Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: Mu/26acC20hvz33ozB083P6SLPF7QG2B3TSGRKb6v+w=
Subject key identifier: 5F:F5:90:82:6D:C9:8D:55:98:EC:C1:69:AA:57:2E:7C:5D:33:50:A3
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 019E8F1374BC7A08DFDA9797AE36C10BF249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 0467
Signing time: Wed 03 Jun 2026 20:01:17 +0000
Manifest this update: Wed 03 Jun 2026 20:01:17 +0000
Manifest next update: Thu 04 Jun 2026 20:01:17 +0000
Files and hashes: 1: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: 4n7cfleQ0Mz72BTmbFMU46G7rcbYtRC2jfkxZikARS0=)
2: Z5oga0vgbQ3IfY7AuGU9kvMREF8.roa (hash: S/HDTLw/C2HlzUoz5QYaSY1KLwcsf1KpKUZ68xZPy3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8f:13:74:bc:7a:08:df:da:97:97:ae:36:c1:0b:f2:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Jun 3 20:01:17 2026 GMT
Not After : Jun 4 20:01:17 2026 GMT
Subject: CN=5ff590826dc98d5598ecc169aa572e7c5d3350a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9e:e1:fb:73:1f:d2:d1:33:05:a1:08:e9:f9:
53:f4:a7:5f:56:0b:0a:82:31:41:72:02:b7:69:64:
ba:d5:1b:ff:2c:db:c7:f5:28:27:5f:78:55:6f:fb:
7d:ff:76:9c:7a:bc:a0:b1:18:d1:e8:a7:ea:40:d8:
b1:0e:87:c5:93:41:25:e8:08:bb:da:28:b4:3e:3a:
4c:9f:2a:1a:8a:47:e9:9e:e8:44:56:9e:5c:e1:6f:
ba:f9:13:be:85:83:3a:81:61:d5:ba:da:a4:c9:03:
24:f7:ec:78:95:2c:51:3f:71:37:ce:18:d2:f3:46:
22:e8:e2:fa:f4:e0:5a:ec:95:21:bc:f7:95:d0:6a:
d5:ed:28:4f:b3:be:d0:b2:35:e0:ad:b6:3d:f8:00:
79:fc:ff:cb:af:b4:5a:b0:8d:0d:33:b7:f8:a4:e3:
64:22:61:f9:bc:c8:38:04:1a:4e:68:1a:a6:ae:bf:
d9:ac:a0:40:8b:47:56:fa:e2:bd:59:ef:10:23:91:
b4:33:d9:38:f1:31:8f:4b:b6:9c:87:e0:d6:c1:4f:
44:19:55:b7:c0:ad:63:b3:d6:42:af:17:f2:33:a9:
d1:2f:42:71:85:55:cf:b1:dc:06:92:53:83:94:e9:
e0:b8:67:a0:51:67:bd:b9:0f:57:e3:f6:c9:ba:63:
8e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F5:90:82:6D:C9:8D:55:98:EC:C1:69:AA:57:2E:7C:5D:33:50:A3
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:8d:7d:26:9d:6b:c0:1f:ed:50:41:fb:06:9d:b3:cc:37:91:
81:b4:df:30:84:6a:dd:2e:1c:fa:d5:2f:12:20:77:30:a4:ad:
1b:5f:1f:fa:6c:dc:27:39:9a:0a:d3:74:47:64:15:38:6b:0b:
57:8b:5c:73:d3:dd:41:50:2e:b8:16:2b:02:22:61:93:a6:36:
4e:e8:47:e5:b1:5f:f2:00:fa:37:48:6d:39:84:30:3d:8c:cf:
41:53:cf:40:86:ef:3a:38:2f:c4:a5:ee:12:06:28:86:f9:2c:
e2:85:9c:9a:e8:9d:18:01:08:5b:c3:94:59:22:9b:fd:ed:36:
40:af:3b:41:12:30:70:04:8e:8d:5d:7b:00:14:ad:eb:c2:45:
76:a8:e2:60:d9:22:23:2a:dd:bd:7f:36:08:82:ed:7d:29:a7:
55:5f:d6:4e:c2:d9:73:cd:12:6b:ab:48:e5:d5:dc:ce:ca:c0:
fe:53:f8:70:cc:3c:95:fe:13:e7:b7:9b:d5:40:62:d1:3a:89:
58:c4:49:00:f7:ba:b6:f5:14:a3:2f:3d:1d:ea:57:5f:77:4e:
55:cc:d6:c1:2e:3a:67:bc:08:fe:bb:d6:97:29:36:fa:1d:e1:
df:51:b3:36:55:b1:81:b8:73:a7:b7:fe:e6:09:89:6f:80:af:
bf:22:33:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6PE3S8egjf2peXrjbBC/JJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjE3YzgwODZiZTI5ZDUwZjgzYzhmZDhmYzkxN2IwMDlk
ZTNjODEwHhcNMjYwNjAzMjAwMTE3WhcNMjYwNjA0MjAwMTE3WjAzMTEwLwYDVQQD
Eyg1ZmY1OTA4MjZkYzk4ZDU1OThlY2MxNjlhYTU3MmU3YzVkMzM1MGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJ7h+3Mf0tEzBaEI6flT9KdfVgsK
gjFBcgK3aWS61Rv/LNvH9SgnX3hVb/t9/3acerygsRjR6KfqQNixDofFk0El6Ai7
2ii0PjpMnyoaikfpnuhEVp5c4W+6+RO+hYM6gWHVutqkyQMk9+x4lSxRP3E3zhjS
80Yi6OL69OBa7JUhvPeV0GrV7ShPs77QsjXgrbY9+AB5/P/Lr7RasI0NM7f4pONk
ImH5vMg4BBpOaBqmrr/ZrKBAi0dW+uK9We8QI5G0M9k48TGPS7ach+DWwU9EGVW3
wK1js9ZCrxfyM6nRL0JxhVXPsdwGklODlOnguGegUWe9uQ9X4/bJumOOgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/1kIJtyY1VmOzBaapXLnxdM1CjMB8GA1UdIwQY
MBaAFBwhfICGvinVD4PI/Y/JF7AJ3jyBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1Zjkt
ZjM0YjMxZDNiNDNjLzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1ZjktZjM0YjMxZDNiNDNj
LzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdY19Jp1r
wB/tUEH7Bp2zzDeRgbTfMIRq3S4c+tUvEiB3MKStG18f+mzcJzmaCtN0R2QVOGsL
V4tcc9PdQVAuuBYrAiJhk6Y2TuhH5bFf8gD6N0htOYQwPYzPQVPPQIbvOjgvxKXu
EgYohvks4oWcmuidGAEIW8OUWSKb/e02QK87QRIwcASOjV17ABSt68JFdqjiYNki
IyrdvX82CILtfSmnVV/WTsLZc80Sa6tI5dXczsrA/lP4cMw8lf4T57eb1UBi0TqJ
WMRJAPe6tvUUoy89HepXX3dOVczWwS46Z7wI/rvWlyk2+h3h31GzNlWxgbhzp7f+
5gmJb4CvvyIzLw==
-----END CERTIFICATE-----
Generated at Thu Jun 4 00:00:09 2026 by rpki-client