Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: EoaBhCJjp+11Ss0Y0gVLDNiv6JKps+E5Qk1b5m+hA8k=
Subject key identifier: 42:44:16:6F:39:D6:A9:B9:C4:84:BC:68:2D:3A:AA:13:F5:E0:51:18
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 019D9C9AD9A6F49FC094448F67F3FF0F9694
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 03E8
Signing time: Fri 17 Apr 2026 18:01:26 +0000
Manifest this update: Fri 17 Apr 2026 18:01:26 +0000
Manifest next update: Sat 18 Apr 2026 18:01:26 +0000
Files and hashes: 1: IyUD0cTbm163_nE6Z_KQkHMo9a0.roa (hash: ckmuLvsLe1WHUbDkzeJOW8KVL9BpPwjboxRuotk+r7Y=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: ap5V7GoS545+DI4biqAadgv/ZtKfz1Rlk696Wxaxwjk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:d9:a6:f4:9f:c0:94:44:8f:67:f3:ff:0f:96:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Apr 17 18:01:26 2026 GMT
Not After : Apr 18 18:01:26 2026 GMT
Subject: CN=4244166f39d6a9b9c484bc682d3aaa13f5e05118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0a:75:6b:83:05:2f:ef:f7:60:c1:79:cf:22:
06:3a:44:cd:79:51:b0:31:e4:01:e4:84:f7:7f:47:
7b:95:b2:94:97:de:3b:26:de:82:5a:1e:73:bf:82:
a0:3a:b8:ae:30:ae:ac:c4:a7:ff:2e:20:86:f1:04:
09:ca:76:97:ac:b0:10:65:5a:d4:82:ff:30:a0:29:
b4:6a:2d:8a:0b:50:98:d6:75:89:ce:ce:7a:ce:7d:
f6:15:12:4f:43:24:1d:e7:3b:2e:5e:b4:2a:3a:a8:
96:18:bf:4d:e0:2d:28:76:27:11:0d:d8:9e:89:1c:
b7:9e:d1:7c:a0:21:4e:db:2a:5a:51:4b:12:f5:06:
9e:40:f2:87:11:d1:a0:70:02:75:02:bb:35:8d:43:
5d:7f:4c:6b:fb:78:bc:5e:0e:8b:1f:c9:93:4e:90:
77:42:6e:82:3e:33:ed:9a:49:0d:eb:3c:65:15:9a:
2b:61:1e:9c:66:0d:62:ec:af:ec:f1:07:6c:ef:38:
4c:0e:be:c5:1b:2e:a1:4b:f5:60:6f:69:0c:08:cf:
51:9d:a4:b8:49:c0:5e:c4:a5:8d:e9:8e:28:34:e4:
df:80:46:59:5e:54:7b:8a:f2:99:c0:71:5e:96:52:
a8:de:41:b1:ad:62:a4:aa:74:88:34:d7:fa:d6:9b:
d7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:44:16:6F:39:D6:A9:B9:C4:84:BC:68:2D:3A:AA:13:F5:E0:51:18
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:f9:f2:37:58:f2:be:e0:e6:4f:51:53:aa:e3:b3:38:28:7e:
30:0c:43:0b:b5:88:84:93:d4:b5:46:3c:ba:bc:ac:86:59:16:
d3:24:3b:74:b4:db:ee:09:b5:16:d5:ec:18:0a:72:2d:2e:03:
e8:ca:3a:b2:d0:42:16:e7:f4:06:54:d4:23:03:58:4e:52:d2:
4d:c2:7b:72:3b:59:c4:e5:d9:29:b8:89:13:eb:e5:3d:ae:83:
c5:59:44:64:c5:02:ed:cd:f3:26:8e:03:63:b7:a3:03:8a:54:
1d:0c:da:fc:dc:f7:57:c7:c8:ec:a1:5a:8a:c2:7e:b8:2c:15:
62:c6:07:e2:cc:1d:5a:d1:d5:61:e1:fc:3e:fe:d9:7a:61:78:
04:bb:ca:d1:de:00:f2:26:73:2a:e8:7b:a2:89:9f:ce:8a:f6:
f8:00:bb:95:21:fe:e0:72:c7:6c:07:b9:4d:e9:8a:e4:e1:03:
e0:98:07:59:ff:ef:1b:85:8e:7f:a6:21:7a:26:d9:00:c3:70:
b7:e8:35:d0:56:d1:81:0b:aa:69:89:f6:8b:ed:f7:49:8e:e4:
ac:47:52:49:52:be:aa:40:59:2c:f4:9e:e5:73:11:83:67:df:
7a:c1:f9:bf:64:a9:0c:8f:b1:d9:f0:a4:4e:c9:bd:8a:12:f3:
ce:73:ad:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:00:53 2026 by rpki-client