Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: OMZh9cobjhQm8iHL+SZIhNHDlsCaholCkof0wYEFiIg=
Subject key identifier: A4:95:83:A6:F3:EF:6C:33:9E:46:A6:C9:F5:46:95:00:B5:1C:B3:FD
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019E1CB4F92B6AB3BBB4EDA9D5A751A722A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 04AE
Signing time: Tue 12 May 2026 15:01:22 +0000
Manifest this update: Tue 12 May 2026 15:01:22 +0000
Manifest next update: Wed 13 May 2026 15:01:22 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: 81iHvKyMl+5QdvoM9L6QhWmGW5L7oURH5ilrI9yosCc=)
2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:f9:2b:6a:b3:bb:b4:ed:a9:d5:a7:51:a7:22:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: May 12 15:01:22 2026 GMT
Not After : May 13 15:01:22 2026 GMT
Subject: CN=a49583a6f3ef6c339e46a6c9f5469500b51cb3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f6:fc:09:49:b1:85:5e:65:90:79:a2:75:13:
bd:8f:c5:44:57:c8:ac:fa:f3:ce:90:00:e0:50:4a:
31:92:02:31:70:0f:0e:33:c9:20:92:a2:ba:df:6d:
d6:a3:0a:d6:0c:14:ba:4a:2a:b1:52:3d:bd:da:89:
c1:30:a6:59:09:e6:14:e3:55:47:35:00:c5:db:c3:
bf:36:6f:9a:bf:5d:3f:ec:ad:aa:c4:c5:8f:1d:16:
55:2b:bf:7f:36:40:6a:3d:87:6a:12:91:db:f2:58:
08:94:41:5c:af:4a:43:7d:0b:e0:d4:a0:24:de:4d:
00:a2:18:ae:23:e5:ec:21:1c:d4:8c:2c:c1:91:00:
0c:33:3c:d0:ad:38:7b:c7:ab:8b:ae:5d:8a:72:d7:
06:b1:9d:8e:6f:22:c2:8a:50:0f:db:bb:b3:16:2c:
44:52:55:2e:85:12:5b:15:5d:2e:d0:a8:19:5d:7e:
f9:39:16:a6:19:98:05:cd:61:8b:5c:dd:a6:eb:f0:
48:de:57:97:24:4e:f8:27:c4:f8:9e:e2:69:f2:fd:
39:38:af:82:38:4e:ca:89:a6:08:cd:a4:6f:27:a2:
62:5f:82:2f:20:aa:1b:ea:59:a0:44:46:95:b8:df:
8b:ea:5c:e2:81:3a:3f:a6:a5:d3:8e:6c:cc:30:c0:
27:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:95:83:A6:F3:EF:6C:33:9E:46:A6:C9:F5:46:95:00:B5:1C:B3:FD
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:30:60:c8:1d:9f:d6:dd:01:04:f4:14:eb:b7:89:5a:28:59:
6a:23:fd:cf:e9:8a:1f:95:b7:80:22:f7:64:0e:69:8f:48:ab:
f6:b4:03:ef:e0:5f:d2:87:cd:0f:67:9a:b5:fc:df:7f:19:a0:
03:e9:3e:25:ee:d3:f9:03:36:8b:b0:09:7e:13:15:02:d8:eb:
22:67:86:50:de:73:f0:d5:2d:f7:5f:9a:d0:a8:6d:12:10:6d:
1a:10:3d:cf:81:98:dd:f5:bf:14:69:0f:5a:81:0c:be:78:9c:
e2:11:35:42:f2:cb:83:d5:f6:de:ed:43:c6:f5:22:e2:b3:8d:
d3:3b:80:1b:df:83:0b:23:b5:cd:d9:5a:30:96:e7:54:d6:36:
a1:e0:3f:e5:6f:81:4d:e3:6b:56:d1:0c:fa:e5:8b:33:38:e0:
30:61:e8:85:88:5d:33:6c:67:36:4f:38:3e:e6:2f:f2:95:54:
73:a0:0d:f9:05:f3:50:72:f2:14:c2:e5:4b:76:a8:e0:2a:5b:
58:0c:d6:4a:4a:f2:ae:3d:c2:cd:ca:2d:a7:df:f3:38:32:34:
e4:de:01:18:d5:7e:ee:22:ab:28:64:da:cd:3f:cf:75:53:ce:
0f:6a:04:f5:c0:ba:ed:cb:d0:3c:c0:45:cf:9d:3f:af:39:31:
e0:99:c2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:59:09 2026 by rpki-client