Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
File: HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft (raw, json)
Hash identifier: MNBLJpuRGPcUczg1fbR7IfYv7jFj58wmJNU5eQ2Sjh4=
Subject key identifier: 31:E5:80:3B:CC:BC:86:F5:31:04:5A:A1:8D:EC:4D:DF:B8:AE:A6:05
Authority key identifier: 1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70
Certificate issuer: /CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270
Certificate serial: 019E4E0F2FFA8EDCD716DBDBD966C7A47BF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
Manifest number: 191E
Signing time: Fri 22 May 2026 05:01:18 +0000
Manifest this update: Fri 22 May 2026 05:01:18 +0000
Manifest next update: Sat 23 May 2026 05:01:18 +0000
Files and hashes: 1: HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl (hash: fbopc1ANJ0tiomo3CN5Co9v3WCpbGtwGc4OUqZmzQlU=)
2: M47RLklTWoiaz5LdB-5M5t1gKaY.roa (hash: 25KJVzwCwngs0tYI3cpOotv7hpRnhMTU3mQPWaCA0lw=)
3: eQNIWynZW9H_qCeB8qolsHaPfjw.roa (hash: O4+sT4oKTnI0KGCx4zdCXIP/OZGHX6I3BYLvLb9KuB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 05:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4e:0f:2f:fa:8e:dc:d7:16:db:db:d9:66:c7:a4:7b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270
Validity
Not Before: May 22 05:01:18 2026 GMT
Not After : May 23 05:01:18 2026 GMT
Subject: CN=31e5803bccbc86f531045aa18dec4ddfb8aea605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4a:3b:77:a8:39:78:62:02:36:3b:2e:2a:fb:
b6:8f:b1:65:e4:94:e0:10:27:7f:6a:f3:7f:95:0a:
62:a0:ca:eb:c4:1d:f1:99:e2:68:bb:a2:df:0e:46:
3f:8a:6f:d9:a7:cd:f8:f8:d4:d6:9a:31:f5:d0:e7:
0c:30:bc:44:41:78:d4:4f:e5:ec:65:5f:39:34:82:
c1:d1:ef:f9:4a:7e:25:6a:7f:84:20:a1:0b:51:8b:
9e:c4:b9:69:3f:f2:27:3c:45:c6:8d:ce:48:be:d7:
53:cc:d7:31:cd:b2:66:68:17:0e:5f:b3:32:17:e0:
b7:5b:19:79:1c:cc:da:cb:f4:e0:c8:45:2e:23:a1:
2d:72:87:79:6d:38:65:79:81:9c:07:ee:95:76:24:
25:3c:49:a3:a6:26:bb:34:7a:fc:af:e1:3a:b0:d1:
19:f6:32:71:ee:6f:f2:ed:ba:cb:23:7a:17:ef:87:
b3:df:e7:4c:6c:36:a9:12:7a:57:21:38:7b:e7:76:
a8:fe:91:a3:40:69:b7:72:b5:d5:5a:09:16:02:9a:
91:fd:79:b4:e7:1a:7b:d0:3b:4b:c5:13:5b:03:b9:
30:69:eb:2d:73:fd:8f:f8:33:9e:75:19:5d:7e:a4:
fd:35:fa:95:19:a5:1c:08:3e:d2:b7:50:e0:dc:26:
cb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E5:80:3B:CC:BC:86:F5:31:04:5A:A1:8D:EC:4D:DF:B8:AE:A6:05
X509v3 Authority Key Identifier:
keyid:1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:aa:e7:06:b8:0c:e0:23:90:4c:3f:98:e0:92:14:83:17:34:
46:0f:a3:51:67:e8:43:2c:67:36:8c:eb:6c:e6:8f:2f:78:98:
64:09:46:f6:b3:0a:35:b4:09:18:9f:db:5d:74:58:af:7f:5d:
46:67:2d:61:7a:d7:00:09:a7:42:02:c0:c8:16:0b:62:f3:00:
24:16:eb:cb:05:36:15:32:a3:65:a7:66:fb:51:28:7a:e7:7a:
04:36:71:5a:0a:a2:9f:2f:41:ea:f4:cd:4f:81:f9:0f:ef:8d:
b7:96:9e:35:94:ef:94:77:9f:1b:16:3a:ab:db:a4:24:05:29:
55:e2:4d:4f:42:37:ae:b7:25:18:ef:b2:f1:02:56:eb:28:e0:
ef:17:12:60:ea:16:05:a4:6c:18:da:f1:c1:31:13:a2:7b:9e:
28:72:05:ab:01:9c:47:67:b6:19:16:68:90:f5:19:48:f5:d8:
b4:dd:6b:d4:4c:1a:7a:b3:03:5b:bd:d2:e3:e7:5f:81:4d:95:
0e:c3:83:cb:26:da:94:bb:e7:ff:66:d6:d6:f5:92:2f:ac:88:
d7:f3:69:95:71:75:75:a9:26:1c:aa:bd:8b:6c:de:22:72:5d:
15:f4:e7:25:da:51:77:7d:5f:6d:f3:db:d2:42:bc:b3:03:f9:
06:d8:eb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 15:08:12 2026 by rpki-client