Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: v1A4P8Djy/UtRGBg0gcMC1bBz2eCyNbB4t2JfVb2fb4=
Subject key identifier: 44:45:CB:EF:62:09:40:79:F7:33:4C:35:8B:4B:A7:D4:C6:3F:19:FB
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019CAB6BDCB56649BAFF8FCB1C1381103E59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0FCC
Signing time: Sun 01 Mar 2026 22:01:38 +0000
Manifest this update: Sun 01 Mar 2026 22:01:38 +0000
Manifest next update: Mon 02 Mar 2026 22:01:38 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: 8LtwJQsBvnM0T1+yPN5XzmMTHiCYky6NrgWp5+DMBfo=)
2: WgW7_1NWoWpm4jNdRh3wAV6b-iQ.roa (hash: VRgHLs3EnvMZ31H9FL0qZ2OCVPVRz1uxVc4Bjt1PMc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:dc:b5:66:49:ba:ff:8f:cb:1c:13:81:10:3e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Mar 1 22:01:38 2026 GMT
Not After : Mar 2 22:01:38 2026 GMT
Subject: CN=4445cbef62094079f7334c358b4ba7d4c63f19fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f1:58:58:e4:73:0b:a2:57:9d:e4:2d:d6:2f:
51:3b:54:fd:12:07:f8:cd:ec:7e:7b:c6:02:c9:88:
56:ca:44:0b:83:f8:58:f6:e2:a9:22:e7:d1:1e:4f:
e3:0e:d1:6f:a0:03:f1:0f:5d:1f:23:73:17:8d:3f:
a1:af:2b:b6:2d:9a:62:f1:91:46:e0:d4:31:68:4a:
8d:5e:ec:34:d5:13:21:39:ce:94:73:37:08:75:b7:
e1:c3:83:17:b3:8a:d6:af:5a:f6:96:6e:90:96:d0:
0c:d9:03:56:af:06:fa:e2:61:90:82:37:4d:c5:9f:
7b:e7:a8:36:ac:6e:c2:eb:cf:c2:23:b4:a4:51:3f:
8b:8b:a5:6d:1e:c3:a3:1e:f7:1d:da:0a:5f:c9:0e:
60:06:6e:aa:a5:6a:cb:11:17:49:f3:35:9f:cd:0c:
94:88:a3:6a:02:3a:35:a3:ac:4d:1c:3d:a5:2c:e3:
ba:c3:30:f9:3e:66:c6:ae:19:d3:f6:c2:87:81:10:
1d:fb:32:4a:24:76:da:ee:48:8e:86:39:30:65:ea:
f4:e1:cc:d7:fc:09:7d:c7:74:4d:b2:03:69:f3:07:
73:8e:ce:09:c6:f0:34:e8:ef:89:b6:8b:20:80:b5:
db:4f:7a:57:6a:32:6c:08:1b:2e:83:18:60:bb:00:
08:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:45:CB:EF:62:09:40:79:F7:33:4C:35:8B:4B:A7:D4:C6:3F:19:FB
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:05:75:d3:c7:02:15:31:58:37:14:96:db:71:b8:f6:ef:67:
20:bd:ac:fb:6d:82:a4:bd:db:67:5a:e8:a7:05:a4:d1:0e:e6:
d3:2c:02:7b:03:ef:14:11:b7:2e:cf:04:4e:39:19:66:68:11:
b1:69:06:c2:51:98:3a:c7:42:e3:48:5a:19:ae:32:37:eb:e5:
b3:cc:57:bf:e0:e2:b3:a7:f0:e5:f0:15:78:94:dc:a5:25:5b:
23:85:e1:f9:8a:e7:69:67:89:3d:83:ff:ce:b7:89:15:ef:7c:
d7:e7:13:64:70:ab:0d:83:15:14:67:08:15:71:2c:02:58:86:
38:a9:37:4a:8e:4f:27:a8:7b:0d:5c:b7:bc:28:21:e8:be:9a:
08:d6:65:54:ab:b5:4a:3b:35:ff:ff:4c:d3:67:48:72:8f:9f:
d7:75:8f:af:55:d7:24:3a:31:0c:0e:f4:b3:02:d3:ff:d6:e1:
30:b8:cc:29:3a:0e:0d:27:d8:4a:ab:a1:62:32:84:66:db:cf:
21:c3:f1:57:2a:47:c8:8b:5d:29:4f:d8:2a:45:bb:f6:b3:84:
e7:18:c8:0d:0b:6b:80:14:c1:34:83:ee:57:76:8e:9a:43:4d:
b6:13:3c:24:32:24:f5:a2:33:51:96:4b:c6:c9:15:c4:e1:89:
26:fb:2b:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra9y1Zkm6/4/LHBOBED5ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNTcxZTJiZGI0MTEyZWM1ZDZiM2E2NGJiMTdiZjBiMjgw
ZmU2ZTEwHhcNMjYwMzAxMjIwMTM4WhcNMjYwMzAyMjIwMTM4WjAzMTEwLwYDVQQD
Eyg0NDQ1Y2JlZjYyMDk0MDc5ZjczMzRjMzU4YjRiYTdkNGM2M2YxOWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPFYWORzC6JXneQt1i9RO1T9Egf4
zex+e8YCyYhWykQLg/hY9uKpIufRHk/jDtFvoAPxD10fI3MXjT+hryu2LZpi8ZFG
4NQxaEqNXuw01RMhOc6UczcIdbfhw4MXs4rWr1r2lm6QltAM2QNWrwb64mGQgjdN
xZ9756g2rG7C68/CI7SkUT+Li6VtHsOjHvcd2gpfyQ5gBm6qpWrLERdJ8zWfzQyU
iKNqAjo1o6xNHD2lLOO6wzD5PmbGrhnT9sKHgRAd+zJKJHba7kiOhjkwZer04czX
/Al9x3RNsgNp8wdzjs4JxvA06O+JtosggLXbT3pXajJsCBsugxhguwAIzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFERFy+9iCUB59zNMNYtLp9TGPxn7MB8GA1UdIwQY
MBaAFB1XHivbQRLsXWs6ZLsXvwsoD+bhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUt
ZGIyNTcyZGFjYjQ1LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUtZGIyNTcyZGFjYjQ1
LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnAV108cC
FTFYNxSW23G49u9nIL2s+22CpL3bZ1ropwWk0Q7m0ywCewPvFBG3Ls8ETjkZZmgR
sWkGwlGYOsdC40haGa4yN+vls8xXv+Dis6fw5fAVeJTcpSVbI4Xh+YrnaWeJPYP/
zreJFe981+cTZHCrDYMVFGcIFXEsAliGOKk3So5PJ6h7DVy3vCgh6L6aCNZlVKu1
Sjs1//9M02dIco+f13WPr1XXJDoxDA70swLT/9bhMLjMKToODSfYSquhYjKEZtvP
IcPxVypHyItdKU/YKkW79rOE5xjIDQtrgBTBNIPuV3aOmkNNthM8JDIk9aIzUZZL
xskVxOGJJvsrFA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:00:09 2026 by rpki-client