Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
File: hUxfKY2BrMVXP9WfsF3YbyCry6g.mft (raw, json)
Hash identifier: /Gg+cbEW+kSaTOK2j+f91wLhtqrF7I1iB6X6tp6bgik=
Subject key identifier: E5:3D:4A:2D:3E:16:16:5D:50:1C:71:C7:45:C6:B8:31:51:49:24:05
Authority key identifier: 85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
Certificate issuer: /CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Certificate serial: 019D9998D432B9A7F082AC8391BA4183DC0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
Manifest number: 1341
Signing time: Fri 17 Apr 2026 04:00:22 +0000
Manifest this update: Fri 17 Apr 2026 04:00:22 +0000
Manifest next update: Sat 18 Apr 2026 04:00:22 +0000
Files and hashes: 1: KDlCkTZJ_trioChGEq3qqR2sW-g.roa (hash: jNNvN3keVzRoRmynZdoMPevs+yPDhsuaoYcA8SI2cJs=)
2: hUxfKY2BrMVXP9WfsF3YbyCry6g.crl (hash: eATXit051YEDckNciQHmb67e6BzlifUuzc7A+DN3Jqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:d4:32:b9:a7:f0:82:ac:83:91:ba:41:83:dc:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Validity
Not Before: Apr 17 04:00:22 2026 GMT
Not After : Apr 18 04:00:22 2026 GMT
Subject: CN=e53d4a2d3e16165d501c71c745c6b83151492405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:77:fd:94:26:6c:38:80:07:e6:8e:d5:34:2d:
42:97:9a:5c:76:77:37:ab:55:70:58:40:1d:7c:fb:
56:08:26:1a:6d:c3:a5:ec:6e:59:e9:b4:10:ad:52:
8b:97:2f:42:23:84:a6:c7:e2:2f:ea:c5:40:5e:4d:
0f:8d:ae:40:b3:b6:04:2c:6b:4c:c3:bc:d7:dc:12:
82:e9:2e:2a:8c:f6:96:30:be:ab:49:24:6c:b0:b3:
08:9e:83:bd:e3:ba:cf:eb:02:a3:81:0b:98:3d:f4:
38:db:2c:f9:ba:67:f9:71:72:92:3f:a0:80:35:b4:
eb:ab:0f:d0:d8:92:3f:f0:1f:61:5d:06:9f:03:2a:
61:66:86:5d:44:e3:ce:5d:19:b5:90:b0:b9:ab:64:
91:fd:88:30:17:1b:bf:29:f0:46:78:57:eb:78:02:
73:a1:11:2f:ac:f2:62:7a:68:12:db:1c:3d:0c:fe:
fa:3f:09:fb:4a:69:33:dc:8c:ba:76:2a:24:63:e2:
57:b5:b7:12:84:8f:71:fd:21:5f:1f:64:c2:5b:79:
7a:5c:5d:0e:3a:4f:a7:e0:0e:6a:81:b1:ea:43:51:
05:15:89:ce:bd:0d:73:b1:39:34:2f:24:e5:12:fb:
a5:d8:73:5a:5d:75:5e:1b:1b:07:e2:6f:0c:42:78:
59:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3D:4A:2D:3E:16:16:5D:50:1C:71:C7:45:C6:B8:31:51:49:24:05
X509v3 Authority Key Identifier:
keyid:85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:4f:15:9a:48:62:bb:db:c1:be:76:c0:16:5f:df:87:0a:87:
52:21:d9:24:44:bf:fe:b0:23:3b:d8:b5:95:7e:20:62:35:a3:
3f:47:8d:b5:96:bd:eb:b8:8d:80:be:76:94:36:ed:aa:cc:3b:
cd:e8:8b:3b:a4:c7:97:fd:50:37:f1:5e:76:e9:27:15:93:2c:
7e:d9:1a:00:a7:21:94:ea:96:f9:50:9a:7b:ad:a3:a6:2e:90:
c8:c9:95:6a:3a:ba:a4:0e:44:18:04:6e:ec:a3:1e:8f:15:cb:
05:7c:96:10:d4:85:89:7d:71:52:8f:2b:7a:84:34:cc:ba:15:
41:5b:25:49:25:6f:95:e8:dc:c9:4a:24:10:fd:c9:d7:02:07:
ef:af:1e:f6:9c:f4:1d:09:5c:87:f3:fd:1f:cd:bf:e9:27:9e:
0f:8a:9f:7d:0a:05:09:55:42:0d:8d:23:5e:f0:c5:1b:d4:df:
ee:74:7d:f7:a9:a9:65:27:56:63:0c:2c:e7:10:8c:30:d0:50:
6e:07:c3:0c:2a:78:11:48:c1:ab:f6:59:21:60:a6:5d:84:32:
36:a7:90:63:92:cc:0a:eb:14:16:c9:e0:ad:9d:30:25:d9:92:
90:5c:c6:c2:35:c0:41:35:09:73:25:0d:dd:ad:db:7e:56:20:
43:d8:fa:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:09:01 2026 by rpki-client