Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: sT0pR28vbVMKuKOTZD2eD6KIxNFH0u3dKc6yyj/Ts40=
Subject key identifier: 9F:02:EB:31:14:B1:4B:69:9D:94:3E:69:15:28:4D:B4:E1:20:08:86
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019DCDF4AE241C31E9F27FC36F975E5CAE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 18DE
Signing time: Mon 27 Apr 2026 08:00:57 +0000
Manifest this update: Mon 27 Apr 2026 08:00:57 +0000
Manifest next update: Tue 28 Apr 2026 08:00:57 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: asx2I15SoQEalRt8vnfX8zjhnklt1uXOUinRDCijIEM=)
2: _SW-efIyZk8frPlLE8yBxAElkiU.roa (hash: iv2POwrNLwDCvtWPf5ONex0CqcvwAdFHiaQ1/D120FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f4:ae:24:1c:31:e9:f2:7f:c3:6f:97:5e:5c:ae:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Apr 27 08:00:57 2026 GMT
Not After : Apr 28 08:00:57 2026 GMT
Subject: CN=9f02eb3114b14b699d943e6915284db4e1200886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:90:6a:fd:aa:e8:bd:05:e5:e6:b5:15:66:a0:
fe:b6:df:69:41:3e:07:5c:f6:0d:87:b8:80:1c:ca:
15:17:9d:51:71:44:02:0c:2f:40:25:ac:36:f5:4d:
0b:71:98:26:bd:22:99:e4:fa:d3:c2:c2:4e:e5:ba:
fa:ab:83:47:b8:5b:18:f5:0b:42:ee:ac:55:28:a4:
80:a8:5b:20:a7:75:9b:f5:3e:37:7e:80:3c:d3:09:
1f:1d:02:13:b9:1a:a9:33:4a:fc:86:9d:37:72:34:
90:45:7f:3a:20:08:2e:a3:74:61:b6:f2:69:8d:4d:
4c:ec:6a:65:61:76:c2:88:92:3b:3f:02:8e:ff:89:
18:c3:6c:4e:c4:0a:98:d2:3b:d2:8a:cd:2d:46:bb:
c3:db:cc:76:21:3e:48:f2:cf:f4:a2:25:58:bc:19:
cb:39:ce:fd:7a:0a:d8:9c:dc:21:b8:48:ce:44:41:
8e:0b:ed:c5:86:f4:a7:e9:44:f9:e2:57:f3:f6:1d:
7e:40:4c:79:93:a9:3c:44:bb:a2:ed:4f:e6:2d:40:
18:1b:2f:f7:87:23:2c:65:8d:26:7a:e7:32:99:2d:
54:80:ca:65:78:98:f7:86:d9:50:7b:ba:00:c3:93:
19:f5:11:af:41:04:68:16:a8:ec:52:68:4d:e3:00:
ad:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:02:EB:31:14:B1:4B:69:9D:94:3E:69:15:28:4D:B4:E1:20:08:86
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:1f:2e:69:fb:ec:c1:ea:29:b2:b9:61:fa:59:c0:c7:79:bc:
6f:8c:02:7e:39:db:24:b5:ad:14:96:a1:83:8c:04:df:c4:1b:
bb:36:2d:91:13:c6:4e:9d:b2:36:ff:f4:8f:67:2d:16:c8:9a:
d4:83:5c:ef:9c:7d:87:03:54:ef:a8:30:fe:3b:76:70:c0:dd:
69:c4:06:11:ae:03:7b:fc:79:8b:fb:28:4d:ab:d1:43:ff:ff:
c2:b0:79:dd:94:53:7d:b0:87:1f:b2:70:aa:f3:fc:32:ea:ba:
1b:bd:c1:88:c0:c2:e4:28:55:24:97:27:f2:9c:53:88:f2:d7:
5b:1a:ed:b5:ef:4e:b5:49:65:10:43:a2:f8:95:ba:5a:df:55:
20:bb:18:63:cb:54:b6:c4:46:6c:75:4a:f5:90:43:25:c9:f4:
5e:bf:69:82:ac:05:76:5c:63:16:6a:ad:f6:0b:9b:5f:a2:4c:
ab:76:73:d5:46:69:a4:54:f2:24:99:a4:69:13:81:8c:5e:c0:
18:8d:69:b8:e6:57:a0:b5:bc:6e:b4:09:18:f3:ce:87:f5:35:
3d:35:fc:a6:9a:d1:bd:e2:5d:4a:0b:cf:08:6f:3d:a7:87:d5:
29:c5:46:4f:98:cd:30:ea:bc:92:63:85:21:26:82:58:e4:b9:
7c:cc:bb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 15:47:37 2026 by rpki-client