Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: fcj9wIUKgsgP3w0rZnSyqaG3NA9bGLy+iEeulszgVsE=
Subject key identifier: A4:EB:F9:95:F6:3C:B8:43:D2:46:EC:82:FB:9D:BA:7F:67:44:3C:90
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 019E1ED99B9245FE114F5343B2BD76F83987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 167A
Signing time: Wed 13 May 2026 01:00:38 +0000
Manifest this update: Wed 13 May 2026 01:00:38 +0000
Manifest next update: Thu 14 May 2026 01:00:38 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: hbUK5XcmBpFDY+iLXfE1a0ElZmrWq0mA+4ogy1JrXtY=)
2: IMhrDeS7pt6POgdqkwhQn8NXjdQ.roa (hash: 8Co4GdnGTbaplfNAIs0VU0evrLpH3iNJkhwVpK6YVsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:9b:92:45:fe:11:4f:53:43:b2:bd:76:f8:39:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: May 13 01:00:38 2026 GMT
Not After : May 14 01:00:38 2026 GMT
Subject: CN=a4ebf995f63cb843d246ec82fb9dba7f67443c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:90:14:b6:63:ac:33:8e:86:c6:33:06:f8:
0f:b4:63:c7:f8:03:2a:6c:4a:d1:6f:9f:45:9a:f4:
0e:ba:fe:95:47:b3:3c:4e:0c:fd:ef:b3:58:95:a6:
0a:79:8c:16:e3:6b:ac:58:2d:fd:68:a9:bd:8d:3f:
3d:47:63:8b:46:83:84:63:7e:75:90:8b:a7:92:e6:
b4:79:4f:f2:60:44:a6:cf:d8:da:9f:86:36:e3:2d:
f1:73:0b:1d:23:41:4c:20:87:6a:b3:66:d4:66:f1:
12:3c:dc:5a:0c:a0:5c:10:3d:25:18:2d:e5:28:a3:
34:62:47:1c:e9:ae:68:d5:f5:fa:76:bf:34:7e:6e:
d3:8f:4b:1e:b1:95:ec:d1:f5:5c:29:9f:a8:42:ce:
32:ee:26:b7:89:2f:0a:cd:65:78:fe:97:d8:d9:cc:
41:ab:08:b8:83:fc:b7:56:aa:b1:62:9a:70:68:0e:
24:86:d0:4d:75:b0:53:ca:1e:88:91:85:85:7d:02:
c6:cb:4e:e5:85:73:bd:47:42:fd:27:09:4e:a6:ad:
71:e6:84:f3:b6:ee:90:a0:3e:c9:17:87:ce:3b:74:
92:ec:cd:a2:ed:d5:03:76:36:1d:1a:55:19:9e:a3:
a2:0b:14:e5:4e:8c:9c:74:5d:7e:6e:8b:81:b5:5d:
98:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:EB:F9:95:F6:3C:B8:43:D2:46:EC:82:FB:9D:BA:7F:67:44:3C:90
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:a8:9e:97:3b:bd:d3:65:64:50:06:f1:1e:67:13:58:1f:90:
8b:a6:02:61:0c:62:70:c9:88:f5:03:f5:e6:24:1c:03:a2:bd:
e2:a3:86:36:06:7d:60:63:c7:84:c7:2b:ce:03:47:7a:4e:12:
5e:65:93:c1:09:c9:0e:d4:7a:6e:34:dd:15:03:f9:92:36:eb:
e9:42:e4:38:4d:58:a1:e9:45:2a:05:25:84:58:9f:13:44:8a:
08:20:1b:3d:39:06:27:66:03:71:73:dd:02:79:4f:47:c4:ca:
cc:77:1a:39:c4:2c:e9:0b:2a:e3:d8:7a:ae:a4:05:60:12:f9:
a0:74:e8:74:1a:5a:02:79:c9:e4:32:e2:c9:10:a5:a0:6a:2d:
62:e2:6f:14:3f:fb:31:68:eb:e0:7b:d2:30:b9:3b:dd:40:2a:
60:a7:15:fc:4b:25:ae:f2:ff:6b:25:ce:d9:12:50:61:e4:47:
5b:17:38:5b:ae:6e:7a:d4:06:47:a8:0f:f1:9a:75:24:55:cb:
fd:de:82:7a:db:7f:00:54:54:ab:5c:5b:05:6c:02:42:eb:2a:
23:83:9c:68:11:d4:73:e2:68:1f:d6:e9:0f:1e:fa:e5:57:7f:
c5:14:3b:d9:64:fa:9f:20:82:0e:3a:20:e1:85:47:66:44:03:
51:e2:45:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2ZuSRf4RT1NDsr12+DmHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjN2RkM2M4MTZkODU5NjA4MDQ3MjA1NDM0ODA5NWVkMmI4
NTUxZTUwHhcNMjYwNTEzMDEwMDM4WhcNMjYwNTE0MDEwMDM4WjAzMTEwLwYDVQQD
EyhhNGViZjk5NWY2M2NiODQzZDI0NmVjODJmYjlkYmE3ZjY3NDQzYzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1eQFLZjrDOOhsYzBvgPtGPH+AMq
bErRb59FmvQOuv6VR7M8Tgz977NYlaYKeYwW42usWC39aKm9jT89R2OLRoOEY351
kIunkua0eU/yYESmz9jan4Y24y3xcwsdI0FMIIdqs2bUZvESPNxaDKBcED0lGC3l
KKM0Ykcc6a5o1fX6dr80fm7Tj0sesZXs0fVcKZ+oQs4y7ia3iS8KzWV4/pfY2cxB
qwi4g/y3VqqxYppwaA4khtBNdbBTyh6IkYWFfQLGy07lhXO9R0L9JwlOpq1x5oTz
tu6QoD7JF4fOO3SS7M2i7dUDdjYdGlUZnqOiCxTlToycdF1+bouBtV2YawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTr+ZX2PLhD0kbsgvudun9nRDyQMB8GA1UdIwQY
MBaAFBx908gW2FlggEcgVDSAle0rhVHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzkt
Y2MyY2Q3ZDMxYTI2LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzktY2MyY2Q3ZDMxYTI2
LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm6ielzu9
02VkUAbxHmcTWB+Qi6YCYQxicMmI9QP15iQcA6K94qOGNgZ9YGPHhMcrzgNHek4S
XmWTwQnJDtR6bjTdFQP5kjbr6ULkOE1YoelFKgUlhFifE0SKCCAbPTkGJ2YDcXPd
AnlPR8TKzHcaOcQs6Qsq49h6rqQFYBL5oHTodBpaAnnJ5DLiyRCloGotYuJvFD/7
MWjr4HvSMLk73UAqYKcV/EslrvL/ayXO2RJQYeRHWxc4W65uetQGR6gP8Zp1JFXL
/d6Cett/AFRUq1xbBWwCQusqI4OcaBHUc+JoH9bpDx765Vd/xRQ72WT6nyCCDjog
4YVHZkQDUeJFiw==
-----END CERTIFICATE-----
Generated at Wed May 13 12:32:09 2026 by rpki-client