Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: 5Cw4Q0gG8MqSyyU6/YgunCnceym3hlQlLmuixSfn1kE=
Subject key identifier: AD:CC:51:01:1A:15:05:9E:CC:3B:F7:AD:4A:06:90:B2:A3:9B:8B:2D
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 019D2A72B90526E358BB50BF07223A9E50C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 1897
Signing time: Thu 26 Mar 2026 14:00:54 +0000
Manifest this update: Thu 26 Mar 2026 14:00:54 +0000
Manifest next update: Fri 27 Mar 2026 14:00:54 +0000
Files and hashes: 1: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: yN+pxfXYZekJJ6eKvfdmyg0M/s0vuvimC52eY6hu8Sk=)
2: bDrj-tZkqPqGj2uPI5o7mN3ny5k.roa (hash: WctHj8uUD5EoOkvtFB0q+2ZJ4vqUF2yl3XDa913n+Fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:b9:05:26:e3:58:bb:50:bf:07:22:3a:9e:50:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Mar 26 14:00:54 2026 GMT
Not After : Mar 27 14:00:54 2026 GMT
Subject: CN=adcc51011a15059ecc3bf7ad4a0690b2a39b8b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:43:b3:56:60:9a:9f:3d:09:5a:f5:07:93:20:
4d:4f:46:54:9c:19:eb:34:1d:09:57:98:16:0e:3a:
5f:9c:81:39:32:27:e8:c4:d7:58:a0:bf:43:bc:9f:
6f:ee:6d:c4:a5:2f:9f:e7:a2:5e:68:1a:30:0c:a1:
05:34:fd:37:4e:ff:72:ee:79:37:4a:99:85:5f:c1:
8a:49:8e:eb:b9:28:92:26:2a:3f:e6:b2:1d:aa:45:
c7:30:0c:0d:f3:4a:03:f3:7e:a3:40:13:34:8d:b7:
ed:d5:5d:b6:37:76:4e:e1:66:d8:ca:a9:29:0b:05:
f0:8c:3f:55:a4:da:8b:bd:2b:b7:28:e1:bd:54:b6:
1b:e9:53:b2:79:65:fd:01:61:66:07:0f:9a:85:31:
56:6b:01:3a:72:31:ef:fa:81:e2:28:ef:14:c8:06:
ee:0f:c7:2c:4b:4a:48:f8:6d:1e:91:fa:f6:25:1b:
4b:a3:0c:83:b7:3e:a6:ed:a4:e0:38:d1:99:17:be:
13:9b:0b:a3:1f:85:28:93:61:76:bf:a3:bb:ae:38:
2c:8c:80:0c:fe:dd:4b:88:04:9e:0f:05:aa:d9:8d:
fd:ce:c7:91:a7:6b:e0:85:53:42:95:bf:9e:7c:29:
b8:61:51:9c:5b:ac:72:17:1d:4a:4d:02:eb:96:97:
e8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CC:51:01:1A:15:05:9E:CC:3B:F7:AD:4A:06:90:B2:A3:9B:8B:2D
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:07:b8:b8:40:a2:87:41:34:da:69:01:ab:51:ee:99:89:0e:
14:40:70:3f:9c:cb:30:ba:5d:af:da:ef:cb:56:ad:44:a3:19:
1c:f2:c6:38:db:0d:86:35:71:41:5a:10:1c:6d:93:21:f1:b2:
09:d3:2a:fa:b6:e3:a6:08:5b:1a:37:93:ef:29:09:15:89:62:
14:a9:fc:11:d0:d9:7d:a7:e9:e0:fc:fe:1b:81:2e:e9:c2:c9:
35:a0:1b:af:47:4a:70:11:f9:92:7b:f4:20:5c:85:0a:b2:51:
0c:86:14:09:50:27:61:3c:aa:88:25:f8:ba:5b:16:3e:51:4c:
ba:02:7c:6d:fc:8b:c0:7e:bc:18:1d:9b:3f:52:f2:da:0b:5f:
a6:c8:ea:ca:f6:12:9c:5d:f3:eb:81:5f:d8:89:37:29:34:3a:
39:36:5a:ed:b2:b7:a5:53:81:7a:16:00:2a:2d:54:75:c2:f7:
81:7e:61:1f:45:56:e7:5a:27:a6:7c:74:a9:bd:a2:55:4f:be:
79:7e:09:f6:aa:d6:54:00:f2:6d:ee:c1:ef:4c:d7:46:23:99:
70:2c:72:26:07:78:d2:e2:f1:a0:f0:97:e5:80:08:35:9d:5c:
c5:5f:ab:b2:08:99:42:ef:64:40:62:9d:13:3e:39:ea:6f:fd:
70:20:59:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:49:00 2026 by rpki-client