Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: WkXUyP7d0x/fJr+1QCv3jP0mSls+0LNEB62iHAeSnWk=
Subject key identifier: F6:3B:A5:93:9E:30:ED:39:3E:11:14:F2:66:16:E0:3E:91:1C:34:68
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 019E2023A19D88CAB29DC87F819092C67880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 1407
Signing time: Wed 13 May 2026 07:01:06 +0000
Manifest this update: Wed 13 May 2026 07:01:06 +0000
Manifest next update: Thu 14 May 2026 07:01:06 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: 7cuX0B/oNDGyOLhM5vz2PXFGCMkz8S/gs3Mnq6/vkdA=)
2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:a1:9d:88:ca:b2:9d:c8:7f:81:90:92:c6:78:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: May 13 07:01:06 2026 GMT
Not After : May 14 07:01:06 2026 GMT
Subject: CN=f63ba5939e30ed393e1114f26616e03e911c3468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a0:ac:6a:93:db:f5:a1:74:1c:b7:ee:d5:95:
c0:be:cd:f0:1c:21:b0:5d:29:b4:d2:cf:47:04:45:
fc:be:8c:3f:50:e4:fc:ab:74:47:3d:fb:35:ee:79:
7e:93:24:e4:0e:d4:ed:8f:02:ad:35:42:6a:9b:12:
cd:ed:5e:ca:5a:7e:b0:a1:ba:ac:9d:82:76:6c:8a:
8e:20:95:bb:9a:19:b7:13:47:02:49:5a:b9:6e:29:
13:1c:e0:36:6a:54:c2:48:db:ea:a8:ab:e7:cc:d9:
57:3b:63:6c:42:06:e5:ce:75:ca:bc:ca:0d:7b:df:
cd:34:db:82:ba:3f:16:80:3f:9b:78:19:89:46:be:
7a:31:34:f0:93:2e:ef:a5:5b:02:18:2b:09:0a:41:
67:69:4f:d1:6d:92:56:5d:3c:0a:88:c3:8b:ec:9f:
7b:3d:22:e0:1f:4a:71:c8:33:f0:b5:5b:a4:b3:0c:
01:0a:32:65:a7:3e:7e:ff:13:39:12:4b:e3:dc:a5:
de:65:55:8f:48:b9:30:2b:9f:4f:df:ea:af:33:76:
24:af:72:0b:5d:de:8a:b5:54:1a:90:ac:86:09:62:
64:a7:ef:99:08:3e:05:d1:80:95:0e:8d:bf:2c:23:
d2:59:0b:9e:5f:83:ae:0d:3d:f2:69:7e:55:d1:00:
72:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3B:A5:93:9E:30:ED:39:3E:11:14:F2:66:16:E0:3E:91:1C:34:68
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:82:7b:f3:5f:88:bd:06:58:95:b7:d5:60:09:53:52:2b:3a:
69:61:a5:b4:81:b2:5f:f5:c6:ae:ee:ab:f9:66:ea:a6:8e:50:
6c:4e:bb:4c:d0:6f:d6:3a:ae:13:61:ca:ec:a6:9d:cd:48:41:
94:d1:c2:5f:ff:08:cc:0b:62:e6:d8:c1:32:76:9e:04:26:21:
a1:7f:9e:d5:55:b4:10:37:bd:f4:8f:bd:36:5a:22:9c:26:bc:
bb:43:3d:93:82:b2:a8:89:40:c2:c0:24:b6:95:e5:ac:d5:a6:
30:08:bf:92:a5:fd:b8:b1:90:1f:f5:2b:ff:97:f6:5c:40:58:
2b:85:96:a6:4d:58:a8:96:6b:fa:d4:1c:51:c6:8f:b2:25:5e:
68:f0:0c:a1:16:9d:49:8d:02:9b:55:c9:0e:b0:5c:92:8c:a1:
de:07:8e:7d:90:dd:4a:91:a5:99:ae:15:a5:45:0e:9e:d2:d0:
3b:4b:ad:9b:77:9e:7c:12:ce:7c:67:49:86:57:6b:6b:57:56:
cb:ef:e2:f2:8b:7f:4d:81:ef:c8:95:c0:86:76:c0:72:7d:c7:
11:50:a4:28:d0:30:c2:49:06:6a:6b:6a:16:7e:51:b1:6e:09:
e8:2f:88:d1:ff:24:65:4d:84:ed:6a:e3:b0:83:c7:0c:f0:be:
5e:33:77:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:51:39 2026 by rpki-client