Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: BEG3xIww23ufgOQyQxHi63oA5F/rLPLH+3TEw2DEGm4=
Subject key identifier: 89:D0:AB:B3:A2:BC:A0:6E:44:78:41:C0:3C:A2:76:E3:C5:0A:D1:43
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 019D9850832B6E13D469DE4AF05B0F20915D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 18C0
Signing time: Thu 16 Apr 2026 22:01:46 +0000
Manifest this update: Thu 16 Apr 2026 22:01:46 +0000
Manifest next update: Fri 17 Apr 2026 22:01:46 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: CtDGkuwRkw0FFRUeUuz/MODjKwV6LnR3UlGnZvevGEY=)
2: z_fYCrrGSV54cj1knb3xBk4SK5U.roa (hash: EFlql6uKuI4YQL66OtBnNw+c0chssYW8DVC7ieJRlbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:83:2b:6e:13:d4:69:de:4a:f0:5b:0f:20:91:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Apr 16 22:01:46 2026 GMT
Not After : Apr 17 22:01:46 2026 GMT
Subject: CN=89d0abb3a2bca06e447841c03ca276e3c50ad143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d6:b2:a1:5d:25:aa:d6:20:c0:f3:2d:60:5b:
2e:08:87:62:36:7e:44:8c:85:00:51:60:71:e9:29:
05:c9:52:d5:a7:48:50:cf:fd:5e:77:ba:b7:a8:2b:
e0:53:fc:aa:92:fa:33:65:e0:ab:ac:84:94:26:c4:
e7:97:d1:a9:66:b0:e8:74:46:8a:0f:95:de:2c:dd:
06:f9:14:62:5c:07:3a:0f:10:3b:3b:83:91:32:56:
9b:8b:07:ad:eb:05:2c:50:0b:74:a4:56:84:b6:40:
48:cd:13:1d:51:79:5f:af:87:ad:2a:ff:82:3f:33:
48:89:f3:6e:38:13:73:82:c8:b6:a7:0b:97:6b:b1:
bd:5f:d9:ea:40:a8:45:62:4a:5e:2c:dd:24:12:03:
c3:1e:a4:c8:ff:b5:86:d4:b5:d8:9e:86:15:c7:e8:
c8:89:ea:5b:20:37:c8:e8:6e:d8:07:04:0a:d5:3f:
8d:df:59:27:6b:59:eb:29:ba:99:bc:03:a9:7d:1e:
51:e7:3c:20:7c:8f:7a:5f:4b:b0:8e:7a:3e:47:13:
ee:90:81:95:88:58:d2:9b:2a:43:73:3d:3b:55:11:
36:eb:26:22:32:73:57:1a:26:76:09:55:04:a7:f0:
88:0a:84:54:53:1e:7d:2a:23:05:42:73:80:14:17:
30:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D0:AB:B3:A2:BC:A0:6E:44:78:41:C0:3C:A2:76:E3:C5:0A:D1:43
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:08:48:ad:5b:64:68:97:6a:fe:93:83:84:1a:26:17:cd:5b:
f2:18:ac:d1:f1:e8:ff:dd:d0:63:1f:2c:70:02:32:44:e5:ef:
ec:ee:20:f4:a0:33:ca:df:bf:ce:1a:c6:fd:7f:aa:90:cf:c7:
59:97:1a:20:93:3e:4e:9d:c8:80:10:54:05:a7:da:d9:41:95:
12:3d:97:30:62:42:23:2f:83:42:71:e7:fe:ec:d0:8b:23:e3:
20:9b:54:8a:48:a4:18:43:05:70:5a:7c:f6:4c:9f:dd:6d:9a:
f4:3e:70:f0:6d:38:a5:ea:f1:6d:ff:c5:cb:18:ec:a2:da:9d:
50:19:1a:53:36:f7:4a:7c:64:85:77:52:43:b9:8d:a6:4d:2c:
af:d6:d5:77:f2:3f:b9:cd:8d:50:d3:5a:3d:4a:0d:84:cb:8b:
cc:4b:2d:e9:11:1b:3f:80:41:9f:3d:a3:44:1d:c1:e6:8a:33:
20:92:86:f3:64:55:8f:0a:41:69:9f:e8:a9:75:89:e1:bc:6c:
12:25:c0:af:58:de:a7:a5:06:11:3e:1a:e6:d9:02:32:9b:eb:
a9:44:63:8b:c5:0d:ce:92:ef:4e:b9:b4:64:e7:30:b4:bb:5a:
81:54:bf:98:66:65:aa:d1:ec:a6:5f:fc:5d:b2:0e:22:75:88:
c9:32:93:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:27:31 2026 by rpki-client