Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json)
Hash identifier: 7j3cXCjhQvjxHR8ccqS8V0RoYXTl8pYXuhjdwXbJxAQ=
Subject key identifier: B7:A1:90:F7:16:AF:C4:DD:D7:FA:74:6F:23:4D:19:64:30:16:D8:5B
Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Certificate serial: 019D99D017E889692F9D43E98AE6BE1489F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
Manifest number: 0B52
Signing time: Fri 17 Apr 2026 05:00:44 +0000
Manifest this update: Fri 17 Apr 2026 05:00:44 +0000
Manifest next update: Sat 18 Apr 2026 05:00:44 +0000
Files and hashes: 1: U967gx6zU2ewhEleCWFHT_7A_9o.roa (hash: rEcp4qFupVQgVYmsA8hG1Q/G6+z2CIRB0Mx5vxsYxf0=)
2: h-KmrUFQix2mPVIgPxijrxKClGw.roa (hash: fc8hHRpimWi4M001kIYlHNuSFZw5gckGt8QS97+VBbM=)
3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: 8siiZAJ4KQ9PD8hN9yf32v8Kr3m8kpy9MYz4K6SP/pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:17:e8:89:69:2f:9d:43:e9:8a:e6:be:14:89:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Validity
Not Before: Apr 17 05:00:44 2026 GMT
Not After : Apr 18 05:00:44 2026 GMT
Subject: CN=b7a190f716afc4ddd7fa746f234d19643016d85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:79:2d:13:2a:f5:85:2b:fb:b4:3f:1f:9b:45:
fd:ed:b1:00:7f:a4:c0:08:fb:5f:79:c0:df:3a:17:
28:bc:c4:bf:74:ab:24:96:88:cc:96:8e:c3:7f:1f:
cd:d3:eb:28:f9:86:53:47:04:9c:b9:2b:99:65:67:
30:dc:5e:df:89:74:42:34:69:2a:db:28:d3:b4:52:
4c:bc:6f:38:49:29:71:2e:99:3d:81:85:10:ac:c7:
ce:f0:e3:b2:94:e9:23:cb:ce:53:c0:7c:8a:b6:c8:
bc:02:b5:c8:99:db:b5:30:72:36:af:fa:51:15:52:
0b:1b:ad:4d:43:24:0d:85:47:eb:5d:aa:d4:5d:8d:
a7:89:72:42:fe:23:1a:99:ba:f8:69:14:c7:17:f6:
f4:87:1a:e2:87:8a:5c:cf:93:dc:91:27:b3:29:2f:
83:79:5d:34:63:5f:ad:74:30:f8:a6:b0:24:e1:15:
97:50:79:8c:71:a5:fc:d2:01:6a:07:e1:76:a9:2f:
de:2d:0c:d1:e3:fe:aa:e1:95:b8:75:a7:8a:93:e4:
57:9b:7c:98:16:d0:d0:6d:5f:49:53:ba:7a:48:c1:
d3:09:20:ef:c9:eb:91:9c:9b:76:7a:2e:e0:36:79:
a9:47:ee:04:27:60:03:6b:7d:04:09:56:3f:2b:6d:
3d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A1:90:F7:16:AF:C4:DD:D7:FA:74:6F:23:4D:19:64:30:16:D8:5B
X509v3 Authority Key Identifier:
keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:dd:d1:6c:7a:4d:38:b2:6c:81:50:01:01:54:e6:a2:99:ed:
6d:4d:3b:15:9c:4e:ca:d2:b4:54:b0:f0:79:44:dc:71:df:22:
f5:5c:64:bc:9f:52:7b:7e:9e:44:12:7b:50:79:26:63:64:fa:
8e:b1:86:00:47:e4:d9:ac:2e:ba:de:04:f1:b6:40:d6:d9:16:
23:00:96:8e:fb:56:e7:ca:fe:f6:8b:53:92:df:e2:8c:5e:11:
83:b2:8d:b3:5f:c7:09:e0:e9:c0:11:52:8d:05:b4:7c:e0:61:
25:ec:e8:35:d1:73:71:d7:4d:c3:65:55:60:53:d9:71:68:09:
d8:b9:89:9a:0b:9e:51:4e:b0:ca:10:2c:4a:94:2b:b9:f9:77:
7e:ac:71:27:31:7c:00:45:30:73:bd:f3:b7:57:db:67:56:e8:
6e:7a:ec:0e:41:78:a9:22:57:fa:cc:7f:97:de:73:31:80:22:
21:3d:cb:60:42:f3:d8:3e:0c:e1:e7:4e:80:7b:95:4a:3d:06:
95:db:7c:11:c4:1b:d6:ff:56:5d:92:47:8a:c8:ac:65:f7:bf:
5b:31:bb:59:f0:78:00:d6:48:2a:85:38:ab:57:6e:59:f9:6b:
d4:4d:51:36:13:8c:21:87:98:69:e9:c5:f0:f6:2b:8d:18:48:
91:92:dc:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:31:43 2026 by rpki-client