Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
File: HLjjf1E93Cn_15HDjJZjI2nKVFE.mft (raw, json)
Hash identifier: 0JUpT8WbYmQZvZrVj8RU5rVS8XvsCaOBqE4V4nBQBA4=
Subject key identifier: 81:43:12:77:BD:EE:D6:1E:90:27:00:B5:8C:FD:9B:65:62:DF:B3:31
Authority key identifier: 1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
Certificate issuer: /CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Certificate serial: 019DDCFAAF240005434BCC277B5697DC2879
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
Manifest number: 1493
Signing time: Thu 30 Apr 2026 06:01:49 +0000
Manifest this update: Thu 30 Apr 2026 06:01:49 +0000
Manifest next update: Fri 01 May 2026 06:01:49 +0000
Files and hashes: 1: 5bhy7eDbTF3iSMoLKUHBCIILj4E.roa (hash: 9YusEuoHgRDwFpuJ1B9xJzYQFifXAqM0fNdh2jgcmr0=)
2: D-r3D7TjflJW1amM5h7I8MR0oUk.asa (hash: z5fDIV8YawnmcSoSc/AVZ5e/iduZ1ZCGdbI+J/9nY3A=)
3: HLjjf1E93Cn_15HDjJZjI2nKVFE.crl (hash: 0FLBy88usBV+a8JZGtPamML2O2+xCJxA+KHmyapjWys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 06:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dc:fa:af:24:00:05:43:4b:cc:27:7b:56:97:dc:28:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Validity
Not Before: Apr 30 06:01:49 2026 GMT
Not After : May 1 06:01:49 2026 GMT
Subject: CN=81431277bdeed61e902700b58cfd9b6562dfb331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:aa:ea:bd:8f:67:3d:9a:44:8a:20:13:d8:9a:
ac:3f:58:32:41:ce:56:99:10:37:74:6d:a4:01:ad:
c5:74:07:e4:09:5a:5b:4a:a1:41:2f:18:5c:dd:c9:
4c:58:4f:48:ef:ef:c2:bc:ea:c1:e3:87:90:89:4c:
ed:b5:86:b7:bf:1a:3b:21:f6:4b:58:46:5d:51:38:
4e:02:33:57:95:cd:25:64:d0:ee:c1:6d:64:ff:98:
66:8d:65:65:27:dc:f3:9b:51:04:9e:90:7e:28:6d:
e9:a7:13:4d:bb:d2:24:70:3f:db:a4:ff:88:be:6a:
e0:36:7f:57:44:73:91:12:af:03:c9:d2:52:10:95:
09:dc:0e:85:ba:56:07:75:e3:9e:c5:99:29:d0:76:
a9:49:43:e7:94:c0:d2:4b:cd:05:1a:14:e2:58:79:
f9:7d:9c:4f:b2:64:15:56:b4:02:83:54:36:22:49:
04:31:78:06:19:97:b6:63:0c:b0:5f:10:ea:f8:14:
4d:7c:76:e1:45:18:7f:39:b2:b5:f8:71:63:db:ad:
f8:d6:18:b2:d2:36:48:a3:02:15:72:44:db:1f:96:
03:a7:d0:a7:c1:bb:cc:c3:c1:cf:95:9c:20:5d:94:
d1:24:13:c1:84:cd:45:4b:af:1a:cd:92:01:59:65:
25:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:43:12:77:BD:EE:D6:1E:90:27:00:B5:8C:FD:9B:65:62:DF:B3:31
X509v3 Authority Key Identifier:
keyid:1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:0b:1c:78:7f:06:a4:1d:58:60:07:4e:3c:63:f2:8e:49:71:
