Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json)
Hash identifier: 2p4y1Fx0smRMeteyjM6X4rVOpiQWa0IizBpkUOXJArI=
Subject key identifier: 7F:D7:43:F0:7B:98:E1:AE:CF:C2:42:AB:17:A4:F9:C8:15:22:AA:D8
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 019DD08776263835705FF66052759A9A035A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
Manifest number: 1198
Signing time: Mon 27 Apr 2026 20:00:31 +0000
Manifest this update: Mon 27 Apr 2026 20:00:31 +0000
Manifest next update: Tue 28 Apr 2026 20:00:31 +0000
Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: TSGb0kd5ULJy7rGkYx3/08JYrZG8fDw/E7II1D+160s=)
2: Vf77xukhBIpUTcfDdQGILMMSa4Q.roa (hash: tmWyKSyKboTPLB52PoBpJE8efgve3egkhQ+0cqtz0+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:87:76:26:38:35:70:5f:f6:60:52:75:9a:9a:03:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: Apr 27 20:00:31 2026 GMT
Not After : Apr 28 20:00:31 2026 GMT
Subject: CN=7fd743f07b98e1aecfc242ab17a4f9c81522aad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:25:24:cd:4c:41:ee:d7:d5:cc:49:9b:d4:0d:
49:7b:3b:76:fc:35:08:10:ce:f9:00:18:2e:ca:72:
19:00:a9:0e:cd:47:c5:f7:76:1c:0d:68:ee:cf:d2:
c3:c1:a6:b5:41:45:60:9a:16:42:7a:ed:0c:5a:57:
f9:b4:7b:ea:41:7d:57:94:6a:f7:1f:31:79:a2:62:
3b:66:d9:8d:39:61:0e:51:ae:bd:f2:14:16:c2:a2:
f4:28:87:43:1d:b1:1e:ae:6d:81:1a:6f:ce:03:6b:
5b:2e:c1:e7:ac:b8:ed:ed:13:89:e7:00:c2:76:54:
23:29:c7:a3:fd:04:35:bf:18:e8:d9:d2:c2:55:fd:
af:b6:1b:6c:ec:cd:7c:a2:40:70:c2:17:6b:6b:6e:
28:ee:8a:51:31:b8:a9:6e:de:06:81:aa:e4:c7:0a:
30:7c:5a:d9:87:85:26:aa:d6:31:4b:6b:08:8c:51:
ad:c3:64:2a:d0:b2:09:23:ab:91:f1:d3:af:34:96:
63:8d:39:b4:1d:11:fa:17:26:a0:e6:d7:3f:2a:a5:
ec:fe:2f:9f:d4:79:e2:44:f6:17:9d:f7:c0:49:56:
bb:06:6f:9f:c9:dc:7c:19:99:01:8a:71:98:1b:9b:
f3:18:51:a6:18:14:d1:89:18:30:17:a6:68:27:6b:
e7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D7:43:F0:7B:98:E1:AE:CF:C2:42:AB:17:A4:F9:C8:15:22:AA:D8
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:a6:07:bd:33:41:a5:0a:16:58:6c:eb:f1:ac:46:b3:6d:81:
33:32:9b:8e:29:c5:61:ae:13:d8:77:8a:a6:9e:6b:01:31:9a:
e1:bb:9f:8f:78:6c:4d:8d:53:5d:ea:b8:8c:87:25:2e:20:9d:
61:cc:c6:73:e2:91:c2:15:55:6c:2a:a2:c5:47:13:d3:22:99:
6b:d7:d2:5e:65:50:1c:aa:21:bd:92:c0:0d:dd:05:7a:2a:ca:
e7:97:65:29:79:81:e8:f3:5e:df:36:c2:28:fb:91:28:00:fd:
2f:6a:af:c7:24:38:9b:d3:49:47:b7:0d:92:35:6f:31:ba:2f:
f0:18:32:9b:ae:85:9f:0d:45:89:8f:d0:b8:cf:0f:ff:16:bb:
ec:00:23:5a:11:6a:11:cc:ad:0a:2b:eb:c5:6a:f2:0b:e6:49:
e0:ec:cd:44:2a:d2:8e:97:2b:35:b7:ea:03:cd:c3:e1:4d:66:
25:6d:4c:5d:67:1d:6f:3a:3a:6b:f8:1a:34:09:34:f2:47:09:
87:7b:d0:6a:12:b5:15:6d:80:05:34:46:ef:9b:c3:06:43:ab:
19:b3:6b:df:2a:0c:0a:f8:d1:f3:fe:04:04:37:f5:07:46:3f:
c3:75:a0:c6:ef:b8:77:73:6b:c8:ae:ac:43:21:bf:c2:c8:e0:
30:d5:9e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 03:23:29 2026 by rpki-client