Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json)
Hash identifier: vr3JsoZeJ+jTkft3qOadJGzdZ2d74sagymNLpRXo00s=
Subject key identifier: BF:90:43:E1:26:8D:AC:3B:19:75:41:B6:31:42:94:9A:CA:DC:B5:8A
Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Certificate serial: 019D386636CBB6EDA25DD82FA7246822B42C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
Manifest number: 1342
Signing time: Sun 29 Mar 2026 07:01:55 +0000
Manifest this update: Sun 29 Mar 2026 07:01:55 +0000
Manifest next update: Mon 30 Mar 2026 07:01:55 +0000
Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: 6pv9LYEeB7mSBc1dd4EDJGP7CnXtRhfV+JWwP8Popas=)
2: dAblp8vp-pMAwa1_Vthxc2gt8k8.roa (hash: wEmjefANEUzkZ5hvuYtJ5mos9QLC+6Qw68fr7kd+5go=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:36:cb:b6:ed:a2:5d:d8:2f:a7:24:68:22:b4:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Validity
Not Before: Mar 29 07:01:55 2026 GMT
Not After : Mar 30 07:01:55 2026 GMT
Subject: CN=bf9043e1268dac3b197541b63142949acadcb58a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e1:66:4b:ac:49:90:10:6a:81:1d:a5:b1:48:
e0:31:32:3b:4a:4d:a3:0f:fc:ed:04:7b:65:79:ef:
87:ea:b7:ca:41:8f:96:a2:f0:fb:96:2d:a4:0d:1d:
10:02:eb:55:18:59:8c:8c:27:17:c6:94:77:a0:04:
e7:90:63:2a:12:3d:7b:6b:d7:b1:09:0c:95:92:33:
42:42:04:08:53:74:5a:b9:c4:f3:ed:90:10:22:da:
dd:71:19:fb:7d:7e:71:e3:6f:0f:de:04:08:ae:0d:
1b:9a:4c:35:65:c1:e4:bd:d9:8e:d7:5e:87:4b:35:
8c:6d:b4:e6:aa:3a:fd:64:91:fb:43:69:b6:48:fe:
da:c7:c8:90:49:b5:cc:ad:94:44:cf:f7:7d:b5:d7:
0d:3b:f3:23:a0:9a:b4:f5:a3:27:02:7b:08:51:ef:
35:41:9e:6c:42:a1:b9:7f:8b:e1:5e:b1:e5:b1:24:
74:3b:f0:33:14:84:36:95:82:dd:65:8c:88:3f:0a:
50:26:ab:66:28:c6:94:9f:f4:e9:1e:30:c9:ad:d1:
d7:df:25:03:79:69:55:1f:52:5e:06:9b:e0:63:1f:
4e:ad:0e:6a:d3:84:8e:78:bf:74:13:9e:e4:e0:01:
7d:96:ed:3a:aa:99:91:99:04:93:72:48:30:3e:52:
89:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:90:43:E1:26:8D:AC:3B:19:75:41:B6:31:42:94:9A:CA:DC:B5:8A
X509v3 Authority Key Identifier:
keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:bf:bf:eb:2c:1d:ef:ac:29:b7:d1:ad:27:d0:15:f5:39:1a:
26:6f:23:fc:80:5d:90:a9:ae:b2:50:74:0c:bb:c0:e7:33:40:
bd:23:de:c6:e3:da:89:16:7f:68:d0:33:34:95:19:25:3a:98:
a2:78:ba:68:d4:68:20:8c:17:84:09:7f:85:10:15:3b:0e:c7:
de:2b:cd:ae:3a:b5:7d:1a:8b:77:41:6b:51:84:87:ac:a1:41:
dc:1e:2f:e5:97:12:b5:d9:d2:26:f4:c4:8c:a9:37:a9:22:36:
49:fa:b1:4b:d4:57:f4:3c:9b:c5:78:3b:2f:1a:c6:35:95:1c:
04:10:30:eb:71:4a:28:de:ab:2a:22:62:e7:4b:51:f3:d6:e4:
21:1c:3f:f0:34:0e:b4:15:39:ba:fc:12:5c:4d:8b:fd:77:96:
3a:06:0f:f3:24:f5:85:92:d8:60:be:0d:e0:42:1b:8c:bb:13:
60:1e:33:31:b4:9b:a0:77:e9:d3:77:27:e9:b9:5b:18:7a:6f:
13:5b:e3:ae:ba:a2:ab:e3:23:a1:39:e9:e7:fc:bf:86:ec:bf:
b8:02:ab:b4:14:e8:ad:0b:a8:60:52:f4:87:55:33:76:c8:42:
2e:98:29:b5:ad:10:18:04:d1:25:da:8b:75:58:7b:ff:4c:ec:
d0:54:9a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:41 2026 by rpki-client