5b:09:46:54:aa:2f:70:99:ec:a1:2d:39:22:44:36:fa:69:14:
1f:cd:33:ae:47:8a:6c:e2:5b:ba:e6:fe:5c:0c:a3:10:ee:4e:
22:93:21:6a:4b:24:33:50:1d:28:b9:d8:bf:bf:ae:2a:10:57:
56:68:1b:3e:f2:ab:0b:17:88:06:1b:a5:bc:f9:fc:fd:34:cc:
4f:25:51:ee:21:79:f7:ab:5d:c1:9d:af:3d:85:82:55:94:20:
36:9d:ea:33:29:73:fa:2c:d2:2b:5f:73:d9:44:30:bd:d4:4d:
87:f4:f9:9a:f9:48:bb:e3:31:a8:16:77:da:76:90:5a:9f:b0:
97:fb:01:e2:bf:44:d5:cd:49:ca:fa:da:e7:44:fd:e3:8a:dc:
38:66:86:17:8f:7f:71:1e:23:81:72:dc:a5:f2:80:8d:c9:91:
52:f2:d3:34:6e:b6:f7:7e:52:18:78:cc:5c:2b:8a:59:c5:0b:
92:fa:ac:c1:5d:0c:1d:f7:8c:56:32:32:d1:95:e5:10:42:59:
6a:ae:63:ca:8d:ca:06:0c:71:72:dd:1b:41:83:58:f1:9c:4c:
00:07:4d:b6:39:94:c0:17:cc:28:c6:db:49:63:23:d9:47:2c:
36:7b:1a:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3c+q8kAAVDS8wne1aX3Ch5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYjhlMzdmNTEzZGRjMjlmZmQ3OTFjMzhjOTY2MzIzNjlj
YTU0NTEwHhcNMjYwNDMwMDYwMTQ5WhcNMjYwNTAxMDYwMTQ5WjAzMTEwLwYDVQQD
Eyg4MTQzMTI3N2JkZWVkNjFlOTAyNzAwYjU4Y2ZkOWI2NTYyZGZiMzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA46rqvY9nPZpEiiAT2JqsP1gyQc5W
mRA3dG2kAa3FdAfkCVpbSqFBLxhc3clMWE9I7+/CvOrB44eQiUzttYa3vxo7IfZL
WEZdUThOAjNXlc0lZNDuwW1k/5hmjWVlJ9zzm1EEnpB+KG3ppxNNu9IkcD/bpP+I
vmrgNn9XRHOREq8DydJSEJUJ3A6FulYHdeOexZkp0HapSUPnlMDSS80FGhTiWHn5
fZxPsmQVVrQCg1Q2IkkEMXgGGZe2YwywXxDq+BRNfHbhRRh/ObK1+HFj26341hiy
0jZIowIVckTbH5YDp9CnwbvMw8HPlZwgXZTRJBPBhM1FS68azZIBWWUl5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIFDEne97tYekCcAtYz9m2Vi37MxMB8GA1UdIwQY
MBaAFBy4439RPdwp/9eRw4yWYyNpylRRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSExqamYxRTkzQ25fMTVIRGpKWmpJMm5LVkZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9iZGRmZDYtNzZkYi00MzMxLWFmZDMt
ZTFjZGIyNGMxODBiLzEvSExqamYxRTkzQ25fMTVIRGpKWmpJMm5LVkZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9iZGRmZDYtNzZkYi00MzMxLWFmZDMtZTFjZGIyNGMxODBi
LzEvSExqamYxRTkzQ25fMTVIRGpKWmpJMm5LVkZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIAsceH8G
pB1YYAdOPGPyjklxWwlGVKovcJnsoS05IkQ2+mkUH80zrkeKbOJbuub+XAyjEO5O
IpMhakskM1AdKLnYv7+uKhBXVmgbPvKrCxeIBhulvPn8/TTMTyVR7iF596tdwZ2v
PYWCVZQgNp3qMylz+izSK19z2UQwvdRNh/T5mvlIu+MxqBZ32naQWp+wl/sB4r9E
1c1Jyvra50T944rcOGaGF49/cR4jgXLcpfKAjcmRUvLTNG62935SGHjMXCuKWcUL
kvqswV0MHfeMVjIy0ZXlEEJZaq5jyo3KBgxxct0bQYNY8ZxMAAdNtjmUwBfMKMbb
SWMj2UcsNnsaAg==
-----END CERTIFICATE-----
Generated at Thu Apr 30 12:48:30 2026 by rpki-client