Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
File: hfTuFPbTinzwcSed_3s5FwLjcTU.mft (raw, json)
Hash identifier: 5WdD/JZ3JNFswBYunZnNBhYzgg4HSaRyvmYBC9EVMk0=
Subject key identifier: 25:E3:04:5A:A4:23:2B:84:8D:77:6E:5D:7C:AE:28:5D:F8:98:B0:35
Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Certificate serial: 019D9886511EF5EDD425D5DF47AA0205A1F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
Manifest number: 175F
Signing time: Thu 16 Apr 2026 23:00:32 +0000
Manifest this update: Thu 16 Apr 2026 23:00:32 +0000
Manifest next update: Fri 17 Apr 2026 23:00:32 +0000
Files and hashes: 1: Fbp_lxqUHehCSWbyl7sXqy6NV7c.roa (hash: 2HfCb9kniGEaBDNnHz9GBiRgabhJI0HLcxsnmcMaKY8=)
2: Kw8ydkhlfzZHeJTkr7mnY0TC51Q.roa (hash: A/++N69JbstSCEAobrMDwfyAGtA60/N4ZLrwg/2X2ok=)
3: hfTuFPbTinzwcSed_3s5FwLjcTU.crl (hash: sULkXsSY+5W+Zjobofxsk1QH2m3AZh741qhNXIl+Grc=)
4: tTro6Q3OQALzLcA8FA4eU5RfBWA.roa (hash: jtcqT3NEeBB17kUbe2vD9a8c2cug0yjIQxz7WQqkvtg=)
5: vbHBtb2iPNz_qrAoEkpCxsaIZZc.roa (hash: OIkOu0+4El6Pg/y3PaYXt7py5eZ3TqMx4VnZc06tByw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:51:1e:f5:ed:d4:25:d5:df:47:aa:02:05:a1:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Validity
Not Before: Apr 16 23:00:32 2026 GMT
Not After : Apr 17 23:00:32 2026 GMT
Subject: CN=25e3045aa4232b848d776e5d7cae285df898b035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:05:f7:08:2f:65:b5:6c:c7:0c:dd:ca:f0:7c:
7c:52:f3:a8:15:1b:71:36:43:d8:03:73:b4:34:75:
e2:97:23:b9:df:5e:3b:43:9d:3d:81:a2:23:a9:61:
a9:db:1f:a9:76:80:81:ea:c1:2e:1a:ea:ae:b0:de:
c8:88:4e:cb:68:a8:78:23:6a:fc:a8:bf:48:6c:70:
63:0f:28:c3:d2:76:00:8a:ac:0a:db:f1:a5:17:e0:
ee:c5:44:cf:e0:03:ae:66:12:d0:42:18:b9:98:44:
48:e4:6a:4b:e6:6a:07:0a:93:16:ec:a3:3a:d0:17:
19:c5:21:57:c4:34:35:d2:72:40:9c:45:b8:f4:4d:
04:19:8f:6c:ac:9b:f8:19:40:c3:e1:a2:9a:24:4a:
c7:03:b6:5f:2c:f1:e6:2e:42:c1:ef:82:ad:77:41:
6d:e8:36:57:60:2a:20:24:ab:cd:95:62:37:13:3b:
fc:76:fb:33:37:44:dc:86:1f:23:57:6d:08:28:5b:
65:3a:4f:61:6d:44:c1:44:e1:eb:12:f5:04:41:cd:
ab:d6:8c:5b:07:78:2a:5f:18:e9:58:c0:d0:50:02:
09:19:44:59:bc:8d:14:31:96:a8:44:0a:f7:5a:2c:
b0:8d:da:f8:72:96:24:1d:62:4e:57:93:6d:23:65:
9d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E3:04:5A:A4:23:2B:84:8D:77:6E:5D:7C:AE:28:5D:F8:98:B0:35
X509v3 Authority Key Identifier:
keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:3d:7a:67:5f:f3:2e:df:7e:84:5b:39:3f:27:70:67:37:d6:
58:fa:de:a0:a7:56:a8:2e:01:26:de:ab:d7:8c:63:64:f4:0b:
db:a8:c3:45:f0:e9:17:8d:e8:3f:1a:f1:4f:d3:ee:08:48:40:
05:4a:1c:f0:66:34:1b:9c:9e:d1:71:dd:0e:d7:b6:32:56:6e:
53:da:9f:5d:b2:08:17:f3:9f:69:40:14:88:05:61:b9:8a:1b:
16:39:19:0d:ad:4b:82:fc:c6:c8:ce:6e:1b:92:5e:8c:15:aa:
e3:b8:ff:ca:0a:21:cd:b8:f3:9b:36:63:6d:45:53:fa:d9:bf:
e3:43:66:b2:6b:c4:9d:15:c3:e2:09:f9:39:2a:f9:be:a6:b0:
13:fa:79:9b:50:61:53:81:49:ea:b2:8c:f4:e3:0a:60:41:de:
46:f5:8a:3d:11:f0:41:bb:0c:a2:ef:f8:93:57:82:8d:b1:a7:
27:5d:fa:2c:99:15:3a:3c:c1:21:e5:41:1f:d3:08:51:3e:03:
34:e0:83:a5:a5:44:c3:f9:1c:e6:d3:b3:64:16:44:2a:3e:a2:
38:6f:f7:f0:90:21:22:3c:bf:61:e8:fb:c6:00:e2:46:c0:1f:
10:26:ef:90:47:a4:8b:ff:f4:1e:0c:fd:f7:83:c4:22:22:f4:
79:8c:b8:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:49:30 2026 by rpki-client