Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json)
Hash identifier: 5tLePZMVCwmdKDUYk00ovqrbal4V5b3udCpp55UMQF8=
Subject key identifier: 98:90:17:25:A1:A9:B3:DF:1C:07:96:39:47:C9:4D:78:1D:47:7D:B2
Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Certificate serial: 019D9A3F01B8AF92D4E29FD1B99E20442FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
Manifest number: 0444
Signing time: Fri 17 Apr 2026 07:01:53 +0000
Manifest this update: Fri 17 Apr 2026 07:01:53 +0000
Manifest next update: Sat 18 Apr 2026 07:01:53 +0000
Files and hashes: 1: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: 6KiUb0xTBqAzX1/DixoztzxnCkuQkQAjZeYalDX1Dm8=)
2: emamOYQH7VSgnUMUP8mvfhqm5dQ.roa (hash: MSxhtnoAd2af3qlANifc6U+2SnTTVeaXrUw3+bcJ3Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3f:01:b8:af:92:d4:e2:9f:d1:b9:9e:20:44:2f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Validity
Not Before: Apr 17 07:01:53 2026 GMT
Not After : Apr 18 07:01:53 2026 GMT
Subject: CN=98901725a1a9b3df1c07963947c94d781d477db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9f:63:2a:70:09:b1:ed:bb:7d:fd:b3:a7:17:
e3:de:01:e3:25:d1:2b:5a:00:96:8c:53:68:ec:d3:
8c:59:3f:a9:1f:2f:35:71:ab:d2:af:57:96:39:09:
c8:35:2e:66:15:50:7c:78:5d:87:f5:a6:63:e8:cc:
7f:bb:89:ef:a0:a1:1b:c1:05:9b:e9:0b:9d:11:08:
0c:2e:c8:8c:8e:24:d0:92:eb:8a:65:e8:c0:63:78:
74:7e:ab:bd:7b:b4:96:4f:96:6c:85:9f:78:83:ee:
3e:90:75:d3:7d:e4:05:ec:17:1f:e4:46:77:05:84:
d5:06:db:c0:08:44:89:6b:da:7f:06:60:69:fa:77:
9d:b3:12:96:87:7d:a4:ea:bd:b0:73:b3:68:a0:eb:
7a:42:5f:29:57:2e:3d:5b:16:5b:86:27:13:db:fe:
c8:e2:76:81:81:f9:c2:49:30:30:ff:b3:5c:2f:b2:
4e:10:72:dc:1e:7d:9b:1c:5b:a0:37:e4:c9:8f:ea:
a9:36:81:f2:43:83:41:f0:f9:85:ee:fc:18:c1:2f:
af:ab:da:fb:5a:77:1e:6b:47:06:ae:f3:70:d4:b2:
eb:87:4f:58:5b:2c:03:91:a6:76:27:a5:56:09:66:
22:ed:4c:0a:e7:2a:86:fe:57:55:76:47:ed:51:4c:
1b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:90:17:25:A1:A9:B3:DF:1C:07:96:39:47:C9:4D:78:1D:47:7D:B2
X509v3 Authority Key Identifier:
keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:16:99:03:64:3c:b2:0e:5a:cf:9f:f7:80:7a:08:be:ca:fd:
9e:6a:3a:5b:3f:2f:1c:13:ed:28:4f:db:71:6b:d2:c8:7e:d7:
ae:24:6e:a5:00:6a:24:e1:c2:f3:eb:71:95:82:26:d0:ef:04:
88:55:37:df:07:80:43:f7:91:b7:83:1e:9c:54:49:da:ab:32:
89:f3:ce:aa:32:50:13:07:91:21:a2:ef:f4:cc:ca:65:f4:27:
8f:42:1d:28:04:98:b4:56:99:77:ae:f3:71:ee:ba:b9:44:1f:
5d:e9:d8:0d:78:0c:2e:1d:d8:99:24:5e:76:ed:14:15:fe:1a:
d9:5f:0f:b8:fc:ba:80:c9:c1:1a:7c:57:d4:c0:95:b1:b9:34:
68:d4:12:8f:93:cc:55:55:a9:18:09:66:b2:22:28:d3:f4:b8:
50:3e:b4:d6:6d:4c:32:63:4f:ce:61:2c:ea:a0:dd:a0:22:ac:
22:02:4a:d5:ca:fc:01:dd:6b:d5:f7:df:d6:c7:10:23:8c:6e:
a4:d0:52:9c:39:c3:6b:eb:1c:be:8b:dc:d1:79:e9:db:8a:94:
65:89:47:8c:bb:8b:79:f2:32:79:f4:d1:3f:97:29:6f:63:ab:
1e:3d:96:e4:fb:c3:e5:84:57:bf:f5:6d:6d:70:20:a7:64:14:
08:7e:d1:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aPwG4r5LU4p/RuZ4gRC/JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNWNiMDk4Y2Y2ZjdmYjY4YTE4MWFlY2RhOGVhMzhlNjRj
NWFjOWQwHhcNMjYwNDE3MDcwMTUzWhcNMjYwNDE4MDcwMTUzWjAzMTEwLwYDVQQD
Eyg5ODkwMTcyNWExYTliM2RmMWMwNzk2Mzk0N2M5NGQ3ODFkNDc3ZGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJ9jKnAJse27ff2zpxfj3gHjJdEr
WgCWjFNo7NOMWT+pHy81cavSr1eWOQnINS5mFVB8eF2H9aZj6Mx/u4nvoKEbwQWb
6QudEQgMLsiMjiTQkuuKZejAY3h0fqu9e7SWT5ZshZ94g+4+kHXTfeQF7Bcf5EZ3
BYTVBtvACESJa9p/BmBp+nedsxKWh32k6r2wc7NooOt6Ql8pVy49WxZbhicT2/7I
4naBgfnCSTAw/7NcL7JOEHLcHn2bHFugN+TJj+qpNoHyQ4NB8PmF7vwYwS+vq9r7
Wncea0cGrvNw1LLrh09YWywDkaZ2J6VWCWYi7UwK5yqG/ldVdkftUUwb/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJiQFyWhqbPfHAeWOUfJTXgdR32yMB8GA1UdIwQY
MBaAFB1csJjPb3+2ihga7NqOo45kxaydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFZ5d21NOXZmN2FLR0JyczJvNmpqbVRGckowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zZDgxMjctNDRkZS00MDdiLTk0OTkt
ZDZhNDMzMTlhYTIxLzEvSFZ5d21NOXZmN2FLR0JyczJvNmpqbVRGckowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8zZDgxMjctNDRkZS00MDdiLTk0OTktZDZhNDMzMTlhYTIx
LzEvSFZ5d21NOXZmN2FLR0JyczJvNmpqbVRGckowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaBaZA2Q8
sg5az5/3gHoIvsr9nmo6Wz8vHBPtKE/bcWvSyH7XriRupQBqJOHC8+txlYIm0O8E
iFU33weAQ/eRt4MenFRJ2qsyifPOqjJQEweRIaLv9MzKZfQnj0IdKASYtFaZd67z
ce66uUQfXenYDXgMLh3YmSRedu0UFf4a2V8PuPy6gMnBGnxX1MCVsbk0aNQSj5PM
VVWpGAlmsiIo0/S4UD601m1MMmNPzmEs6qDdoCKsIgJK1cr8Ad1r1fff1scQI4xu
pNBSnDnDa+scvovc0Xnp24qUZYlHjLuLefIyefTRP5cpb2OrHj2W5PvD5YRXv/Vt
bXAgp2QUCH7RtQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:08:22 2026 by rpki-client