Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: qrieVaAuwsIUcOVeoxRaGqosGKVb1l1Fe2UEBmbPUOQ=
Subject key identifier: 70:2E:5B:73:EA:E5:7F:1D:08:41:DE:0E:50:25:14:BD:58:CE:BD:54
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019DA4F92EA6CAAB4DC19C72674D81845386
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 0470
Signing time: Sun 19 Apr 2026 09:01:26 +0000
Manifest this update: Sun 19 Apr 2026 09:01:26 +0000
Manifest next update: Mon 20 Apr 2026 09:01:26 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: 5StCn/DLhQ22ao3Bwd9Vdscx++CJJtyo27yP2Frv5Hg=)
2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f9:2e:a6:ca:ab:4d:c1:9c:72:67:4d:81:84:53:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Apr 19 09:01:26 2026 GMT
Not After : Apr 20 09:01:26 2026 GMT
Subject: CN=702e5b73eae57f1d0841de0e502514bd58cebd54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4c:a8:4b:15:96:e6:2e:fd:bb:42:d4:7f:42:
2c:32:26:e5:c3:27:89:9c:ef:07:ef:ac:b2:20:4f:
4f:45:97:88:36:f5:58:96:14:b1:76:d2:29:b7:78:
fc:77:91:ad:59:b7:2d:e2:d6:20:9b:a5:54:df:11:
f8:59:f1:4f:54:a1:fc:04:31:84:fd:2f:66:57:1c:
39:8c:8d:d4:dc:8e:89:31:56:cb:cd:75:35:4f:1d:
c7:71:35:ac:59:a8:b7:37:13:a1:3e:26:4c:fe:f8:
de:c9:c5:77:66:41:18:ea:53:18:e0:19:02:e5:d4:
fa:39:7f:09:80:50:45:91:f0:48:7a:d8:a4:32:e3:
b2:df:4a:6d:7a:f0:1a:ca:e7:66:d3:b5:66:7e:47:
7d:19:a1:af:7c:41:9f:c1:b9:f8:c6:af:d8:0b:a2:
21:51:24:e0:fd:e0:28:6d:1a:83:f9:87:06:3f:84:
fd:fd:2a:be:47:0e:06:21:05:a6:f1:d4:6c:39:88:
08:af:e3:50:42:61:24:c7:ec:5b:5e:53:6b:44:fa:
40:3d:00:f7:4c:48:95:2e:58:35:c5:1c:00:fc:de:
13:6b:37:c9:1a:0f:cf:6b:93:07:ff:94:d2:c5:25:
4c:2e:c9:95:d4:65:cf:74:f1:ac:68:88:81:64:00:
fe:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2E:5B:73:EA:E5:7F:1D:08:41:DE:0E:50:25:14:BD:58:CE:BD:54
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:fd:e4:91:8f:40:36:89:66:03:40:84:96:fe:b5:af:53:dd:
44:d6:46:a0:6a:8e:e3:20:f2:be:23:17:2c:a1:da:3c:13:af:
28:8b:c4:24:21:53:67:34:39:c7:e5:7b:08:82:65:9d:d0:0a:
9b:18:d7:58:6d:bb:52:ad:17:e6:f9:83:a1:d4:e6:34:ac:84:
67:1a:8f:04:7e:8f:37:f1:9c:9d:3e:10:fe:5c:58:df:7e:a3:
9d:ec:57:aa:c6:88:d5:d6:47:18:12:e9:95:d1:82:97:5c:2a:
6a:80:cf:43:cb:6c:fc:e6:82:6f:eb:55:ff:cb:1e:c5:0a:3e:
14:82:ed:54:39:50:99:ef:28:d8:80:ea:ea:c8:f2:bf:d1:7f:
06:67:59:a5:9c:68:b0:f5:d1:22:08:66:85:c8:14:a7:31:29:
71:a4:94:fb:10:f4:ec:a6:3b:70:e7:c3:f3:b9:45:b5:62:ff:
05:eb:8f:03:95:61:a5:07:0d:eb:4a:c4:ca:bf:b8:2f:19:9b:
8e:6b:a2:5f:47:fd:ff:d7:a5:c0:0a:f2:7e:57:8b:06:94:15:
d0:42:1a:1d:ae:1a:e4:a2:36:5f:37:e6:34:4a:0c:b5:dd:85:
90:05:70:f5:5f:5b:8c:3f:83:8a:da:a9:11:72:e9:6e:8f:95:
74:db:d7:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:50:09 2026 by rpki-client