Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
File: HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft (raw, json)
Hash identifier: RON9tUUYBH0mW0BiUxg6jcXA4QNZif+J0wSqmMbvlJw=
Subject key identifier: CB:29:70:3E:E7:9F:91:BD:EB:74:D1:61:DD:37:82:BF:36:35:FC:DC
Authority key identifier: 1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
Certificate issuer: /CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Certificate serial: 019DA4C18B66EBDDC924C8B42BC14C73E499
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
Manifest number: 1822
Signing time: Sun 19 Apr 2026 08:00:40 +0000
Manifest this update: Sun 19 Apr 2026 08:00:40 +0000
Manifest next update: Mon 20 Apr 2026 08:00:40 +0000
Files and hashes: 1: 0UjAR0lwkfGnKW_I34st30o5zcY.roa (hash: SaYOr18FPTLyjkppn6MTCghoM1FqQpX991KVnAvsKI4=)
2: HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl (hash: lM8M92TmAxDteCD5EddPSKje187C4kxr2BmyhX84I3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:c1:8b:66:eb:dd:c9:24:c8:b4:2b:c1:4c:73:e4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c
Validity
Not Before: Apr 19 08:00:40 2026 GMT
Not After : Apr 20 08:00:40 2026 GMT
Subject: CN=cb29703ee79f91bdeb74d161dd3782bf3635fcdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:38:df:10:51:41:7c:ef:be:21:89:54:3b:d8:
95:ec:fe:e0:d9:df:15:24:f0:63:1e:7f:23:d8:04:
e5:90:ad:13:e5:ab:5b:10:1c:3a:5e:cb:8a:26:6c:
56:60:30:46:66:26:d2:b8:98:7a:fc:20:fc:0e:fd:
1e:38:2d:58:0f:14:9b:03:11:a8:54:e6:be:98:8f:
e4:16:d2:ef:6f:bb:4b:5d:1b:14:8e:71:e6:34:be:
11:8c:4e:4b:54:d8:fd:20:b5:a9:d6:57:7d:27:31:
a9:59:b2:f4:9c:e0:ea:51:49:77:0b:72:f3:df:9e:
79:17:dc:67:20:8c:47:c7:b2:11:87:67:b6:82:19:
46:15:4d:30:b6:8c:23:fb:93:2a:8e:3a:f9:0e:d7:
01:cf:6b:f4:e0:f7:ae:fa:30:ce:06:4e:bf:8e:a2:
bc:ef:93:71:fb:ed:cf:9b:d5:f7:44:33:a5:a9:f8:
f0:81:fa:e2:d0:f7:e2:fd:e8:35:0d:ae:1a:44:01:
a3:a1:36:f3:26:e6:8b:7c:a0:f6:25:c7:52:08:87:
a9:5b:8c:41:e1:11:bb:45:1a:e6:a3:89:b2:99:08:
f3:0f:fc:a7:0d:aa:f2:72:f6:1e:78:c2:a4:54:3f:
37:65:78:99:ef:64:03:3e:64:75:c8:be:a7:62:3e:
eb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:29:70:3E:E7:9F:91:BD:EB:74:D1:61:DD:37:82:BF:36:35:FC:DC
X509v3 Authority Key Identifier:
keyid:1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:12:53:c8:cc:29:1d:36:b7:f8:3c:1a:c8:91:8c:fd:90:1f:
27:e7:c6:34:57:ea:cf:de:2a:4a:b8:f2:3e:b5:14:e3:fb:e4:
ec:7f:b0:a7:9f:91:de:c6:47:fa:fa:de:ad:75:9b:c3:c6:72:
ae:58:c6:1e:2e:26:c8:30:aa:18:6d:46:c8:8e:f1:cd:d5:93:
48:f7:25:d6:ee:8f:0d:d4:ad:bc:58:2a:78:a9:4e:61:ed:12:
2e:87:51:8e:f7:9a:52:fa:d3:9f:ee:5f:c2:1f:3c:b2:33:2d:
dd:b9:f9:f5:c1:b1:e6:3a:87:76:37:fa:b9:d5:c1:0c:9b:15:
72:c0:ad:3e:04:c2:a6:29:b4:d2:36:f9:0f:92:e7:ba:34:30:
48:7a:8d:ad:57:bd:e1:06:fa:3d:0e:ea:0c:b9:d4:a8:f4:38:
ad:3d:1a:35:1a:d5:da:2b:a1:3d:20:50:5a:15:05:b9:5e:c6:
92:72:de:f3:3b:a5:c4:a3:f2:ed:7e:28:f7:14:6d:79:1d:6e:
01:a5:27:16:a5:fa:79:d9:c6:09:a2:f9:b3:5e:81:9d:f9:47:
33:27:19:4e:64:6d:14:e1:e4:99:94:9c:7b:73:4b:ed:e1:92:
db:7f:c3:fa:03:3c:1f:36:83:45:ef:6b:21:77:19:ab:db:a6:
96:44:52:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:30:19 2026 by rpki-client