Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
File: uwKqn6RfyXvbLm3I_Ap_A3HITek.mft (raw, json)
Hash identifier: F4caQCwWIjomMS5IUHvwhKPYUn/7I1p4xgRdljowr64=
Subject key identifier: 17:B7:DF:09:0E:2A:70:3E:81:FC:2E:30:4A:3D:B9:81:46:29:89:D3
Authority key identifier: BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
Certificate issuer: /CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Certificate serial: 019E31F3471299CC6609EAC410FED6EDB0AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
Manifest number: 04BC
Signing time: Sat 16 May 2026 18:01:27 +0000
Manifest this update: Sat 16 May 2026 18:01:27 +0000
Manifest next update: Sun 17 May 2026 18:01:27 +0000
Files and hashes: 1: FStRWITrx7mXYLP1GLGN2-na9w0.roa (hash: 9Kguvpi0MkdObkp26nsq/5tht75+Q0yDWXnyUXnDBmI=)
2: uwKqn6RfyXvbLm3I_Ap_A3HITek.crl (hash: JwerIETOWkSqFDbkgyJrrhlBgULYed/bXLea+C5DEFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f3:47:12:99:cc:66:09:ea:c4:10:fe:d6:ed:b0:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Validity
Not Before: May 16 18:01:27 2026 GMT
Not After : May 17 18:01:27 2026 GMT
Subject: CN=17b7df090e2a703e81fc2e304a3db981462989d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f5:2d:a2:9c:39:f3:c6:68:4a:c3:66:fd:69:
69:6c:e9:ba:06:33:23:74:97:9f:ae:a4:c2:82:74:
e6:b4:e2:fe:6b:50:ec:28:aa:c5:a0:ef:e6:6e:39:
c5:54:bf:67:72:eb:dd:e6:fc:81:1f:25:c2:de:aa:
9a:87:49:0f:c3:1f:cd:48:d5:2c:dd:38:7b:e3:bd:
6b:f0:aa:47:93:61:4f:73:e6:17:6f:05:ef:3c:b0:
46:23:83:4b:23:38:b3:c5:e3:00:00:9d:86:dc:a5:
6e:0c:de:df:29:17:c3:3b:2d:eb:c2:94:dc:fa:08:
f1:d2:3c:9f:46:b0:51:37:87:d6:b7:89:c2:d2:c9:
84:50:cf:42:b9:45:6f:ad:cb:6e:8b:b6:24:83:06:
45:66:07:d1:c7:31:08:91:ce:38:6e:be:13:d4:6a:
37:c7:78:bb:4d:f1:c9:90:e2:6a:bd:78:7c:02:4b:
18:a3:45:95:15:34:ed:07:b2:2e:ab:87:79:b4:d5:
f6:16:f2:e4:6a:4f:23:76:f4:53:b6:d4:d5:95:58:
86:db:6b:c2:cd:55:b8:f2:47:5b:c7:3f:3a:fb:83:
a0:64:27:da:5c:eb:dd:f5:fb:9e:07:3e:54:b2:61:
64:a2:31:d7:66:cc:f6:f6:5c:0d:05:14:a1:6f:be:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B7:DF:09:0E:2A:70:3E:81:FC:2E:30:4A:3D:B9:81:46:29:89:D3
X509v3 Authority Key Identifier:
keyid:BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:ad:54:98:86:91:46:14:60:e2:c9:9b:2f:1c:32:5f:1a:af:
5b:55:a9:f4:80:4b:77:be:da:53:35:e2:f4:d9:78:47:b9:a3:
fe:0b:67:80:cd:fd:2b:dc:c1:33:ab:07:99:98:ff:b9:2a:d9:
b8:44:c3:0a:30:e3:23:62:57:dd:d4:c1:89:23:e7:b3:50:bc:
6f:47:5e:95:ab:67:4b:db:d7:f0:f1:ce:e7:f0:10:82:99:02:
8e:13:5a:ce:5e:3f:d7:07:5c:4f:62:68:3d:da:a9:db:22:b6:
bf:f2:ca:18:8d:a9:95:3f:47:cc:98:b8:1a:35:ff:32:2e:52:
4a:8b:8b:6d:48:ab:e1:bc:d8:6f:88:68:a9:64:67:c0:a5:ef:
3d:16:59:88:da:95:7e:d6:3d:19:5c:f1:8e:1b:39:23:3b:a8:
ac:49:ce:98:8f:39:b8:a4:ec:05:dd:5d:a7:63:20:8f:2c:b5:
d6:d0:b3:25:94:d4:55:6b:46:42:36:68:c5:a9:cd:a7:e5:c9:
16:b9:2b:94:87:1c:11:0a:02:9a:bb:d5:3b:4d:f2:29:e0:35:
63:c7:4e:1a:52:1d:c9:a8:6b:ce:58:d6:10:54:ba:29:6b:24:
4f:d2:e0:78:10:b2:1b:21:d0:0b:98:32:28:ae:a1:fe:ee:ef:
7a:d9:d4:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4x80cSmcxmCerEEP7W7bCtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiMDJhYTlmYTQ1ZmM5N2JkYjJlNmRjOGZjMGE3ZjAzNzFj
ODRkZTkwHhcNMjYwNTE2MTgwMTI3WhcNMjYwNTE3MTgwMTI3WjAzMTEwLwYDVQQD
EygxN2I3ZGYwOTBlMmE3MDNlODFmYzJlMzA0YTNkYjk4MTQ2Mjk4OWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfUtopw588ZoSsNm/WlpbOm6BjMj
dJefrqTCgnTmtOL+a1DsKKrFoO/mbjnFVL9ncuvd5vyBHyXC3qqah0kPwx/NSNUs
3Th7471r8KpHk2FPc+YXbwXvPLBGI4NLIzizxeMAAJ2G3KVuDN7fKRfDOy3rwpTc
+gjx0jyfRrBRN4fWt4nC0smEUM9CuUVvrctui7YkgwZFZgfRxzEIkc44br4T1Go3
x3i7TfHJkOJqvXh8AksYo0WVFTTtB7Iuq4d5tNX2FvLkak8jdvRTttTVlViG22vC
zVW48kdbxz86+4OgZCfaXOvd9fueBz5UsmFkojHXZsz29lwNBRShb74W3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBe33wkOKnA+gfwuMEo9uYFGKYnTMB8GA1UdIwQY
MBaAFLsCqp+kX8l72y5tyPwKfwNxyE3pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQt
YWMxODNhOWFkZWIxLzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQtYWMxODNhOWFkZWIx
LzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlq1UmIaR
RhRg4smbLxwyXxqvW1Wp9IBLd77aUzXi9Nl4R7mj/gtngM39K9zBM6sHmZj/uSrZ
uETDCjDjI2JX3dTBiSPns1C8b0delatnS9vX8PHO5/AQgpkCjhNazl4/1wdcT2Jo
Pdqp2yK2v/LKGI2plT9HzJi4GjX/Mi5SSouLbUir4bzYb4hoqWRnwKXvPRZZiNqV
ftY9GVzxjhs5IzuorEnOmI85uKTsBd1dp2Mgjyy11tCzJZTUVWtGQjZoxanNp+XJ
FrkrlIccEQoCmrvVO03yKeA1Y8dOGlIdyahrzljWEFS6KWskT9LgeBCyGyHQC5gy
KK6h/u7vetnUzg==
-----END CERTIFICATE-----
Generated at Sun May 17 00:28:21 2026 by rpki-client