Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
File: HAKBccHlLIrK1NspuS0hazMvAyA.mft (raw, json)
Hash identifier: /Z/7342vLDhg58lJoJz2ctmm0uqcI816mwPnkDiDblg=
Subject key identifier: 3F:11:D3:15:EA:87:8D:5F:65:F2:05:DF:2D:F9:4B:AB:89:AB:2A:18
Authority key identifier: 1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
Certificate issuer: /CN=1c028171c1e52c8acad4db29b92d216b332f0320
Certificate serial: 019D9BBEBA3C033304E5E5A8600F99779467
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
Manifest number: 033A
Signing time: Fri 17 Apr 2026 14:01:01 +0000
Manifest this update: Fri 17 Apr 2026 14:01:01 +0000
Manifest next update: Sat 18 Apr 2026 14:01:01 +0000
Files and hashes: 1: G9jujcQZlUdVMOptG1eSDU2YY8I.roa (hash: EJGVSoBSNBmuI6zXcVl26rucMI4v4bwSguQQOZP/asw=)
2: HAKBccHlLIrK1NspuS0hazMvAyA.crl (hash: oQ0O1pMt3g4I33gu6skJvuO9lz06zEyTO+vk6AZLa7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:ba:3c:03:33:04:e5:e5:a8:60:0f:99:77:94:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c028171c1e52c8acad4db29b92d216b332f0320
Validity
Not Before: Apr 17 14:01:01 2026 GMT
Not After : Apr 18 14:01:01 2026 GMT
Subject: CN=3f11d315ea878d5f65f205df2df94bab89ab2a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d5:66:7b:22:c1:e1:44:a6:47:a8:d9:90:fc:
e6:3f:b4:8b:9b:85:0c:a5:8b:22:93:dd:11:36:be:
10:79:8e:fa:10:9d:d2:95:f9:8f:96:56:0f:e5:5e:
dc:15:37:a2:85:af:38:b4:31:1c:9a:02:99:89:9d:
61:d2:9d:89:d2:60:25:c8:33:ff:14:0f:78:32:d0:
81:31:15:4c:41:de:78:63:90:68:32:32:7a:a9:a7:
41:dd:13:56:7c:92:c6:de:42:2e:7a:7a:ee:5e:04:
9e:2f:14:67:8f:94:88:7e:a4:24:b6:63:d1:4a:a1:
82:3c:2e:9b:22:e7:9e:51:d0:0a:94:42:79:e8:53:
df:df:03:fa:ac:0b:f1:8a:71:e3:0f:40:52:ba:6f:
16:38:05:f8:4c:86:38:4e:8c:96:00:61:34:56:e6:
d1:13:98:48:ae:4f:ef:03:ab:b5:1a:f5:c9:da:38:
6a:ab:95:7f:97:ac:87:a2:fe:fd:5d:5d:64:8b:95:
f1:b1:0b:ba:d1:dc:b3:c8:d4:a1:16:f8:89:f7:13:
f2:be:99:df:56:ee:3c:77:97:e2:79:0b:d6:14:1c:
b0:48:3e:dd:0d:4a:3d:cb:6e:86:2d:0a:d4:7c:15:
97:0c:79:08:9b:ea:87:85:a3:72:83:24:e2:87:05:
5d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:11:D3:15:EA:87:8D:5F:65:F2:05:DF:2D:F9:4B:AB:89:AB:2A:18
X509v3 Authority Key Identifier:
keyid:1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:d0:4c:34:7e:03:2e:59:ee:a7:65:b6:aa:b0:e5:b8:06:83:
74:f2:24:52:9f:3d:a9:9e:83:46:74:10:bc:93:3e:61:51:17:
75:fe:64:04:f1:8f:2b:97:67:28:54:99:84:60:ae:c5:d1:7f:
bd:21:8f:9d:66:5b:89:50:8d:e8:4d:ee:45:56:f3:a9:e2:fb:
2b:06:35:84:17:14:10:24:be:45:0f:49:83:4b:ef:99:36:b0:
f8:ef:a0:07:bf:55:9d:07:04:bc:eb:24:5e:7b:9a:a5:7f:6a:
88:cf:e4:61:54:da:85:ee:d4:e5:d1:e0:7a:02:3a:3f:13:3c:
e1:28:ab:5c:1e:17:d3:a1:97:a4:b5:2b:65:27:9e:ee:47:80:
87:e3:43:71:ea:92:67:d6:d6:d1:b0:d6:09:2a:cd:7f:32:ec:
6a:f1:80:15:8c:97:75:6c:2e:d6:20:7d:be:0d:ed:ad:4a:31:
10:58:1a:45:37:74:67:67:26:43:63:20:89:9a:d2:91:ab:e7:
52:54:d9:1d:08:e8:22:1d:1f:be:69:12:30:1f:c3:4f:ba:a5:
1a:93:43:6f:a4:7a:74:fe:26:a0:d8:ff:21:ac:d0:02:78:e6:
db:5c:4f:8d:3a:49:f8:59:72:fe:02:8a:4b:31:c4:ec:37:08:
72:13:5b:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:15:18 2026 by rpki-client