Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier: o3+Mw6da/aZGQm9YW9o4VQ3cwA4/DuZX+30aXGXdXhM=
Subject key identifier: 22:22:F7:32:83:97:95:8C:B4:1B:AC:B9:08:EF:3C:B5:4F:B7:0C:C7
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial: 019E1C7DE201D49C497FB7427A8D92BEDDE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number: 151D
Signing time: Tue 12 May 2026 14:01:12 +0000
Manifest this update: Tue 12 May 2026 14:01:12 +0000
Manifest next update: Wed 13 May 2026 14:01:12 +0000
Files and hashes: 1: FMHMs5u6nqIr6z09yDsjzYxfks8.roa (hash: cXOK9Ev2UNFSti3Tqnxxgi2cL3wHqDi6S1Qe8D5ON6A=)
2: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: I/ngdrWJdGBjKsKiwZfvfPLNhpBx1ZMUybpHypAKxLU=)
3: SgzTZO7h0qw0lQtLCLQDxdwtTHc.asa (hash: YpjRapR2fvquPrVNxyf5Ct4ddLeyNJ16sV02TNO6WCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:e2:01:d4:9c:49:7f:b7:42:7a:8d:92:be:dd:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
Validity
Not Before: May 12 14:01:12 2026 GMT
Not After : May 13 14:01:12 2026 GMT
Subject: CN=2222f7328397958cb41bacb908ef3cb54fb70cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:03:fb:cd:dd:f7:9c:18:c4:14:ce:62:9f:10:
db:c4:4a:70:e4:8f:8d:f6:72:67:42:62:f4:d3:61:
91:40:1a:54:ff:41:14:e9:7b:f1:9f:6c:bb:2f:d1:
79:49:89:4b:a8:e6:ac:62:6d:35:37:d8:c6:e6:94:
f4:65:26:cf:35:0b:19:ba:70:77:75:71:d2:cb:a6:
a0:d5:57:8a:00:cd:9f:f8:9c:a5:5a:4f:f0:2e:e0:
36:fc:9c:5f:51:66:86:eb:b3:55:e1:63:d1:ea:47:
ed:29:4a:60:2f:8b:c4:67:d5:ca:5a:27:f0:be:58:
41:71:e4:fb:d5:ee:dd:26:0a:69:a9:da:89:09:55:
b8:9a:c1:54:9c:c7:b8:58:60:3a:41:b6:48:88:c5:
e4:fd:fe:fd:79:c9:8b:fd:56:17:cb:e9:ab:40:5f:
c0:51:ca:10:b5:29:f1:ea:3f:48:e7:0b:22:0f:a6:
83:f6:f0:21:25:e4:e3:20:85:2a:a0:55:0b:cb:97:
24:1b:02:64:69:9b:9e:1f:e9:59:f9:8f:bc:84:ef:
d4:57:65:dd:7a:a9:b9:ad:5b:37:62:34:de:dc:16:
3e:6e:03:77:19:21:7b:e5:63:0a:a1:5f:ca:f7:6e:
aa:4f:66:38:52:29:8d:ae:9f:1c:6d:40:16:fb:a7:
90:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:22:F7:32:83:97:95:8C:B4:1B:AC:B9:08:EF:3C:B5:4F:B7:0C:C7
X509v3 Authority Key Identifier:
keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:48:51:94:a8:9b:be:21:04:4c:b1:83:a4:ed:15:78:e1:51:
c0:8b:c5:75:b3:4b:f3:46:ab:92:76:da:4f:a4:19:40:b0:4f:
90:50:b1:db:88:8b:d5:17:d5:00:54:56:f4:5a:51:c6:70:3e:
a9:85:b4:87:aa:ea:05:71:0c:2e:b9:1a:d1:8f:66:10:cf:92:
6d:d3:f7:27:3f:8a:c1:67:e6:17:99:d3:59:eb:b2:38:65:52:
79:6e:57:cd:d6:ae:d0:56:7f:6b:c6:cd:1c:c9:bc:f4:67:cb:
5b:84:79:6e:e2:07:2f:a1:87:c3:0a:3f:60:52:37:9c:1b:40:
19:0b:2e:3e:73:71:ec:d6:bb:b2:f8:1a:e5:d7:b9:9a:57:51:
98:2e:14:cc:4a:b5:12:3f:17:39:a1:70:9a:ae:e9:f7:e8:9e:
b0:b4:75:4b:77:ce:67:2b:82:f2:91:5e:01:51:f2:a0:9c:bb:
79:ec:7b:86:17:69:c1:cb:98:07:21:35:f2:11:9f:b3:49:df:
4e:51:8c:a1:8a:76:b3:61:9b:e6:38:5b:61:0e:b9:69:a1:e4:
41:5e:38:6d:09:00:88:6a:42:8a:1a:50:51:09:72:b9:cf:1a:
87:12:e6:08:af:5e:d8:19:b4:9e:00:c1:25:9f:dc:6b:4f:a7:
3e:22:39:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:50:15 2026 by rpki-client