Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
File: HyAOBxBBRee6mHap0-55Kgc2TTY.mft (raw, json)
Hash identifier: Hcm6uOHUv5RULNRpAt7fsXNcpjBAbd5m4UHu/t+2blw=
Subject key identifier: 2A:80:96:48:51:74:03:B3:A6:86:65:6B:4C:E9:67:98:BF:A3:2A:A3
Authority key identifier: 1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
Certificate issuer: /CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Certificate serial: 019DA48AC8BF04AD31B8A2AA09FFB8E49260
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
Manifest number: 05ED
Signing time: Sun 19 Apr 2026 07:00:51 +0000
Manifest this update: Sun 19 Apr 2026 07:00:51 +0000
Manifest next update: Mon 20 Apr 2026 07:00:51 +0000
Files and hashes: 1: HyAOBxBBRee6mHap0-55Kgc2TTY.crl (hash: woJWnUA7vfiLbbkD2y92zxNdRnb3Z7FlwJMvOHhgPUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:c8:bf:04:ad:31:b8:a2:aa:09:ff:b8:e4:92:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Validity
Not Before: Apr 19 07:00:51 2026 GMT
Not After : Apr 20 07:00:51 2026 GMT
Subject: CN=2a809648517403b3a686656b4ce96798bfa32aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f9:81:6a:e0:cf:96:9b:8a:89:b2:29:e2:2f:
c7:a8:eb:36:4e:a9:f4:48:4a:a5:50:63:1e:94:62:
94:52:04:75:29:08:e1:a0:36:17:b7:b3:ce:16:ba:
1c:bc:7a:de:6b:93:28:ee:0b:5c:b4:20:b6:38:ee:
8f:d1:85:f5:fd:f4:3d:44:92:38:c0:15:fe:2f:36:
39:b4:6e:98:96:d0:cf:eb:0e:40:ff:30:ba:1d:42:
db:ea:a8:e6:d7:f0:55:b3:2e:2b:0b:1a:87:f7:c5:
8a:c2:2a:20:4e:d3:91:3a:53:e7:15:2d:60:e9:e2:
a9:17:85:1b:84:09:fd:91:66:f2:86:fd:fc:8c:ca:
c8:db:fd:a0:7d:97:d5:c6:b5:29:04:ec:7e:3c:4f:
f8:0f:db:3f:59:44:31:aa:d3:38:ea:24:29:cd:35:
74:94:44:40:91:e3:fb:6e:ac:d6:d7:ff:fd:4e:22:
a1:d6:c1:d7:e6:5d:4e:54:f0:27:d7:35:00:f4:85:
c1:3e:f8:85:1a:26:5a:7f:82:cd:83:e1:69:69:bd:
e7:1d:a7:b0:c0:b8:ae:fd:95:d1:63:e7:63:f4:9c:
53:02:f7:b5:1f:fa:a7:3b:a4:81:f4:a5:89:d0:31:
90:a2:df:b6:56:11:71:07:52:7a:27:08:90:63:c3:
20:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:80:96:48:51:74:03:B3:A6:86:65:6B:4C:E9:67:98:BF:A3:2A:A3
X509v3 Authority Key Identifier:
keyid:1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:5b:29:b3:f8:33:d1:63:02:d0:dd:ef:eb:54:08:ad:59:83:
c9:92:25:cc:96:08:a7:fb:50:a0:16:6a:cb:77:c9:90:2e:07:
6d:da:1b:1f:6b:0c:a8:50:50:74:a0:22:5b:29:6b:74:25:43:
25:a7:9e:4a:23:1a:ad:c8:7b:39:f9:1a:64:fb:16:4d:72:dd:
13:67:e1:5e:46:67:6e:ee:95:0c:4f:91:f6:f2:bc:32:54:b9:
0c:f5:b3:95:eb:22:fc:9c:97:56:c7:ee:86:0a:22:fb:6d:a9:
a9:bd:21:14:f2:ab:90:6e:82:ec:e4:cc:4c:3b:e8:b1:47:6c:
f9:df:91:f8:c5:ad:5e:97:5b:99:28:1c:df:90:94:d6:c6:ad:
60:fe:3a:e1:4c:e4:62:28:24:84:9b:a0:6e:e9:1f:7e:5c:87:
d1:5f:2a:b7:d5:43:1a:9a:17:58:6a:99:84:a5:1e:50:0d:e8:
51:2c:3c:52:b2:fd:a1:44:31:60:66:e0:3a:f0:48:2d:13:40:
19:dd:cc:67:47:b4:f3:7b:de:df:3d:9d:d7:a9:32:5b:30:0f:
5b:aa:77:3f:1c:b2:4b:81:ea:c2:68:b8:ce:42:dc:4c:1a:24:
ef:c8:cc:91:99:c8:b1:6b:92:de:6c:47:0c:4a:f4:40:b5:ba:
c8:7f:16:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kisi/BK0xuKKqCf+45JJgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjAwZTA3MTA0MTQ1ZTdiYTk4NzZhOWQzZWU3OTJhMDcz
NjRkMzYwHhcNMjYwNDE5MDcwMDUxWhcNMjYwNDIwMDcwMDUxWjAzMTEwLwYDVQQD
EygyYTgwOTY0ODUxNzQwM2IzYTY4NjY1NmI0Y2U5Njc5OGJmYTMyYWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPmBauDPlpuKibIp4i/HqOs2Tqn0
SEqlUGMelGKUUgR1KQjhoDYXt7POFrocvHrea5Mo7gtctCC2OO6P0YX1/fQ9RJI4
wBX+LzY5tG6YltDP6w5A/zC6HULb6qjm1/BVsy4rCxqH98WKwiogTtOROlPnFS1g
6eKpF4UbhAn9kWbyhv38jMrI2/2gfZfVxrUpBOx+PE/4D9s/WUQxqtM46iQpzTV0
lERAkeP7bqzW1//9TiKh1sHX5l1OVPAn1zUA9IXBPviFGiZaf4LNg+Fpab3nHaew
wLiu/ZXRY+dj9JxTAve1H/qnO6SB9KWJ0DGQot+2VhFxB1J6JwiQY8MgGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCqAlkhRdAOzpoZla0zpZ5i/oyqjMB8GA1UdIwQY
MBaAFB8gDgcQQUXnuph2qdPueSoHNk02MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUt
Nzc1YTdlYzFjYTMzLzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUtNzc1YTdlYzFjYTMz
LzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANFsps/gz
0WMC0N3v61QIrVmDyZIlzJYIp/tQoBZqy3fJkC4HbdobH2sMqFBQdKAiWylrdCVD
JaeeSiMarch7OfkaZPsWTXLdE2fhXkZnbu6VDE+R9vK8MlS5DPWzlesi/JyXVsfu
hgoi+22pqb0hFPKrkG6C7OTMTDvosUds+d+R+MWtXpdbmSgc35CU1satYP464Uzk
YigkhJugbukfflyH0V8qt9VDGpoXWGqZhKUeUA3oUSw8UrL9oUQxYGbgOvBILRNA
Gd3MZ0e083ve3z2d16kyWzAPW6p3PxyyS4Hqwmi4zkLcTBok78jMkZnIsWuS3mxH
DEr0QLW6yH8Wbg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 09:44:30 2026 by rpki-client