Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: 4jV5qSx/nPlxMIPzSHLeAE9aVJ5JVbxUnrVrf7uHY3w=
Subject key identifier: 1A:C1:E7:75:D3:77:5A:E2:C3:A2:4B:AE:37:58:53:54:B5:D1:C4:BC
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 019D9886B0948EB80C678ED03711E086F25A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 18D0
Signing time: Thu 16 Apr 2026 23:00:56 +0000
Manifest this update: Thu 16 Apr 2026 23:00:56 +0000
Manifest next update: Fri 17 Apr 2026 23:00:56 +0000
Files and hashes: 1: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: vwl8yZxxQn4RPL3QjG+TkalPLgP0dVwMQU39XS2tBbw=)
2: bDrj-tZkqPqGj2uPI5o7mN3ny5k.roa (hash: WctHj8uUD5EoOkvtFB0q+2ZJ4vqUF2yl3XDa913n+Fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:b0:94:8e:b8:0c:67:8e:d0:37:11:e0:86:f2:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Apr 16 23:00:56 2026 GMT
Not After : Apr 17 23:00:56 2026 GMT
Subject: CN=1ac1e775d3775ae2c3a24bae37585354b5d1c4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:84:dc:98:37:5b:78:ee:57:6d:d1:d3:21:83:
e4:61:59:70:6f:a8:30:28:c0:a6:e9:d4:5d:86:6e:
86:82:b8:ac:d6:f9:b6:45:50:cb:85:a9:2c:64:7f:
8b:97:0a:09:85:21:5c:d2:c6:1b:c2:6e:b7:ed:61:
bf:84:7a:04:55:91:32:0d:ba:ca:88:ba:e1:aa:d5:
b8:51:29:a5:24:7c:03:5d:96:a0:d1:54:28:f9:e9:
90:3d:4b:d1:96:a3:86:86:02:97:5e:4d:9b:12:b7:
dc:b1:42:fd:b0:32:39:50:f1:29:dc:fc:2c:ff:da:
b4:5b:66:8d:32:87:e9:a3:43:e9:0e:c8:5a:28:6b:
0e:72:40:53:cd:0e:be:11:5c:64:95:e2:6e:e6:3a:
93:a1:0b:49:02:9e:50:69:ad:8e:a4:c1:8f:84:6f:
7e:38:02:5b:80:34:ce:39:9b:54:00:02:cb:8c:d3:
fd:d2:54:f5:0b:03:62:a7:75:34:70:ee:68:e1:01:
f3:a2:8a:4c:a7:22:8c:ea:00:4f:8e:12:67:c5:5d:
c7:45:d1:ef:4a:f2:e3:b7:80:3e:f1:73:70:7f:a2:
9e:a1:4e:44:61:f5:92:73:95:97:f7:81:38:e7:a6:
21:98:fa:1f:60:3c:71:37:42:39:00:36:b7:66:61:
57:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C1:E7:75:D3:77:5A:E2:C3:A2:4B:AE:37:58:53:54:B5:D1:C4:BC
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:0c:b9:74:94:a5:81:df:7b:59:dc:78:1c:03:97:a2:b3:15:
28:c0:2f:1c:ed:48:d7:01:a2:8c:a9:26:11:f3:01:1c:1d:9d:
a7:22:46:2d:83:56:07:65:a1:5a:d9:bf:d0:7d:84:2d:a0:0d:
de:08:f0:71:e3:c1:dd:af:cd:de:5c:9d:e5:07:ec:8a:cf:74:
a2:84:78:b4:34:a1:1b:56:6d:8f:12:22:a5:96:30:5f:d6:ef:
95:ca:3c:0b:27:6a:b5:70:3a:49:2f:b8:a5:29:69:5a:27:ce:
9d:11:6f:41:63:4b:6c:95:fc:66:51:8c:c9:f4:03:af:a4:78:
12:0d:10:08:4d:4c:49:a2:46:7d:e4:d5:fa:8e:67:6a:60:46:
06:85:f6:a8:eb:fa:fd:c5:4b:3b:d1:d5:c7:77:2c:c3:a4:75:
9b:1e:5a:f3:0c:45:0a:68:f1:56:55:fb:46:b7:92:5a:cf:7a:
e0:9c:0f:e7:df:17:7d:29:eb:79:a0:78:07:77:8f:56:46:96:
50:05:b6:48:89:a1:d3:b0:3b:82:ff:9d:83:75:ca:5f:09:e7:
00:60:a2:89:fb:4f:7a:54:1e:96:b3:db:db:75:09:82:d9:78:
59:14:37:1a:fd:5d:d8:6a:f2:e8:20:b5:f2:06:9c:b5:b5:ba:
c8:3f:53:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:06:03 2026 by rpki-client