Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
File: hto1bCqGENEdNM24pH0rkFGfvTU.mft (raw, json)
Hash identifier: HgNar1Q4bKkNfGrMKZCSs++wGWM3/V5xH9Skwd0GFnI=
Subject key identifier: 19:4A:DE:F2:5F:5D:36:7B:60:CD:E0:48:B6:3E:EB:F6:44:E1:4C:88
Authority key identifier: 86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
Certificate issuer: /CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Certificate serial: 019D9AABAD5ACC6BFEAE084087FDDA7642E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
Manifest number: 15C9
Signing time: Fri 17 Apr 2026 09:00:35 +0000
Manifest this update: Fri 17 Apr 2026 09:00:35 +0000
Manifest next update: Sat 18 Apr 2026 09:00:35 +0000
Files and hashes: 1: IDPY6eTDdLBQuL9VGAcEC-fDNk4.roa (hash: /GSM9iyQcMrc7fSWc8netDxH1YSxmTdh4UOLgqibrf0=)
2: hto1bCqGENEdNM24pH0rkFGfvTU.crl (hash: kjvPN3JDaQOzqmVEApKrxRZ8qcHTcsE+IRELgrA82oI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:ad:5a:cc:6b:fe:ae:08:40:87:fd:da:76:42:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Validity
Not Before: Apr 17 09:00:35 2026 GMT
Not After : Apr 18 09:00:35 2026 GMT
Subject: CN=194adef25f5d367b60cde048b63eebf644e14c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:12:45:15:8d:55:cc:2c:14:df:13:63:0b:04:
60:e6:65:50:43:10:5c:43:11:cc:8e:c4:bf:1b:5b:
c2:e0:34:3a:a0:c8:f7:7b:2d:23:ab:49:d3:e4:77:
da:da:f9:68:71:c5:ce:ee:45:ae:fb:fb:33:ee:61:
e2:17:03:bf:14:c1:08:42:75:4a:24:19:ea:5e:57:
4c:ef:67:7a:7e:1a:ab:30:e4:fe:8f:60:ed:0c:c9:
cd:0d:7f:2a:19:27:a3:c5:cf:2d:58:26:31:f6:c7:
ec:a1:66:c7:8a:d5:3c:f2:c1:1b:07:57:15:99:f6:
04:ff:3b:ad:74:91:9a:3f:47:a8:51:93:5b:dd:38:
29:3c:50:96:7f:2a:a3:70:d6:fc:0b:24:49:c8:80:
1e:9c:b9:94:71:e1:9a:50:78:5e:ad:68:0f:91:c4:
b9:4b:47:54:ce:07:4c:c0:74:f5:84:3c:d3:f0:90:
b9:d8:1a:d6:44:5f:39:71:61:c3:12:2e:21:e6:da:
b0:72:eb:fc:9e:ec:47:2a:5f:12:94:b8:78:ed:6a:
39:6f:dc:17:b4:67:07:d1:95:62:ac:87:3f:52:1c:
d4:b5:35:6c:81:cc:be:82:26:7e:27:3b:3f:68:c7:
13:f0:9d:4a:42:8c:ea:be:3d:1a:cc:81:2e:cf:7c:
b5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4A:DE:F2:5F:5D:36:7B:60:CD:E0:48:B6:3E:EB:F6:44:E1:4C:88
X509v3 Authority Key Identifier:
keyid:86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:d8:6c:b6:b5:0b:98:21:3f:b7:49:1f:af:3c:e3:e4:e1:a8:
cb:78:7e:f6:64:8f:9d:fc:71:ab:d9:c0:02:c9:ed:5d:73:93:
0e:a3:90:58:8a:56:2f:00:6c:93:91:ba:7a:ba:f1:d1:d8:f6:
49:11:d8:b9:97:2d:7f:20:6b:6a:d2:e7:eb:ec:da:a9:7e:66:
39:5a:54:7e:e5:87:2e:b1:51:92:43:dd:50:a4:79:46:88:51:
eb:cf:b4:1e:6b:9e:97:50:14:32:f8:06:39:56:cd:df:97:4c:
bc:e9:e3:ec:27:d2:11:09:4e:ff:da:84:08:71:93:91:e2:3b:
ca:1a:8d:68:3c:37:05:e7:62:0f:19:fe:86:48:d2:d1:4b:ba:
0d:61:2d:d6:90:4f:3c:c8:90:d0:ae:ab:e5:fb:7d:3f:9b:62:
00:9b:c9:a8:15:8a:27:85:30:7f:c8:2f:b4:bc:f6:6f:b0:e8:
78:3d:70:39:14:bc:65:9a:ee:ea:bc:d5:44:ed:aa:56:24:76:
f8:c7:c6:9c:99:aa:fc:91:23:2a:51:6c:bf:ba:2a:6f:1b:33:
27:d5:52:11:08:8e:e1:7f:fe:a7:bd:67:dd:bb:83:81:08:bd:
3a:e3:a7:fd:ad:0d:96:9d:8e:44:14:0f:08:18:68:b0:e9:b5:
b2:16:e4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:22:21 2026 by rpki-client