Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: xv+h/oLpNyOLh27fbS27B/rN/BlWYKCzxkgrTzrEG/A=
Subject key identifier: 9B:F5:26:23:65:FC:74:90:00:B2:35:44:3D:85:06:65:E6:7D:DA:E8
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 019CAD5986D98AD1A1BC1819E79A3884B429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 1347
Signing time: Mon 02 Mar 2026 07:00:51 +0000
Manifest this update: Mon 02 Mar 2026 07:00:51 +0000
Manifest next update: Tue 03 Mar 2026 07:00:51 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: h2XfXWoC164ZqLV+Ezti2f/bqbmLyvjbH9IC+TZio7s=)
2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:86:d9:8a:d1:a1:bc:18:19:e7:9a:38:84:b4:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Mar 2 07:00:51 2026 GMT
Not After : Mar 3 07:00:51 2026 GMT
Subject: CN=9bf5262365fc749000b235443d850665e67ddae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a0:18:70:20:dc:c3:ad:b3:59:ee:94:0f:51:
cf:06:08:e7:02:90:fb:83:e4:64:d9:0f:bd:ab:96:
a5:8c:c8:d1:56:6d:62:62:3a:57:9a:14:3a:cc:c4:
34:6c:45:69:b8:5b:44:6b:27:96:9e:bb:7c:5b:a0:
d6:15:bb:25:ee:ea:65:74:42:15:45:4a:d6:31:f8:
0e:84:96:2d:7f:ac:a6:8c:0d:ab:00:29:5d:cd:a8:
c8:c6:3d:d5:8d:65:96:1a:17:86:eb:c0:f6:83:cb:
b9:0a:1e:ac:e8:c6:c9:1d:17:17:c5:ed:81:77:97:
47:5b:54:dc:a4:51:fd:be:f3:70:c1:d5:2e:25:e0:
45:f4:3e:61:21:2a:51:df:4e:70:3c:7e:07:6f:76:
23:45:b4:1f:b9:29:df:75:96:75:72:bb:e3:a6:39:
47:34:10:e5:3a:d3:29:b5:48:bb:36:47:10:d4:f7:
f7:b4:83:b5:33:2c:e0:09:72:87:54:f9:c4:fe:c3:
38:5f:10:f1:be:9c:9e:0a:5f:89:57:c1:8f:e1:02:
3c:8f:0d:b9:3a:1a:d6:71:4c:fb:f1:53:bb:d8:f7:
df:d2:6c:24:95:f6:ea:69:d9:2e:df:d8:63:a0:41:
3c:d8:7a:7e:2f:52:98:27:58:6c:ac:d3:2a:8a:df:
79:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F5:26:23:65:FC:74:90:00:B2:35:44:3D:85:06:65:E6:7D:DA:E8
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:dc:de:6b:d4:ed:78:9b:bd:a8:8d:38:98:e6:89:e2:6a:1e:
88:f3:53:0e:0a:12:68:ee:cd:ee:93:b7:4e:25:fb:ce:d0:37:
f3:1c:56:ee:7e:ce:86:9c:c0:9a:29:84:4f:af:0a:24:b7:56:
b7:a7:fb:68:5d:20:81:6b:b1:18:f1:d9:24:53:46:ef:60:23:
b8:63:dd:42:34:72:7e:9a:cf:c8:47:a4:db:52:27:4f:05:4d:
eb:9d:6b:e2:95:fb:39:cc:99:47:1f:f1:e8:3c:6a:e5:2e:7d:
b8:0c:ff:ae:70:0a:28:65:4d:56:97:35:96:b6:6d:b8:27:25:
30:a5:44:67:f2:bf:ce:6e:30:99:07:48:7f:7c:3d:23:c0:25:
d5:5f:87:63:5b:38:1f:00:16:dd:d7:e2:18:ac:57:a7:49:18:
54:77:4d:de:3c:ca:d1:9c:04:42:15:c7:48:ec:b5:82:03:09:
47:3d:d9:56:e8:ca:be:ed:d1:b6:20:40:24:63:59:92:55:9c:
e1:d7:ae:6a:b1:49:18:e2:76:cb:be:29:2e:05:db:1e:c0:b8:
e8:3e:ad:cf:ea:47:1c:7d:72:2f:46:50:7f:f3:93:15:05:93:
64:67:ec:89:35:b3:95:9f:5c:59:f2:f8:92:f0:f1:5f:79:a8:
ce:11:b8:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWYbZitGhvBgZ55o4hLQpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0
MTJmMmEwHhcNMjYwMzAyMDcwMDUxWhcNMjYwMzAzMDcwMDUxWjAzMTEwLwYDVQQD
Eyg5YmY1MjYyMzY1ZmM3NDkwMDBiMjM1NDQzZDg1MDY2NWU2N2RkYWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqAYcCDcw62zWe6UD1HPBgjnApD7
g+Rk2Q+9q5aljMjRVm1iYjpXmhQ6zMQ0bEVpuFtEayeWnrt8W6DWFbsl7upldEIV
RUrWMfgOhJYtf6ymjA2rACldzajIxj3VjWWWGheG68D2g8u5Ch6s6MbJHRcXxe2B
d5dHW1TcpFH9vvNwwdUuJeBF9D5hISpR305wPH4Hb3YjRbQfuSnfdZZ1crvjpjlH
NBDlOtMptUi7NkcQ1Pf3tIO1MyzgCXKHVPnE/sM4XxDxvpyeCl+JV8GP4QI8jw25
OhrWcUz78VO72Pff0mwklfbqadku39hjoEE82Hp+L1KYJ1hsrNMqit95/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJv1JiNl/HSQALI1RD2FBmXmfdroMB8GA1UdIwQY
MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt
ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy
LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxtzea9Tt
eJu9qI04mOaJ4moeiPNTDgoSaO7N7pO3TiX7ztA38xxW7n7OhpzAmimET68KJLdW
t6f7aF0ggWuxGPHZJFNG72AjuGPdQjRyfprPyEek21InTwVN651r4pX7OcyZRx/x
6Dxq5S59uAz/rnAKKGVNVpc1lrZtuCclMKVEZ/K/zm4wmQdIf3w9I8Al1V+HY1s4
HwAW3dfiGKxXp0kYVHdN3jzK0ZwEQhXHSOy1ggMJRz3ZVujKvu3RtiBAJGNZklWc
4deuarFJGOJ2y74pLgXbHsC46D6tz+pHHH1yL0ZQf/OTFQWTZGfsiTWzlZ9cWfL4
kvDxX3mozhG4nA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 12:52:03 2026 by rpki-client