Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
File: HkXMabTR7hUbUCdEL7upRMJ035c.mft (raw, json)
Hash identifier: /5I21YBDuzvsa75pBw1G4Wy63ftOx4b4boxPfYByFVo=
Subject key identifier: A3:57:F0:03:0C:F7:74:96:74:F6:E2:27:B0:4E:F0:A7:AC:F0:96:2E
Authority key identifier: 1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
Certificate issuer: /CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Certificate serial: 019DA3419014C5937A7EC0F1D4AD9F10D908
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
Manifest number: 1842
Signing time: Sun 19 Apr 2026 01:01:16 +0000
Manifest this update: Sun 19 Apr 2026 01:01:16 +0000
Manifest next update: Mon 20 Apr 2026 01:01:16 +0000
Files and hashes: 1: HkXMabTR7hUbUCdEL7upRMJ035c.crl (hash: sqassuWJjmRC9bHy1vuffPS53HLUXsz7kqmkv0bqX7Q=)
2: aZ1Tmj5Fb0n-wAOpGfFgPSrHdBE.roa (hash: Gos9McZbPOXHaQCrEQsYEbpvs5QjrqdpWFlMgXSAVtE=)
3: cmpuXpIT4rvzqBUAC8x_2HfS7ko.asa (hash: oUrQJpTPJIb/YuIVBdY/6NRHdTxNTlQPuGs1oAK8Nmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:90:14:c5:93:7a:7e:c0:f1:d4:ad:9f:10:d9:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e45cc69b4d1ee151b5027442fbba944c274df97
Validity
Not Before: Apr 19 01:01:16 2026 GMT
Not After : Apr 20 01:01:16 2026 GMT
Subject: CN=a357f0030cf7749674f6e227b04ef0a7acf0962e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f2:16:49:d1:3b:47:0f:5e:2e:a1:65:7c:50:
ac:5e:95:4b:44:31:61:94:55:d9:96:1f:d1:f4:0a:
ac:3c:d4:72:58:50:d2:af:7f:0b:ab:70:73:03:2f:
8a:d6:8a:04:3b:60:da:a9:41:f1:34:ee:09:da:2c:
4c:03:e7:89:f4:e2:93:94:5f:a4:99:91:b0:b8:c2:
23:25:ea:75:2d:c2:3d:c0:62:c2:22:e2:8e:25:86:
41:1c:6d:22:00:b7:1b:24:bc:08:15:c8:d4:dc:64:
96:c7:ec:1e:53:c5:05:33:59:c9:72:86:3c:21:f4:
d2:fa:7e:b5:91:23:ee:ad:9f:c0:74:1e:c8:ea:30:
c4:05:60:4a:d4:8f:8f:3c:34:73:96:48:51:92:b4:
cb:17:01:fa:6b:3a:69:ee:66:fd:30:92:04:4b:23:
14:7f:e3:47:72:1d:8d:63:d8:61:72:32:e6:b8:3c:
22:1b:20:4c:43:a5:dc:81:4e:85:93:e8:0e:21:42:
5f:24:b3:f6:f4:39:cb:f0:3f:d1:d2:83:31:eb:f9:
e4:3e:6f:39:7d:1d:d7:28:12:03:80:b7:b2:ae:65:
e0:81:79:98:b2:f8:71:73:a6:d1:02:bc:10:f2:62:
35:a2:91:a6:4c:aa:dc:d6:27:e6:a8:70:c7:c1:3a:
76:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:57:F0:03:0C:F7:74:96:74:F6:E2:27:B0:4E:F0:A7:AC:F0:96:2E
X509v3 Authority Key Identifier:
keyid:1E:45:CC:69:B4:D1:EE:15:1B:50:27:44:2F:BB:A9:44:C2:74:DF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkXMabTR7hUbUCdEL7upRMJ035c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/d49528-2aa4-4a7d-9845-c2443aa547e2/1/HkXMabTR7hUbUCdEL7upRMJ035c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:13:18:d3:50:fa:b0:25:c0:07:ab:93:08:9c:8d:82:9d:49:
e4:61:b1:05:dc:b2:f4:ff:a4:2d:55:9a:5a:e7:76:95:d7:80:
51:01:64:a9:4e:e9:ca:e6:fb:9f:66:e1:9c:bc:e5:47:b0:4e:
ab:24:da:3d:ea:de:10:52:ec:6c:b3:ef:4a:12:a4:ee:ab:d5:
60:7b:59:9c:52:93:91:0c:f4:25:cc:77:95:58:03:a3:f8:15:
d1:1e:1c:7d:86:f3:3a:aa:67:33:60:4a:fd:f9:87:20:b4:d3:
97:e2:35:27:9e:55:eb:ff:34:b7:e3:27:75:8a:a4:31:ca:ff:
1c:73:34:1f:82:e7:09:cd:9f:1c:75:67:c8:53:70:3e:e9:d7:
62:bc:3b:17:46:be:e0:ca:f1:73:11:f5:9d:26:5b:c3:41:4b:
42:f2:2a:26:fe:20:a8:aa:30:19:f2:3a:e3:6d:69:82:20:95:
70:08:a6:cb:d4:f3:b5:f1:4c:4d:b7:73:50:fa:0e:f2:9b:69:
08:93:9a:5d:1e:1f:02:6d:76:92:e1:f2:ea:63:88:52:1c:4f:
9e:fd:33:ff:45:48:65:fc:81:e8:25:f1:59:6b:e0:f4:e8:09:
8d:83:91:1b:f3:6f:6d:89:f8:b0:c8:82:20:4d:db:73:87:1a:
4f:b9:ed:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:01:14 2026 by rpki-client