Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: DwRg/4Z4y88Mz2ry7vv0BWIkTWFXR76/0D9ksJKivow=
Subject key identifier: B0:6C:D1:44:60:37:E7:ED:D2:EB:C9:EA:52:65:66:69:E9:D1:EF:A6
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 019EC44B234484EFE570C2339930375405D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 145C
Signing time: Sun 14 Jun 2026 04:01:58 +0000
Manifest this update: Sun 14 Jun 2026 04:01:58 +0000
Manifest next update: Mon 15 Jun 2026 04:01:58 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: oetJlYY0QQ0Qxk+RIM2RbiBaEaJQoyaULKhDHxJ4A6w=)
2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:4b:23:44:84:ef:e5:70:c2:33:99:30:37:54:05:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Jun 14 04:01:58 2026 GMT
Not After : Jun 15 04:01:58 2026 GMT
Subject: CN=b06cd1446037e7edd2ebc9ea52656669e9d1efa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:69:c3:72:35:f5:4b:17:66:38:49:0d:11:fd:
a5:19:6d:ad:b0:2b:59:a3:6d:ff:80:73:24:d8:e9:
38:6b:d1:04:04:bb:05:95:52:9a:ff:f0:53:8e:c8:
ee:b4:aa:10:42:87:05:32:a2:ca:08:37:ef:85:69:
26:5b:71:13:2f:a5:14:e8:28:db:fe:70:f2:51:f0:
c2:d7:3d:be:d0:72:e4:68:ed:b8:a7:8b:28:55:a9:
76:78:01:cf:58:85:70:01:16:35:bb:6e:37:94:8e:
5e:27:92:b0:df:ef:7b:2f:c8:72:7a:75:11:f9:ee:
e4:ab:1f:57:b2:1c:62:57:fa:ac:a6:e5:af:d3:4a:
6b:77:45:b3:10:03:c7:31:ac:d6:d8:c3:59:80:16:
8a:7b:7f:96:2d:ae:d1:84:84:15:37:d9:e4:db:63:
ba:c4:fc:6f:e1:53:40:a8:4a:9b:0a:a7:fe:2c:37:
4c:70:1d:64:21:ec:10:a7:65:b8:91:98:cc:ec:67:
9f:1e:eb:28:02:12:96:db:91:96:c1:0e:04:02:9d:
e7:b2:52:0f:12:a8:a8:57:41:79:bb:13:f2:e2:01:
80:6a:8c:06:d4:48:fc:7d:4a:4f:74:67:7b:1a:af:
13:2d:28:23:41:0b:a9:be:47:3c:bc:39:88:48:1f:
c4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:6C:D1:44:60:37:E7:ED:D2:EB:C9:EA:52:65:66:69:E9:D1:EF:A6
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:23:2f:86:e8:99:93:1e:6e:bb:0f:9a:02:86:c9:11:7e:eb:
0d:d2:27:28:c7:0b:2a:b9:95:74:30:94:f2:5c:55:c2:95:bf:
24:b9:b0:91:f7:c6:66:cf:c0:bc:09:af:10:80:cf:62:c1:6f:
b3:1e:2b:ed:42:e3:ad:76:13:61:a0:12:f7:f1:2a:08:7b:a3:
eb:b0:ad:ee:c8:a8:9b:e8:5a:69:c5:d5:35:7c:c4:46:9a:0d:
c7:66:a4:0b:ea:79:b4:bd:e0:69:3f:59:48:50:41:42:b5:79:
af:fd:84:78:86:6b:3b:41:de:0e:8c:a1:ca:a9:a0:2d:51:ab:
ba:41:47:e3:55:a8:36:81:a5:e4:ea:f2:ab:84:62:cc:cb:a4:
19:aa:32:83:2a:5d:3e:d1:1c:c7:5f:26:3d:48:fe:e1:2b:3d:
3c:c2:ec:f1:9c:4a:74:6d:49:01:ec:71:b6:51:a1:cf:70:30:
52:5c:37:2c:80:3b:75:5f:10:ef:72:6c:30:d3:fc:34:b1:95:
67:b1:70:6f:1e:93:25:39:1e:e9:67:46:6f:c9:32:90:e5:7f:
2c:9a:23:70:60:81:bb:40:da:9a:6a:b8:db:bd:3f:0a:ae:df:
1d:1b:00:43:35:a4:9c:5d:e3:70:c6:ff:3a:ea:7b:a0:c7:c5:
20:4d:67:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 09:56:53 2026 by rpki-client