Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
File: HKrZOQiq2NJG62n35mqnDeW9Whc.mft (raw, json)
Hash identifier: rwxlqRvA/6deb0oFSc+TAy0gkAT33xM0YPDCfbav+xU=
Subject key identifier: 8F:2B:C2:47:EE:0C:8C:89:E2:3A:F3:F9:90:70:67:0E:A1:B3:E9:C1
Authority key identifier: 1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
Certificate issuer: /CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Certificate serial: 019D9C2D49E4ED33983B6991BF7246542DA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
Manifest number: 0FA8
Signing time: Fri 17 Apr 2026 16:01:46 +0000
Manifest this update: Fri 17 Apr 2026 16:01:46 +0000
Manifest next update: Sat 18 Apr 2026 16:01:46 +0000
Files and hashes: 1: HKrZOQiq2NJG62n35mqnDeW9Whc.crl (hash: RvauL4bHTSVufCSigTQivHeptdIB5Eg6J73CQNfPfrQ=)
2: aXCzk9LRBuI3wsL45rGUGJ3bjp0.roa (hash: ij7uLV/NpVqVA9kRJtMaYvHqkZsLcjLoJ4SciqjfuAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2d:49:e4:ed:33:98:3b:69:91:bf:72:46:54:2d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Validity
Not Before: Apr 17 16:01:46 2026 GMT
Not After : Apr 18 16:01:46 2026 GMT
Subject: CN=8f2bc247ee0c8c89e23af3f99070670ea1b3e9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:36:25:16:be:87:3a:2e:26:15:0a:21:e7:84:
df:44:1d:a4:ba:f3:2d:a5:1f:f4:56:8f:e0:d0:0f:
d5:39:63:2c:6c:15:45:60:1a:4c:f8:24:ad:12:91:
b1:87:2b:17:d2:c7:83:99:76:54:a8:c8:a3:ba:74:
82:5c:3d:33:3a:04:fc:4e:e7:46:11:74:4d:c8:2b:
4c:d7:ff:50:ca:c2:43:e9:18:7d:12:70:85:ba:c4:
f1:7e:b4:42:cb:cd:59:36:43:83:75:7e:2c:f3:0a:
47:64:54:92:4e:3a:29:1d:a5:2c:6f:29:9f:90:c1:
8f:43:95:b9:91:ec:74:71:49:1f:1e:35:85:ee:40:
38:18:c8:b1:2b:c2:99:91:1c:18:74:25:20:99:b3:
3b:50:8f:2c:52:28:cc:19:5f:36:b0:c2:2a:7f:0e:
76:51:14:6a:11:19:6d:f7:99:1b:f3:b2:76:1e:75:
73:0e:92:2f:ed:b1:b1:1d:fa:f7:3b:8b:2d:3d:fd:
fc:c0:08:33:06:6d:79:02:1a:7b:39:9c:22:6f:d6:
8e:cf:35:64:12:5e:8e:1b:40:3e:5e:c7:8f:c1:48:
82:18:00:64:e8:4a:89:3c:ee:c4:67:a0:eb:c1:4b:
29:50:10:95:ee:03:58:ad:0d:f8:94:2b:86:99:fa:
3b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2B:C2:47:EE:0C:8C:89:E2:3A:F3:F9:90:70:67:0E:A1:B3:E9:C1
X509v3 Authority Key Identifier:
keyid:1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:36:81:29:21:63:4a:02:6b:0d:f9:c8:19:ba:5b:52:f0:08:
3c:7c:6a:d0:83:05:cb:c5:8e:3f:1d:6f:5d:71:4f:b9:cb:64:
