Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: IQRih+w7ob0pBFiurEJPZFRFDNW2N2DFZE54/KC0XQ8=
Subject key identifier: C7:CA:02:91:7F:2F:2B:17:36:AB:C0:33:E5:DC:C3:EB:78:FA:FD:61
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019DA4F9300AC333B14D322D5146CFE9540E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 04DE
Signing time: Sun 19 Apr 2026 09:01:26 +0000
Manifest this update: Sun 19 Apr 2026 09:01:26 +0000
Manifest next update: Mon 20 Apr 2026 09:01:26 +0000
Files and hashes: 1: 1-eF7e7FBTv1kNZvAqKgKcchP_r8.roa (hash: NJzA8zp4PiibAViDgdZjRywfinrsmcRR8mpxvA7kUN8=)
2: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: QdIK2RT45Y5ki1a0QKu6aqDg+KBFXTcsioVhG7AUcBM=)
3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f9:30:0a:c3:33:b1:4d:32:2d:51:46:cf:e9:54:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Apr 19 09:01:26 2026 GMT
Not After : Apr 20 09:01:26 2026 GMT
Subject: CN=c7ca02917f2f2b1736abc033e5dcc3eb78fafd61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:09:92:aa:e4:a6:e7:85:b2:c8:66:69:54:56:
a4:84:e4:72:ef:a9:b4:fd:2c:77:f0:0e:cb:38:91:
14:45:24:66:72:2f:90:60:76:0a:bd:4a:2c:ad:af:
5c:48:f7:c4:29:02:28:cc:30:59:28:ce:da:9f:98:
30:f3:f6:69:86:eb:29:c0:25:96:c3:b8:1d:6c:5c:
df:aa:9b:64:18:1d:f8:aa:d5:c7:5e:0b:20:2f:07:
30:93:4a:9e:17:dd:46:5c:0a:54:5d:dd:58:fd:fc:
57:32:1c:fb:48:5c:7a:01:53:bf:e8:59:0d:7a:d9:
7d:90:31:c6:3c:8f:55:12:6d:41:3d:f3:e8:e7:54:
9f:8e:d8:46:28:99:34:65:a6:71:17:e1:66:4c:64:
10:23:e8:b3:6a:cc:39:e5:9f:0a:13:ab:14:5d:a5:
f6:d6:a5:31:71:a3:c1:4b:a6:79:98:ab:4c:09:05:
1e:1a:4c:30:ff:7e:1c:c3:fa:01:90:30:a8:40:74:
61:a5:e3:c1:bf:2f:f1:35:f9:16:d7:fa:c5:a0:f4:
71:f8:16:f5:d0:52:ce:dd:e1:03:ad:5b:45:94:d5:
18:b0:6f:79:c3:fa:b5:29:26:1f:e8:30:b3:71:66:
40:60:ec:76:25:70:cb:26:3b:e1:58:56:be:5b:ee:
3f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CA:02:91:7F:2F:2B:17:36:AB:C0:33:E5:DC:C3:EB:78:FA:FD:61
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:ac:15:cd:79:f2:77:1e:7e:3c:16:e4:2b:81:42:aa:a8:c9:
e4:20:89:42:8f:4c:af:76:25:40:dd:d6:3e:0f:98:ec:1a:68:
4d:9b:95:88:dc:45:36:2b:40:d1:18:ae:3b:9c:09:22:ac:b2:
09:3d:0d:c0:12:d1:5f:08:ee:72:3e:22:fb:19:ba:f1:c6:ad:
c2:78:11:94:61:19:33:2d:f8:22:c4:78:a2:41:50:ed:cb:0a:
d8:f4:a2:0e:c0:62:83:be:b1:a7:33:12:d3:42:d6:9d:d3:8f:
bc:ed:ef:4b:ca:6f:78:5f:a7:51:9d:a4:90:31:d5:7d:e3:14:
35:1a:21:ce:44:98:93:ec:17:ac:df:33:27:d5:e4:8a:21:a5:
66:6d:66:0c:6f:ae:26:b1:3b:c2:26:94:da:4f:26:c9:fa:18:
9e:14:5e:e6:55:a1:0a:36:91:90:41:2b:8a:1c:7b:a4:22:69:
a3:f6:71:04:1f:a3:4e:c1:20:74:1c:fe:1c:35:0f:a0:bb:3a:
5d:00:c7:67:16:3f:00:98:4a:0c:29:e8:29:a7:38:7b:9e:cf:
5b:b9:d6:ca:93:7c:72:08:27:43:b8:63:6b:bd:96:2f:a8:bf:
ad:85:66:b4:5d:38:4b:0e:5f:6f:90:4a:9f:bc:98:e0:08:16:
9c:a5:9e:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:19:11 2026 by rpki-client