Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
File: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft (raw, json)
Hash identifier: BFtXtkJDp1VuMg9XHplshqN5oQt4/bLlE7hTIjzld38=
Subject key identifier: 41:30:EF:F9:6B:72:CF:AC:B7:AC:4B:1F:D2:4C:CC:63:05:B5:F3:3A
Authority key identifier: 86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
Certificate issuer: /CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Certificate serial: 019D9D3F5896CC76B2049E7E62FE7A008E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
Manifest number: 0989
Signing time: Fri 17 Apr 2026 21:01:07 +0000
Manifest this update: Fri 17 Apr 2026 21:01:07 +0000
Manifest next update: Sat 18 Apr 2026 21:01:07 +0000
Files and hashes: 1: BsUK6q4arJHbcNcyqOOvwteXiS0.roa (hash: mH5FcSTjVNeSVMSPqpSkXYdFczl7hZ5yzWhcRGubmnk=)
2: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl (hash: +eaBxe6SGWSarH5mHpPfN4ktDT7XK3B6PWtmXg7/Yr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:58:96:cc:76:b2:04:9e:7e:62:fe:7a:00:8e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Validity
Not Before: Apr 17 21:01:07 2026 GMT
Not After : Apr 18 21:01:07 2026 GMT
Subject: CN=4130eff96b72cfacb7ac4b1fd24ccc6305b5f33a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:48:bb:76:20:1c:54:29:bf:fc:21:74:47:
10:ef:3a:b1:9b:03:ad:3d:37:da:6e:92:7d:6b:ac:
09:08:94:83:d3:e6:08:1e:e2:12:fe:9f:a4:6b:f3:
0f:fb:fe:b9:92:47:d1:fb:88:94:73:77:9d:fa:9a:
33:ec:d6:20:4a:5b:3f:7c:7c:76:6d:7b:67:17:2b:
77:2a:6e:5c:b7:56:29:1d:46:be:7c:91:c5:dd:80:
bd:ac:03:50:71:29:4a:b0:5f:d9:97:c7:79:33:43:
73:de:ae:a4:10:0f:26:b1:ad:eb:ec:ab:a3:d3:d7:
e0:e6:6c:ee:37:6a:99:ec:19:53:12:a7:9a:75:51:
60:14:e4:33:88:53:d4:36:26:eb:02:3e:9a:c5:61:
01:02:8f:de:3a:88:06:20:94:84:8e:e6:9f:1c:36:
bb:1d:8d:5e:9f:82:0f:b8:e5:ac:ef:5c:0f:c1:70:
c9:12:e7:1b:22:3d:3d:a0:e4:1a:23:70:24:96:32:
4e:79:ab:66:d9:ab:9b:ad:ae:4f:09:38:0f:75:04:
12:13:dd:38:0f:dd:26:6e:7f:3d:eb:c6:80:c6:1e:
b5:46:44:01:69:c7:7f:0e:3f:c8:79:40:29:db:c4:
d8:17:62:c0:78:8b:8e:83:16:7f:c0:13:92:ab:c9:
67:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:30:EF:F9:6B:72:CF:AC:B7:AC:4B:1F:D2:4C:CC:63:05:B5:F3:3A
X509v3 Authority Key Identifier:
keyid:86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:87:ca:4a:44:ce:f0:cd:f3:30:c5:77:c3:df:f3:de:6e:f5:
ac:b1:e6:9b:1d:c3:e4:b5:be:39:e7:c3:22:c9:ef:b0:3b:22:
c2:c7:4a:9a:09:7e:bf:66:85:0b:01:2a:b5:0d:60:e0:fd:3b:
0f:b1:c8:69:0c:3f:f2:06:da:8a:92:79:4b:18:22:f7:10:1c:
7e:20:34:0d:3c:15:81:19:a6:8e:27:84:17:78:4a:6d:95:3c:
54:f7:0b:cf:7a:b8:d4:56:80:b0:ad:b5:91:2f:50:89:25:3d:
5c:ea:ac:2f:f7:f5:c0:e0:40:18:c6:e3:af:5a:c1:f0:36:b7:
01:6d:b3:d6:93:28:3a:76:f3:fa:bf:01:e0:53:37:c0:3a:69:
90:69:52:b2:1d:cf:9f:16:41:62:68:fd:a0:21:20:32:6e:8f:
be:69:32:30:b0:5f:26:94:02:d8:32:51:ea:48:09:a6:2e:63:
b7:24:ea:c9:ee:34:d6:2e:6f:8b:5a:be:ca:4d:b8:97:f4:dc:
20:3c:41:4b:f7:d0:64:85:ef:13:88:10:80:b8:eb:c1:0b:d6:
0c:b6:53:d7:bd:fc:8e:08:ac:16:6c:a0:04:fe:5b:1d:cc:8c:
44:28:9e:b6:5c:bb:7f:b6:fe:35:9e:15:8d:1f:4a:9b:12:14:
23:7a:8d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:53:18 2026 by rpki-client