Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: qCgIgZEQSZ1VM7zL4gX4HAY7EbqcOXLhe33m5+zTjeM=
Subject key identifier: 6D:3B:51:6B:28:22:A7:05:AB:D1:88:96:64:5E:E5:3E:6D:7E:0E:9D
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 019D284D5427318A4C150D6B62234D292E1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 164B
Signing time: Thu 26 Mar 2026 04:00:49 +0000
Manifest this update: Thu 26 Mar 2026 04:00:49 +0000
Manifest next update: Fri 27 Mar 2026 04:00:49 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: If9L2QGPx5ZwANhwbc6pWEajeSHU7Vk2cpn7o9ynqm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:54:27:31:8a:4c:15:0d:6b:62:23:4d:29:2e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: Mar 26 04:00:49 2026 GMT
Not After : Mar 27 04:00:49 2026 GMT
Subject: CN=6d3b516b2822a705abd18896645ee53e6d7e0e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8b:81:74:7f:12:2d:6b:2f:59:44:29:41:bb:
0a:de:c3:15:82:15:fb:21:d3:57:71:82:65:d2:17:
70:c9:cf:b8:34:9a:5d:d5:34:96:50:2d:b3:1c:17:
dc:7c:69:ab:ca:39:db:55:77:bc:22:8d:93:55:bb:
a0:40:2c:4d:a6:11:94:7f:94:e4:ab:52:00:84:ff:
c0:61:0a:63:8b:66:c9:80:36:a2:4c:32:3a:76:cb:
e4:00:27:10:b0:14:9c:3b:16:01:5f:01:ee:c1:c8:
36:d4:bd:a9:a4:89:e8:62:f1:93:09:81:02:ff:b4:
26:52:56:b1:10:1b:45:f0:87:d9:6f:35:0f:a0:87:
5c:c3:79:df:d8:9f:ff:fd:68:6f:97:ea:ea:dd:24:
65:b8:ba:9f:31:31:37:a1:0b:cb:1a:b0:5f:0e:0e:
0a:63:48:b2:f5:af:03:f7:de:f4:31:5e:dc:3c:0b:
01:59:a7:9f:a0:e8:f3:6b:25:4c:c5:b1:26:cc:7f:
bb:31:07:11:fc:75:b1:03:4c:cf:f7:8e:37:e1:d3:
a7:d0:02:4b:49:0f:14:40:95:97:d1:f4:11:77:18:
f7:bc:00:a9:da:4b:56:b1:77:46:84:ed:98:24:b6:
cd:8d:5d:d1:17:38:60:df:fd:49:d9:ab:99:62:81:
0f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3B:51:6B:28:22:A7:05:AB:D1:88:96:64:5E:E5:3E:6D:7E:0E:9D
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:9d:3e:ef:d3:1c:dd:8f:c3:aa:30:ac:cc:eb:28:54:c5:9d:
bd:16:ef:20:05:66:29:e4:af:9e:d3:de:79:37:68:a5:d5:fd:
b1:ad:6c:c2:82:5b:ee:6a:0f:71:12:b0:18:24:79:01:35:c3:
b0:a4:2f:e7:dd:e7:0e:f2:ab:c4:ba:a9:db:52:ed:7e:45:2f:
23:c6:7a:4b:23:3e:7d:2b:26:50:10:87:66:32:69:c0:17:ae:
60:cd:6d:da:24:54:44:a4:57:7c:dd:60:a7:76:74:6e:f9:bb:
c3:22:65:f2:30:d4:a8:6a:c9:b5:1e:1d:13:68:b8:fa:35:ce:
a5:ab:a0:b8:e7:5f:2d:7d:b5:4e:a7:af:25:4f:f1:1f:65:87:
e3:99:1f:57:61:44:d4:d2:f7:41:bf:26:1c:fa:5f:a4:70:7d:
05:2b:dc:4a:a7:70:98:9a:1d:96:ba:49:46:4c:e3:a5:ea:1a:
59:5f:a5:36:02:4b:9f:94:af:da:78:dc:49:35:f5:dc:17:c6:
db:68:d3:59:0b:80:3f:cc:04:e4:94:7b:92:7f:c1:1d:d3:93:
d9:a9:00:60:41:ee:cc:82:a2:20:bf:c8:8a:ff:dc:ec:f0:38:
e8:f9:a5:5d:ba:67:e2:24:db:b8:8c:a9:b0:8d:9a:1d:46:a6:
6e:83:c3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:23:20 2026 by rpki-client