Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
File: H0qus-K3pD3wHzHVGiDvIlXOr-M.mft (raw, json)
Hash identifier: FLvIfFRHuXtozrc0D/083jC+dgcsaa2mbrH5FnHEuZU=
Subject key identifier: BC:EE:5B:FB:BF:0F:9C:99:32:5F:03:36:DE:36:4A:6D:A2:FF:72:DF
Authority key identifier: 1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3
Certificate issuer: /CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
Certificate serial: 019D98F51DE9B935BE8F0642EB33F65BA530
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
Manifest number: 0762
Signing time: Fri 17 Apr 2026 01:01:33 +0000
Manifest this update: Fri 17 Apr 2026 01:01:33 +0000
Manifest next update: Sat 18 Apr 2026 01:01:33 +0000
Files and hashes: 1: H0qus-K3pD3wHzHVGiDvIlXOr-M.crl (hash: UCWRq0kgpzsZ4NMfTxiS074fzdYFpwneb9Ke0AdLWC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:1d:e9:b9:35:be:8f:06:42:eb:33:f6:5b:a5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
Validity
Not Before: Apr 17 01:01:33 2026 GMT
Not After : Apr 18 01:01:33 2026 GMT
Subject: CN=bcee5bfbbf0f9c99325f0336de364a6da2ff72df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:da:8f:05:b6:9a:b9:6e:a4:f9:36:fb:ed:3e:
33:2a:db:77:fe:93:c6:75:be:f4:7b:3f:76:ea:5d:
6e:d1:06:00:60:66:38:98:7a:38:9f:d4:36:55:28:
0a:39:3e:83:2b:b6:6b:ce:af:47:fa:8c:41:54:a9:
c4:d1:7f:04:ac:2a:e6:60:d1:0f:fc:c0:cd:b5:f1:
16:ec:ab:44:d7:50:89:24:c4:b1:70:46:1f:85:38:
98:ff:bd:bd:79:f7:5b:a0:55:38:c5:85:09:42:d5:
c9:27:97:9d:b9:c8:1b:ef:8b:72:cc:d9:28:da:b8:
2d:c3:99:5d:7e:93:07:9f:b9:66:6e:d7:13:9f:78:
34:1f:4e:2b:74:64:28:d3:4d:c3:68:3b:ee:ce:a2:
1e:21:c7:92:03:91:6c:63:45:e5:34:de:0f:dc:53:
67:c6:71:b2:0c:75:8e:db:4c:e6:d6:dd:0f:12:b4:
36:ee:3b:4d:e5:bb:97:41:a8:78:e2:a2:33:5a:59:
3b:71:9b:d4:4a:45:9e:95:4f:f5:46:51:9c:9c:3f:
84:f9:72:25:58:e7:4d:b1:09:c7:1b:bd:58:aa:4a:
2f:43:f6:68:98:76:6e:82:0d:a4:9a:ba:89:40:a2:
a6:2f:a4:e3:0c:35:9c:d2:c3:aa:b4:8b:5f:80:e4:
dd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:EE:5B:FB:BF:0F:9C:99:32:5F:03:36:DE:36:4A:6D:A2:FF:72:DF
X509v3 Authority Key Identifier:
keyid:1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:12:3c:c4:a5:22:f0:d8:c1:bd:1f:4e:15:9a:73:c9:1b:10:
86:d2:ba:e5:33:7c:ae:12:ec:d7:18:e2:6b:12:e0:84:55:41:
cc:40:ae:9e:01:19:52:be:a6:5c:05:1d:9c:c5:b9:b3:ec:a6:
99:f9:51:2d:2a:75:8d:18:55:00:2d:9a:a9:5a:fc:28:9d:50:
79:c1:50:d2:b1:c3:ba:1a:f8:8e:8f:6e:ae:b6:fb:7c:91:e1:
26:e3:35:43:38:f4:00:3e:26:62:31:0b:39:a8:5d:75:40:f0:
d8:ea:11:78:61:70:82:27:e6:d5:1d:be:31:7c:62:e3:aa:1b:
51:04:dc:70:7f:ef:05:bd:d2:f1:f9:0c:c1:ea:c7:25:77:e6:
36:bc:66:2d:4e:fd:ea:af:ae:60:1b:8d:b0:a7:e3:c2:5b:5b:
bd:4c:7a:60:63:31:46:4d:c2:8f:4f:0f:9b:36:f2:07:0c:4a:
a2:98:7e:37:c7:e6:db:1d:0c:da:3c:f5:29:9c:f1:0c:a0:f5:
80:5a:45:97:29:8f:6c:d8:96:07:1a:61:95:f1:81:e7:23:86:
8a:35:8d:9f:33:b1:bb:e0:25:ce:7c:49:df:42:a8:6c:c4:8b:
bd:ab:1c:e2:c9:ab:4b:a8:df:d9:54:6f:fc:d1:bb:7c:ea:84:
ed:0d:36:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:05:05 2026 by rpki-client