Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: QPRItWcda/EgtqS7rf4WVBJA78gYBgusU1kGLCrUF2w=
Subject key identifier: AC:9C:12:F8:90:A5:63:CB:EA:4B:6D:57:43:6F:C9:79:3B:43:D9:74
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019D34893D640A395E42D68C7FFE51846E24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 1013
Signing time: Sat 28 Mar 2026 13:01:42 +0000
Manifest this update: Sat 28 Mar 2026 13:01:42 +0000
Manifest next update: Sun 29 Mar 2026 13:01:42 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: Yp2ZyglZnPNylLzad6O06egO3sAhkAKwNBSefhErywo=)
2: WgW7_1NWoWpm4jNdRh3wAV6b-iQ.roa (hash: VRgHLs3EnvMZ31H9FL0qZ2OCVPVRz1uxVc4Bjt1PMc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:89:3d:64:0a:39:5e:42:d6:8c:7f:fe:51:84:6e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Mar 28 13:01:42 2026 GMT
Not After : Mar 29 13:01:42 2026 GMT
Subject: CN=ac9c12f890a563cbea4b6d57436fc9793b43d974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:ee:a1:82:c4:e2:ad:cd:04:65:ee:b5:cf:
91:d8:35:ef:a5:c8:fc:f2:f3:c8:69:70:d4:c3:2c:
6b:08:a6:c0:31:8a:3f:a7:ad:13:72:0c:0a:ab:69:
0c:df:29:2d:84:80:13:76:b8:11:69:bf:e2:a8:a0:
ce:02:92:68:70:77:6a:b4:cb:82:9a:c2:ad:ee:fc:
e0:af:4c:f3:74:78:73:5b:ad:f2:ee:92:38:ee:fb:
54:5c:fe:fc:86:e5:22:bf:1f:13:66:19:e8:0c:55:
a9:fb:25:98:44:78:1b:24:a6:22:c8:ec:fe:ce:9d:
52:c7:67:8e:e8:30:90:ed:c9:8a:7f:84:12:e1:87:
f8:15:68:92:8d:08:1e:73:b3:c9:5e:f1:68:c8:b4:
b7:10:1c:0c:b8:b5:73:0c:b6:94:e8:d8:ad:15:e9:
d7:6a:5c:4c:e9:55:d3:04:20:03:44:10:c3:e7:f8:
bd:d8:8c:0d:a4:a7:07:0b:fb:7e:dc:ca:51:c2:c5:
62:09:b8:dc:8f:e7:e0:8d:b5:da:22:ca:09:20:92:
0b:95:11:56:79:63:b3:d0:54:08:4b:fe:51:a4:18:
c8:ec:0a:3f:ba:2b:4a:d0:93:e7:68:5f:c9:a5:59:
5f:8d:16:33:d5:5c:cf:f9:57:9e:36:56:c2:7b:b0:
cf:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9C:12:F8:90:A5:63:CB:EA:4B:6D:57:43:6F:C9:79:3B:43:D9:74
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:2a:e0:68:0b:3e:b0:9d:7c:96:5a:8b:3d:a0:6c:15:7d:8a:
fe:45:01:05:7b:9c:91:d9:d4:17:d5:cc:c8:24:ce:95:83:20:
9b:e6:8e:af:aa:e4:36:6a:56:c8:07:bc:53:86:b2:33:1a:38:
4a:19:8b:dd:6a:c5:98:f6:69:29:38:29:20:04:8b:ea:02:8f:
d5:41:2f:6c:ca:a1:72:c0:21:aa:9f:3f:f2:e9:b0:28:1d:41:
65:e2:cf:5d:03:e4:81:77:ef:2a:4b:6d:7b:0c:cb:49:48:d0:
bd:5c:67:c2:d4:cb:c3:5c:71:60:37:74:f6:cd:f7:5c:d4:1a:
ee:7f:50:7d:e9:f7:e9:2d:e6:34:6c:55:83:da:cc:4f:2b:50:
ad:5d:f5:a9:e1:8e:e8:a6:ec:88:b4:ce:32:a8:a2:bd:c2:dc:
3f:ac:37:bb:c4:03:c4:70:df:3d:b9:8b:52:9a:05:14:da:f5:
e5:5c:0c:1e:6c:fb:68:df:59:8e:d5:fc:d2:4b:df:d0:b7:93:
73:93:6f:3f:15:22:7f:6e:e7:c5:df:a2:41:c6:e8:e5:27:27:
e3:f1:c0:95:ed:47:21:4f:b2:1f:4b:3b:9e:57:7d:96:d7:f9:
c1:40:84:a5:02:0e:57:0e:93:2d:de:d8:f7:f9:c0:f4:c1:3e:
01:86:9d:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ00iT1kCjleQtaMf/5RhG4kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNTcxZTJiZGI0MTEyZWM1ZDZiM2E2NGJiMTdiZjBiMjgw
ZmU2ZTEwHhcNMjYwMzI4MTMwMTQyWhcNMjYwMzI5MTMwMTQyWjAzMTEwLwYDVQQD
EyhhYzljMTJmODkwYTU2M2NiZWE0YjZkNTc0MzZmYzk3OTNiNDNkOTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKTuoYLE4q3NBGXutc+R2DXvpcj8
8vPIaXDUwyxrCKbAMYo/p60TcgwKq2kM3ykthIATdrgRab/iqKDOApJocHdqtMuC
msKt7vzgr0zzdHhzW63y7pI47vtUXP78huUivx8TZhnoDFWp+yWYRHgbJKYiyOz+
zp1Sx2eO6DCQ7cmKf4QS4Yf4FWiSjQgec7PJXvFoyLS3EBwMuLVzDLaU6NitFenX
alxM6VXTBCADRBDD5/i92IwNpKcHC/t+3MpRwsViCbjcj+fgjbXaIsoJIJILlRFW
eWOz0FQIS/5RpBjI7Ao/uitK0JPnaF/JpVlfjRYz1VzP+VeeNlbCe7DP6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKycEviQpWPL6kttV0NvyXk7Q9l0MB8GA1UdIwQY
MBaAFB1XHivbQRLsXWs6ZLsXvwsoD+bhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUt
ZGIyNTcyZGFjYjQ1LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUtZGIyNTcyZGFjYjQ1
LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACyrgaAs+
sJ18llqLPaBsFX2K/kUBBXuckdnUF9XMyCTOlYMgm+aOr6rkNmpWyAe8U4ayMxo4
ShmL3WrFmPZpKTgpIASL6gKP1UEvbMqhcsAhqp8/8umwKB1BZeLPXQPkgXfvKktt
ewzLSUjQvVxnwtTLw1xxYDd09s33XNQa7n9Qfen36S3mNGxVg9rMTytQrV31qeGO
6KbsiLTOMqiivcLcP6w3u8QDxHDfPbmLUpoFFNr15VwMHmz7aN9ZjtX80kvf0LeT
c5NvPxUif27nxd+iQcbo5Scn4/HAle1HIU+yH0s7nld9ltf5wUCEpQIOVw6TLd7Y
9/nA9ME+AYadcg==
-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:01 2026 by rpki-client