31:55:76:a8:a0:5f:49:af:68:a0:98:c2:a6:9c:24:9e:11:0a:
5a:06:14:06:31:84:f1:0e:65:a0:25:60:85:6c:de:39:17:62:
6c:8b:39:4d:e0:49:44:16:ff:a3:8d:85:9b:38:16:9f:f7:9c:
fd:55:ee:32:2c:55:5d:0f:a5:2f:89:50:20:0a:d7:3b:2b:b9:
12:0d:35:1e:86:89:66:c7:38:e5:05:76:58:06:dd:9c:3f:54:
33:5f:20:af:54:e3:e2:6a:86:b8:f6:88:e9:67:7a:9e:c8:d0:
ef:4d:4c:20:b7:92:3b:be:2b:d9:ae:2c:89:1d:7f:8c:45:7c:
2c:39:fb:46:45:d5:98:6e:8b:dc:28:cc:64:8a:24:ee:c6:91:
1d:28:fd:34:c4:ed:8d:6e:7e:5c:a0:ac:7a:da:31:46:8a:06:
76:a9:39:14:cb:7e:b9:9d:d2:37:35:92:7f:10:e4:d1:f7:4d:
44:5e:b7:e0:b1:cd:67:7d:ab:48:db:9a:dd:7e:db:59:d6:02:
39:5d:0a:27:c4:53:26:1f:af:26:86:20:38:d4:8c:c8:c4:39:
1c:68:ff:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cLUnk7TOYO2mRv3JGVC2lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYWFkOTM5MDhhYWQ4ZDI0NmViNjlmN2U2NmFhNzBkZTVi
ZDVhMTcwHhcNMjYwNDE3MTYwMTQ2WhcNMjYwNDE4MTYwMTQ2WjAzMTEwLwYDVQQD
Eyg4ZjJiYzI0N2VlMGM4Yzg5ZTIzYWYzZjk5MDcwNjcwZWExYjNlOWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujYlFr6HOi4mFQoh54TfRB2kuvMt
pR/0Vo/g0A/VOWMsbBVFYBpM+CStEpGxhysX0seDmXZUqMijunSCXD0zOgT8TudG
EXRNyCtM1/9QysJD6Rh9EnCFusTxfrRCy81ZNkODdX4s8wpHZFSSTjopHaUsbymf
kMGPQ5W5kex0cUkfHjWF7kA4GMixK8KZkRwYdCUgmbM7UI8sUijMGV82sMIqfw52
URRqERlt95kb87J2HnVzDpIv7bGxHfr3O4stPf38wAgzBm15Ahp7OZwib9aOzzVk
El6OG0A+XsePwUiCGABk6EqJPO7EZ6DrwUspUBCV7gNYrQ34lCuGmfo7yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8rwkfuDIyJ4jrz+ZBwZw6hs+nBMB8GA1UdIwQY
MBaAFByq2TkIqtjSRutp9+Zqpw3lvVoXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEtyWk9RaXEyTkpHNjJuMzVtcW5EZVc5V2hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9hYmI2Y2EtMWExMS00YmE1LTllZTMt
YTc5OGJkYzczMTFmLzEvSEtyWk9RaXEyTkpHNjJuMzVtcW5EZVc5V2hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9hYmI2Y2EtMWExMS00YmE1LTllZTMtYTc5OGJkYzczMTFm
LzEvSEtyWk9RaXEyTkpHNjJuMzVtcW5EZVc5V2hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASjaBKSFj
SgJrDfnIGbpbUvAIPHxq0IMFy8WOPx1vXXFPuctkMVV2qKBfSa9ooJjCppwknhEK
WgYUBjGE8Q5loCVghWzeORdibIs5TeBJRBb/o42FmzgWn/ec/VXuMixVXQ+lL4lQ
IArXOyu5Eg01HoaJZsc45QV2WAbdnD9UM18gr1Tj4mqGuPaI6Wd6nsjQ701MILeS
O74r2a4siR1/jEV8LDn7RkXVmG6L3CjMZIok7saRHSj9NMTtjW5+XKCsetoxRooG
dqk5FMt+uZ3SNzWSfxDk0fdNRF634LHNZ32rSNua3X7bWdYCOV0KJ8RTJh+vJoYg
ONSMyMQ5HGj/yg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 19:47:17 2026 by rpki-client