Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
File: hUwNsAZYRNlZTf6N2O_XftHkk_g.mft (raw, json)
Hash identifier: erFdC/hKsQ0tzthst/jqSVudGfbseHKArUYwmgfI2cQ=
Subject key identifier: 3F:AE:E3:E9:68:E4:46:1B:16:C8:80:38:89:6D:EC:B2:C7:6F:05:B2
Authority key identifier: 85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
Certificate issuer: /CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Certificate serial: 019D9A3DDF4FAA902A6C7EFA97FF39EB6E56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 07:00:39 +0000
Manifest this update: Fri 17 Apr 2026 07:00:39 +0000
Manifest next update: Sat 18 Apr 2026 07:00:39 +0000
Files and hashes: 1: DB-kubcDSriQvnabeDogJ7LkMfM.roa (hash: XGoLRb9s7HKmX6rpBYGsBJA5idHvV3yS22+b7xVn/rY=)
2: hUwNsAZYRNlZTf6N2O_XftHkk_g.crl (hash: hDcWfO+QRo4JRAyfqD7ZcO+KKT+0Xac8EEacyf+Sgow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3d:df:4f:aa:90:2a:6c:7e:fa:97:ff:39:eb:6e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Validity
Not Before: Apr 17 07:00:39 2026 GMT
Not After : Apr 18 07:00:39 2026 GMT
Subject: CN=3faee3e968e4461b16c88038896decb2c76f05b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:93:4d:1b:e5:88:f5:75:c2:d1:9a:7c:ca:43:
df:c0:d2:26:47:d8:55:a6:29:4e:6e:d7:fb:5b:d1:
07:60:fc:41:96:d4:f3:79:fc:d3:05:ce:1d:81:7c:
b6:f4:50:5d:29:44:b8:41:db:5e:85:0c:9d:04:6a:
01:d1:c8:52:a3:9b:74:73:23:e8:b6:d9:01:62:00:
dc:b1:6e:bf:c4:fa:c3:1e:67:a8:dc:53:60:19:41:
c7:80:74:13:7e:eb:eb:47:8d:0d:7d:2a:9c:bb:fd:
81:81:48:ea:90:df:d3:ae:c6:ff:e7:5b:56:61:16:
16:f0:d0:97:b4:f4:5b:81:af:af:22:33:b7:c3:69:
bb:ae:42:c3:b5:65:e7:8f:95:7c:c2:21:d0:3f:66:
4e:8b:84:4c:78:ed:c0:44:fe:d0:50:90:fd:e3:70:
b2:8a:3e:76:b2:0c:26:0c:06:41:20:fc:74:77:1e:
9d:78:0f:b6:28:3a:2f:80:a9:7a:d2:6a:df:8e:1d:
3f:10:62:0e:0a:c1:45:7b:13:5c:ca:a7:78:9d:ce:
2c:1f:a9:b8:be:65:67:e0:23:81:c8:d6:23:15:d3:
91:c9:d7:3a:7f:63:96:80:03:5c:59:d4:30:95:ef:
ff:c7:a1:bd:f9:7a:b2:4c:b9:89:21:49:7e:2c:4f:
c9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AE:E3:E9:68:E4:46:1B:16:C8:80:38:89:6D:EC:B2:C7:6F:05:B2
X509v3 Authority Key Identifier:
keyid:85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:06:b9:e3:99:26:ac:4b:e7:9b:b2:4f:77:8b:a6:d9:5f:e6:
c0:a6:67:01:a2:98:2d:2b:38:7c:83:cb:26:50:57:cb:f1:df:
1c:93:65:d4:da:ce:a6:4b:9f:49:84:04:08:fa:df:71:c3:cf:
4c:65:ae:6e:40:98:9b:34:d5:da:2d:fb:7d:53:b6:40:3d:95:
cc:6c:5b:47:05:00:34:66:9c:8e:95:67:25:0d:5d:ab:76:e8:
73:75:61:a9:69:6c:5d:9a:92:ec:33:68:d1:8e:5f:bc:ae:eb:
f4:38:67:32:52:6b:b2:2c:83:62:ce:34:8f:42:4c:42:66:5f:
47:2c:39:3a:92:bf:c6:f5:2b:1e:e4:fd:ff:07:4f:2c:ce:fc:
51:c0:82:e1:4d:8f:06:d5:b5:b8:56:e2:17:c3:ef:f6:a9:cd:
11:06:14:1c:05:01:7a:2a:0e:75:e3:98:de:20:90:b8:0b:ac:
e6:b9:09:73:91:09:6d:82:d1:e4:a9:0a:2a:93:a7:bf:8a:62:
30:1e:96:56:49:4e:cc:0e:cb:3c:09:fd:66:74:ab:d4:cf:24:
95:e6:ae:8b:aa:6d:08:ae:d2:51:5a:fd:18:a2:cc:f3:f3:71:
0b:56:92:93:47:31:6d:cd:30:17:10:29:a0:5a:60:5b:88:67:
e9:17:77:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:01:02 2026 by rpki-client