Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: apGCfsWIEcDEg/MLUQpqalIwbUikTGy4kA07H9Fb1Og=
Subject key identifier: B2:23:32:F0:12:D5:C7:2C:54:9D:85:07:43:90:47:E3:AE:B1:23:52
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 019D3940FF8C6007672258EE0EF519A64EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 03B6
Signing time: Sun 29 Mar 2026 11:00:54 +0000
Manifest this update: Sun 29 Mar 2026 11:00:54 +0000
Manifest next update: Mon 30 Mar 2026 11:00:54 +0000
Files and hashes: 1: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: WiTAYJ3EcYQCH4fIwnepLbLQuAQpnIUDEXE+ERPrpMs=)
2: Z5oga0vgbQ3IfY7AuGU9kvMREF8.roa (hash: S/HDTLw/C2HlzUoz5QYaSY1KLwcsf1KpKUZ68xZPy3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:ff:8c:60:07:67:22:58:ee:0e:f5:19:a6:4e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Mar 29 11:00:54 2026 GMT
Not After : Mar 30 11:00:54 2026 GMT
Subject: CN=b22332f012d5c72c549d8507439047e3aeb12352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:39:22:51:3f:7f:7a:06:08:e6:77:3f:73:
6a:70:c7:cf:b4:aa:f3:17:fe:eb:b2:aa:9a:33:57:
85:7f:55:15:d6:af:e8:9f:b3:9c:2f:ea:38:f6:38:
fd:e6:38:05:6b:16:05:ee:da:7b:6e:1c:b6:55:13:
6f:f5:34:53:a6:64:04:d1:57:4e:5b:fc:d8:cd:be:
17:33:36:be:16:21:0a:e7:c7:c5:45:66:4e:2e:24:
c5:b8:24:33:66:e3:91:75:7f:ef:0f:bb:4b:39:c5:
f4:dc:10:3e:b0:d1:0d:1e:a7:a3:c6:0a:fe:c7:08:
8b:aa:24:65:45:e4:b6:2d:13:7e:94:49:54:26:0b:
66:b0:ba:2c:e8:a2:02:d6:91:e8:a6:b9:73:b7:dd:
f8:fb:41:0f:9c:de:72:54:93:95:be:d8:3f:d6:80:
60:3f:6d:a4:3a:39:20:83:9d:63:76:71:d0:86:e9:
04:63:29:29:55:6a:cd:57:9c:fc:00:e3:7d:fd:d0:
84:5a:31:21:89:30:a5:94:27:2b:59:45:f1:99:1a:
40:1d:47:9f:57:f5:ba:11:c9:2d:ba:3a:ff:3f:f4:
58:05:35:19:9b:57:ff:4f:91:c9:b3:12:94:b6:55:
d2:31:9a:ec:5e:60:69:64:cf:af:c0:1d:9e:bf:21:
f2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:23:32:F0:12:D5:C7:2C:54:9D:85:07:43:90:47:E3:AE:B1:23:52
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:d6:76:28:06:84:62:5a:56:d5:81:7c:7c:3f:55:10:93:69:
18:7b:fb:8b:1e:9a:08:05:82:7a:96:57:0b:09:0a:50:9d:81:
f7:c3:de:a0:5f:d3:e7:ff:28:98:05:23:bb:f5:bb:fd:00:d9:
7e:ce:ff:dd:f2:8e:ea:7e:09:3f:55:4e:4e:b0:bd:b9:81:da:
4f:b1:e6:8f:1a:f3:5f:3f:4c:9e:74:fc:67:9c:49:f2:7c:0d:
94:ad:1b:ab:41:9d:58:3a:36:69:28:d0:10:aa:cc:ee:7a:5f:
2a:b5:b9:88:4a:31:fd:59:df:5a:8c:9d:44:30:61:61:6a:0e:
ed:f4:b6:10:47:32:2d:31:ba:72:33:f6:a8:d4:5b:b7:39:5a:
bb:aa:51:bf:8c:de:19:0c:57:f2:24:5a:34:7a:c3:c4:88:00:
6f:89:1c:ac:f1:8b:15:3c:d6:0c:2b:58:f5:44:1b:6d:db:5f:
7f:21:f7:7d:a8:a6:58:32:68:86:67:c8:a7:e3:0c:8f:02:fb:
bb:64:cc:e0:93:ca:8b:7a:df:27:59:74:8b:43:e0:e5:5e:7b:
5a:8b:44:83:a1:a3:9e:e7:5b:38:a1:bd:57:40:3d:88:ea:e1:
fa:1b:03:50:a7:2b:88:54:50:fc:90:fe:9c:11:13:61:92:a2:
d3:c3:06:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:03:52 2026 by rpki-client