e0:d8:4d:38:1f:8d:d1:b7:98:12:7f:
03:f5:55:dd:4c:8f:91:f4:33:c9:ad:90:5b:ac:d9:1a:27:ae:
fc:d9:7b:2c:8b:b5:3b:7d:ae:d5:ba:d3:6c:c6:ea:1d:d9:78:
ef:11:2e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:47 2026 by rpki-client