Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
File: HDP7O3JSC4FpopKNU4LknWda0GA.mft (raw, json)
Hash identifier: Vddo4oeG8ynUDbsMopSjbTZAkwvdcv+gipiTUTF3Gis=
Subject key identifier: 36:19:39:08:A6:5B:D5:65:39:2B:F4:D4:53:17:0D:54:A0:0A:91:75
Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Certificate serial: 019E1EA3CDF308ED0AF9DBD2AE4482F8E440
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
Manifest number: 16B4
Signing time: Wed 13 May 2026 00:01:51 +0000
Manifest this update: Wed 13 May 2026 00:01:51 +0000
Manifest next update: Thu 14 May 2026 00:01:51 +0000
Files and hashes: 1: Gy7ZxbulJ_7Y0tx78zpcZAOHO2I.roa (hash: 8PQOWmSZ9/1/Et2ot0KAAdAS2aYMSpPnN0AQzm11bWE=)
2: HDP7O3JSC4FpopKNU4LknWda0GA.crl (hash: XMgYtTRwOZuAA3WHYQc1ri8hRxkclJI6pJF9ySGuNtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 00:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:cd:f3:08:ed:0a:f9:db:d2:ae:44:82:f8:e4:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Validity
Not Before: May 13 00:01:51 2026 GMT
Not After : May 14 00:01:51 2026 GMT
Subject: CN=36193908a65bd565392bf4d453170d54a00a9175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ab:eb:52:ba:3c:66:6b:51:78:e5:29:2d:7a:
40:94:00:c5:88:9e:3a:b6:9a:4f:52:1f:49:01:8c:
70:3c:ef:25:48:e2:1f:47:5e:2f:35:90:35:3a:0a:
12:18:2b:65:4d:f5:3b:0b:6e:32:0c:e0:71:0b:76:
08:6e:10:d6:74:48:a6:00:f2:71:e6:6f:0b:db:4b:
24:63:78:58:48:49:19:2c:a7:ad:ed:a8:98:e9:61:
30:d1:f2:d9:01:2a:63:60:b6:7d:eb:cb:26:f9:22:
fc:d9:b2:ec:56:6f:ea:1b:08:c6:4e:96:19:b7:87:
97:6c:b0:b5:6c:da:0b:32:4e:c5:50:92:69:49:c2:
7c:ba:df:d8:56:b0:15:67:14:8c:a9:51:f8:82:65:
f5:73:6f:c1:e6:7e:19:77:19:c7:69:ba:7f:82:2c:
bc:57:99:bd:27:77:43:d5:2f:64:42:53:5a:78:13:
03:11:a3:c0:f2:98:83:1e:e3:48:0b:7f:bb:e1:d0:
9b:1b:2d:5c:3a:08:71:3d:08:96:ac:2f:d5:29:24:
ad:a7:9e:5c:34:5e:63:e4:de:4c:53:1a:4f:7b:8d:
a2:e5:8c:ab:69:6a:49:19:67:e3:4c:0c:aa:38:c9:
fb:85:15:8f:0f:53:fe:23:81:b2:04:9c:4c:22:74:
9f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:19:39:08:A6:5B:D5:65:39:2B:F4:D4:53:17:0D:54:A0:0A:91:75
X509v3 Authority Key Identifier:
keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:4c:eb:3d:5a:35:05:3f:3e:42:3a:cf:08:d0:02:18:25:50:
ac:d6:8e:1e:4d:cd:1a:e0:1c:d4:73:ca:8c:ab:2e:66:38:5d:
30:56:39:f7:3f:68:60:05:5b:4b:cc:11:2f:b4:66:bd:b1:f1:
6c:0a:b3:2b:a1:e4:7d:4c:9f:c7:c8:57:ac:7a:2c:e1:2f:44:
75:1d:36:5e:46:45:74:e1:24:67:aa:3a:60:2b:f2:fb:57:75:
bf:e7:3e:6a:3d:46:55:1b:d8:fd:db:0b:83:c6:3c:24:75:e0:
f6:c1:6f:98:a0:53:7d:f0:5c:31:5f:73:9e:92:56:d1:f7:88:
26:1a:68:ee:15:fd:65:35:70:75:8e:c2:98:6a:62:63:d4:14:
c3:09:7c:96:46:88:40:37:8e:5f:96:7f:c7:45:75:ad:55:43:
8b:fe:a7:f0:2f:5f:67:61:5e:9c:d7:03:ee:c9:6a:26:48:43:
60:18:1f:33:d8:9a:21:7f:b9:7c:50:1e:d6:54:86:b7:6f:47:
0c:8c:e0:2a:3f:9e:0f:76:4a:68:93:f7:99:08:9d:2d:11:18:
8b:5a:a0:90:88:0c:52:cf:79:8c:f3:f1:c2:c2:89:05:49:90:
cb:42:f6:7f:a8:58:0e:ad:5c:0f:93:e5:c7:07:8a:e4:92:45:
9a:fe:db:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eo83zCO0K+dvSrkSC+ORAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMzNmYjNiNzI1MjBiODE2OWEyOTI4ZDUzODJlNDlkNjc1
YWQwNjAwHhcNMjYwNTEzMDAwMTUxWhcNMjYwNTE0MDAwMTUxWjAzMTEwLwYDVQQD
EygzNjE5MzkwOGE2NWJkNTY1MzkyYmY0ZDQ1MzE3MGQ1NGEwMGE5MTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6vrUro8ZmtReOUpLXpAlADFiJ46
tppPUh9JAYxwPO8lSOIfR14vNZA1OgoSGCtlTfU7C24yDOBxC3YIbhDWdEimAPJx
5m8L20skY3hYSEkZLKet7aiY6WEw0fLZASpjYLZ968sm+SL82bLsVm/qGwjGTpYZ
t4eXbLC1bNoLMk7FUJJpScJ8ut/YVrAVZxSMqVH4gmX1c2/B5n4ZdxnHabp/giy8
V5m9J3dD1S9kQlNaeBMDEaPA8piDHuNIC3+74dCbGy1cOghxPQiWrC/VKSStp55c
NF5j5N5MUxpPe42i5YyraWpJGWfjTAyqOMn7hRWPD1P+I4GyBJxMInSfswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDYZOQimW9VlOSv01FMXDVSgCpF1MB8GA1UdIwQY
MBaAFBwz+ztyUguBaaKSjVOC5J1nWtBgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MjFlOWUtNTI0My00ZDIwLWI0NDct
OTUwNDU1ODY4MDJlLzEvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS80MjFlOWUtNTI0My00ZDIwLWI0NDctOTUwNDU1ODY4MDJl
LzEvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg0zrPVo1
BT8+QjrPCNACGCVQrNaOHk3NGuAc1HPKjKsuZjhdMFY59z9oYAVbS8wRL7RmvbHx
bAqzK6HkfUyfx8hXrHos4S9EdR02XkZFdOEkZ6o6YCvy+1d1v+c+aj1GVRvY/dsL
g8Y8JHXg9sFvmKBTffBcMV9znpJW0feIJhpo7hX9ZTVwdY7CmGpiY9QUwwl8lkaI
QDeOX5Z/x0V1rVVDi/6n8C9fZ2FenNcD7slqJkhDYBgfM9iaIX+5fFAe1lSGt29H
DIzgKj+eD3ZKaJP3mQidLREYi1qgkIgMUs95jPPxwsKJBUmQy0L2f6hYDq1cD5Pl
xweK5JJFmv7bDQ==
-----END CERTIFICATE-----
Generated at Wed May 13 11:13:41 2026 by rpki-client