Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: U7qQtdy6mmYjyZYk8PoMYBW+0HGTR2JfdZ8//uYc0pE=
Subject key identifier: 74:E7:97:EE:B1:DD:2C:B0:C9:7B:1E:88:7B:C1:75:24:AD:23:E0:46
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 019CACB4918AF1E902394F8114D87F16E192
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 160B
Signing time: Mon 02 Mar 2026 04:00:40 +0000
Manifest this update: Mon 02 Mar 2026 04:00:40 +0000
Manifest next update: Tue 03 Mar 2026 04:00:40 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: jF/hXl5bXvpOciQghHq8WMY98lIeJ15lV4KiM7t7mDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:91:8a:f1:e9:02:39:4f:81:14:d8:7f:16:e1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: Mar 2 04:00:40 2026 GMT
Not After : Mar 3 04:00:40 2026 GMT
Subject: CN=74e797eeb1dd2cb0c97b1e887bc17524ad23e046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5a:b1:ef:bd:f0:57:19:1f:3d:d2:ce:88:db:
51:70:32:22:93:1e:7c:eb:0d:03:96:7b:99:37:ab:
f1:a1:49:2b:99:cb:9b:06:0e:24:0e:89:df:6d:60:
26:06:da:05:44:75:f1:82:9f:46:08:95:31:36:b7:
43:3e:d0:79:04:6a:43:b0:6b:dc:39:65:25:51:04:
dd:46:25:38:44:d7:4b:f3:9e:ad:f4:2f:20:95:68:
68:53:42:dd:f3:5e:45:1d:a3:4f:1a:d7:a9:14:a6:
03:04:24:bd:8f:98:02:9a:93:5b:25:96:a3:40:2f:
3a:e0:fa:aa:88:14:3b:df:79:d8:b6:29:90:27:08:
f7:d1:16:cd:c1:78:b0:c0:d9:22:90:11:82:63:a8:
80:90:d3:c2:9b:d1:c6:57:6e:1d:f6:11:0b:26:9c:
f6:77:40:fa:64:90:0a:08:d4:34:bc:b9:82:b8:1a:
c0:5a:65:df:8b:9a:60:00:1b:68:71:30:3b:89:de:
40:9a:ed:07:45:73:6c:eb:8c:90:b4:52:d9:98:13:
63:31:6f:ea:c6:03:f7:41:9f:ff:e4:5f:47:02:88:
eb:d4:ac:2f:2e:5c:cf:cc:e3:db:73:76:a8:45:fb:
69:aa:cc:13:bd:d1:2e:0c:46:69:bc:2c:05:a6:97:
16:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E7:97:EE:B1:DD:2C:B0:C9:7B:1E:88:7B:C1:75:24:AD:23:E0:46
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:7b:66:65:8c:2f:11:f5:5a:75:25:a7:1c:21:a6:de:97:e8:
d7:62:41:42:e0:e9:9d:3c:96:67:9b:e2:6a:ca:20:b1:eb:c3:
90:fd:53:be:f8:0e:bb:9a:df:7d:d3:7e:ce:33:34:ba:3d:60:
52:f6:94:34:9c:de:d4:4d:8f:25:2e:e3:28:4f:92:f2:bd:be:
eb:23:03:c9:53:d3:8d:3f:15:0e:b0:f1:4d:47:a4:ce:77:96:
9f:cd:0b:40:ab:5f:c4:a5:ac:f8:d7:b7:0e:5a:2c:38:71:a2:
45:59:46:e4:25:e7:c4:c7:d0:d5:ae:c4:b2:03:5b:f4:4d:32:
33:cc:3a:72:20:a2:b7:91:fa:29:77:cf:bd:42:1c:71:ed:d5:
0c:ad:38:86:3e:8e:5e:d2:7b:41:0e:1f:3a:ae:49:a2:39:76:
42:00:3f:70:32:d7:a0:0f:27:9a:a6:97:8a:58:6a:8e:0e:f0:
a7:8e:38:ce:04:7e:18:46:d2:2d:ee:88:63:33:19:ab:ce:d4:
86:00:11:1d:aa:5a:f5:36:7e:81:2f:75:ce:77:ea:52:bc:f4:
ae:a2:93:a3:21:92:56:ca:30:3d:8b:98:ea:75:f1:e7:04:e5:
76:11:67:7a:2f:f4:a5:94:ba:27:89:ba:87:7c:30:99:ee:b4:
3d:52:a4:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:13:15 2026 by rpki-client