Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: rsoqJbmHgUoqEVrvHUPMeP5mWosLVB5/okEpPhUiEdc=
Subject key identifier: 48:24:24:0C:34:6F:67:2F:EF:C8:2F:40:6E:A7:6F:9E:BE:90:47:84
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019EC0DAB460528C056B324DCC36A63E6845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 0503
Signing time: Sat 13 Jun 2026 12:00:18 +0000
Manifest this update: Sat 13 Jun 2026 12:00:18 +0000
Manifest next update: Sun 14 Jun 2026 12:00:18 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: iyuJLzmNKPZCAE2ZTCMA/8szkjo5Tnp0gqs1jlRRfbw=)
2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:da:b4:60:52:8c:05:6b:32:4d:cc:36:a6:3e:68:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Jun 13 12:00:18 2026 GMT
Not After : Jun 14 12:00:18 2026 GMT
Subject: CN=4824240c346f672fefc82f406ea76f9ebe904784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:29:be:21:e1:fe:1e:e5:54:53:4c:56:76:15:
16:96:68:ab:54:d0:b8:8b:7b:12:bb:70:fd:5c:bd:
3b:c5:a1:c1:a8:f2:64:e9:a3:58:88:ff:c3:9d:a0:
fe:34:4e:a7:3a:3b:f4:92:9e:ee:71:3a:06:e7:53:
22:96:6a:57:7a:d3:47:cc:24:c3:14:29:42:1d:73:
6d:43:bc:a6:ea:84:65:46:bd:3b:4e:dd:df:8b:2f:
93:42:37:ef:b7:e2:2f:bd:ef:31:ec:13:7f:b3:cc:
d2:26:c0:c3:41:db:7a:c6:f6:4f:28:84:c5:95:aa:
fd:eb:c8:d1:f7:3d:fc:7e:d5:6f:12:e5:fa:f7:c9:
bc:e8:27:f9:ae:fa:b6:80:db:75:a7:35:3e:05:97:
d6:80:1b:77:f8:b3:7c:7b:01:62:38:32:4a:d5:9d:
09:f3:6d:e8:90:84:a0:d8:2e:a1:e6:50:ed:00:e8:
9c:0c:77:a7:d1:40:da:be:91:62:73:4e:ae:0a:81:
79:f4:0c:53:bd:b4:1d:74:27:1c:3c:fc:e1:7c:81:
f5:a5:2d:b9:e5:10:7e:aa:03:5b:56:34:59:80:95:
4b:26:e8:99:73:4d:e9:d6:63:de:66:00:b4:a2:e5:
fd:97:d3:ae:32:18:e5:3e:e0:b0:78:c3:8e:1b:bf:
41:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:24:24:0C:34:6F:67:2F:EF:C8:2F:40:6E:A7:6F:9E:BE:90:47:84
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:14:d6:b6:d3:d7:35:ee:5d:5f:5d:a1:0b:2a:1a:72:04:10:
43:4b:d9:b7:37:b0:6b:7f:b5:80:6d:76:e6:9b:ab:ba:74:67:
b7:b7:f4:5a:5d:eb:9f:de:50:da:7b:33:d9:a4:1f:ba:1e:65:
e7:8c:c3:62:3c:9d:fb:c8:ec:65:c3:7c:46:ad:22:7b:95:71:
b9:57:b9:5a:4f:29:76:ac:10:33:64:a2:69:a7:1d:d1:22:7b:
e3:cb:90:0f:e9:7d:18:89:d7:91:c2:4c:3b:38:83:b6:25:6e:
1e:97:8e:1c:f2:67:20:0c:ad:c5:28:85:0c:2b:16:23:6c:87:
99:43:6e:bb:bb:4d:d5:c2:52:a5:50:2c:c2:37:54:d6:db:03:
b6:7c:54:d7:cd:ee:87:25:26:2f:5d:7b:69:b7:1f:c1:26:0b:
60:a3:74:a1:3c:6b:6d:c4:8c:44:f2:0c:a2:b8:11:19:70:f9:
3e:83:62:6d:e7:69:bf:67:97:61:cc:ec:65:5b:c4:5c:16:3e:
46:01:0d:9a:2e:97:fa:64:60:56:db:bd:a2:19:a1:cf:c3:79:
55:38:33:8e:87:d7:05:ec:5f:66:9f:59:30:cb:54:64:e5:85:
c0:85:f3:cc:dd:72:50:7b:9b:9e:6e:25:eb:c8:3d:00:03:bb:
29:6c:7e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:55:14 2026 by rpki-client