Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: KW+5XZy3DBv7/mjIan1J4tK4LhQsg1dnIgvV+3hKMFU=
Subject key identifier: 12:75:EF:95:F4:57:D3:73:99:10:6A:77:60:47:08:0A:E0:DC:78:98
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019D2C98508A40D1804A5789377A5EE0A9E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 049F
Signing time: Fri 27 Mar 2026 00:01:12 +0000
Manifest this update: Fri 27 Mar 2026 00:01:12 +0000
Manifest next update: Sat 28 Mar 2026 00:01:12 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: d2T7PEBL4oke5Vixf7rb3Vr5j8Z81LPCSMr2Jc/+yuE=)
2: dyF34pZ8GCNuzl4YTk3EiPwDm3c.roa (hash: m2G1ChPDfy1n+0PrTlF39X/Rm+KnLUW3QVpj1zhgqDI=)
3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 00:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:98:50:8a:40:d1:80:4a:57:89:37:7a:5e:e0:a9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Mar 27 00:01:12 2026 GMT
Not After : Mar 28 00:01:12 2026 GMT
Subject: CN=1275ef95f457d37399106a776047080ae0dc7898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:88:cb:b9:d2:f1:1f:7c:62:36:53:02:c4:36:
d4:f9:a6:5e:10:c6:90:ee:ec:65:29:e0:22:b4:c4:
11:77:54:af:47:46:b9:6e:aa:1f:ef:1f:e9:9c:9b:
7e:82:50:7f:3e:ed:ad:3c:f4:67:30:88:c4:62:56:
39:2f:bc:85:37:99:93:19:dd:23:11:9a:ae:fd:b6:
e3:d7:1a:9c:b9:9e:af:32:3a:fd:f5:11:d8:a8:cd:
6a:b3:a8:1e:20:57:78:4f:02:c6:25:02:ce:1a:67:
15:c9:52:0f:97:41:44:3c:b1:47:1b:ea:5d:33:c9:
db:9a:ec:f9:a3:74:38:7d:9f:65:79:e4:87:05:99:
39:af:6b:b1:b6:ba:bd:47:26:51:04:a7:50:4b:fd:
9d:a9:54:51:c5:a8:62:ae:0f:79:dc:e9:ee:05:f1:
65:64:ff:a5:13:7c:0e:77:da:e9:58:f7:22:0a:d4:
a8:8e:ad:6f:3e:b7:ac:bb:51:f1:98:c3:87:29:77:
73:ae:17:0d:72:bf:90:32:39:49:34:a9:24:fd:f9:
5f:ff:a5:f6:3c:19:27:7c:11:b8:a4:68:d1:41:d2:
76:d7:0e:d5:db:33:91:10:2c:60:91:1d:8d:c3:ec:
85:62:d2:af:29:01:79:03:e7:3e:e0:4a:c7:db:99:
3e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:75:EF:95:F4:57:D3:73:99:10:6A:77:60:47:08:0A:E0:DC:78:98
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:ae:7b:9c:91:df:e5:f6:d7:01:33:18:bc:81:98:0e:7b:4b:
b1:19:4b:34:f4:2c:ec:cf:4d:2a:43:43:4d:73:9a:37:f0:a2:
cd:3c:7b:5b:8e:fd:35:4e:95:98:a3:45:db:49:df:ae:27:4c:
92:f9:bc:09:12:1b:6f:58:f8:33:87:33:b8:af:23:81:bb:d5:
89:b1:82:2c:7e:3f:89:89:1d:9a:95:eb:e9:da:9c:b3:d6:a1:
a2:7f:25:d2:af:a6:9b:f3:c8:6f:0a:c1:e4:45:61:3f:4f:69:
30:c5:11:0f:9d:ce:0b:e3:c3:72:84:2f:6b:db:cd:54:0e:3c:
ca:a6:2e:05:f3:d0:e5:01:90:0b:b8:9f:4d:5e:5c:6b:26:c3:
69:df:ab:80:c1:b9:56:f1:69:74:b7:5f:f5:9c:73:38:06:75:
2c:e3:14:5b:21:3d:19:b3:f9:62:e1:cc:c7:26:01:12:40:7a:
dd:2c:75:ae:81:60:7a:b6:f4:c7:c9:fb:e9:ea:2f:49:1f:76:
88:3b:3f:81:b0:94:49:63:6d:8f:2f:13:bc:bd:9b:9d:e2:8b:
bf:d8:dd:9a:ab:4b:01:e1:c2:63:0d:80:f8:94:f6:7b:f7:cb:
5b:2f:e3:e9:63:b2:be:31:40:72:db:cc:89:41:59:9e:95:a4:
78:1d:74:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0smFCKQNGASleJN3pe4KnkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkOGU4ZGY1YzAzMTEwNzExOGRhNjFmMjlhYjRmNDE5ZDI5
ZDVhOGEwHhcNMjYwMzI3MDAwMTEyWhcNMjYwMzI4MDAwMTEyWjAzMTEwLwYDVQQD
EygxMjc1ZWY5NWY0NTdkMzczOTkxMDZhNzc2MDQ3MDgwYWUwZGM3ODk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4jLudLxH3xiNlMCxDbU+aZeEMaQ
7uxlKeAitMQRd1SvR0a5bqof7x/pnJt+glB/Pu2tPPRnMIjEYlY5L7yFN5mTGd0j
EZqu/bbj1xqcuZ6vMjr99RHYqM1qs6geIFd4TwLGJQLOGmcVyVIPl0FEPLFHG+pd
M8nbmuz5o3Q4fZ9leeSHBZk5r2uxtrq9RyZRBKdQS/2dqVRRxahirg953OnuBfFl
ZP+lE3wOd9rpWPciCtSojq1vPresu1HxmMOHKXdzrhcNcr+QMjlJNKkk/flf/6X2
PBknfBG4pGjRQdJ21w7V2zORECxgkR2Nw+yFYtKvKQF5A+c+4ErH25k+rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBJ175X0V9NzmRBqd2BHCArg3HiYMB8GA1UdIwQY
MBaAFB2OjfXAMRBxGNph8pq09BnSnVqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUt
YjFkMzhiMTNmZGE5LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUtYjFkMzhiMTNmZGE5
LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJq57nJHf
5fbXATMYvIGYDntLsRlLNPQs7M9NKkNDTXOaN/CizTx7W479NU6VmKNF20nfridM
kvm8CRIbb1j4M4czuK8jgbvVibGCLH4/iYkdmpXr6dqcs9ahon8l0q+mm/PIbwrB
5EVhP09pMMURD53OC+PDcoQva9vNVA48yqYuBfPQ5QGQC7ifTV5caybDad+rgMG5
VvFpdLdf9ZxzOAZ1LOMUWyE9GbP5YuHMxyYBEkB63Sx1roFgerb0x8n76eovSR92
iDs/gbCUSWNtjy8TvL2bneKLv9jdmqtLAeHCYw2A+JT2e/fLWy/j6WOyvjFActvM
iUFZnpWkeB10KA==
-----END CERTIFICATE-----
Generated at Fri Mar 27 07:48:04 2026 by rpki-client