Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
File: HkQmt06M9v_e23sGBBgIMqhiXzI.mft (raw, json)
Hash identifier: MKXzAralsINxJkUI4rxUh4UXKCHytw4YP7t7qkNMAGA=
Subject key identifier: 4A:49:3A:E6:F5:70:27:66:B9:4B:3A:50:1F:7B:16:92:DD:51:2B:BA
Authority key identifier: 1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32
Certificate issuer: /CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
Certificate serial: 019CAB6AF6F28DD1E2A9856D9EC149EFBF2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
Manifest number: 0957
Signing time: Sun 01 Mar 2026 22:00:39 +0000
Manifest this update: Sun 01 Mar 2026 22:00:39 +0000
Manifest next update: Mon 02 Mar 2026 22:00:39 +0000
Files and hashes: 1: HkQmt06M9v_e23sGBBgIMqhiXzI.crl (hash: to5nzYW97q5mJA8XSc3EWD/jUFhBXnKHUngz72hXWxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:f6:f2:8d:d1:e2:a9:85:6d:9e:c1:49:ef:bf:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
Validity
Not Before: Mar 1 22:00:39 2026 GMT
Not After : Mar 2 22:00:39 2026 GMT
Subject: CN=4a493ae6f5702766b94b3a501f7b1692dd512bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:ab:15:51:6e:2b:e1:fc:a2:8b:88:92:c8:
f8:8f:4f:44:6a:f0:b6:1b:fa:a8:45:3f:21:3d:c2:
49:4e:4e:68:46:31:86:18:8a:51:88:9f:06:e2:d7:
ae:41:f4:a6:11:98:25:e4:8a:48:21:11:18:63:c2:
99:d0:7c:55:75:fa:f4:8b:e3:23:31:6f:da:cb:dd:
4a:12:a3:fc:31:95:7a:44:d1:09:61:0e:39:b6:33:
32:ef:a9:53:5d:7d:0f:e4:19:d1:41:a1:58:2b:27:
af:07:ad:d3:01:59:06:5a:b4:6c:a7:24:e7:28:99:
b4:a4:fe:82:59:6c:10:c0:a9:69:75:3d:96:74:f5:
0f:8b:4a:f4:9f:4c:b4:33:5b:cc:1c:f7:ce:87:4e:
79:15:dd:33:45:12:bd:80:66:16:bf:53:1c:32:7d:
a5:1f:97:3b:01:3b:11:43:1e:45:a7:e7:f3:84:e9:
c2:4e:2a:16:fa:d2:9d:99:74:b7:8f:57:e1:0b:a1:
e1:0d:82:4e:00:18:4d:53:76:db:02:14:53:b1:67:
f8:43:ac:43:35:5e:e4:83:8b:c7:69:a8:fa:82:c6:
2f:c7:56:9b:06:1c:5b:c3:ef:1c:18:14:d6:0d:2b:
ea:51:61:b8:b0:07:45:48:06:a6:5c:5f:8a:7d:71:
4b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:49:3A:E6:F5:70:27:66:B9:4B:3A:50:1F:7B:16:92:DD:51:2B:BA
X509v3 Authority Key Identifier:
keyid:1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:8d:b5:50:4f:86:04:3b:b8:f3:af:46:4b:cf:2a:8f:bf:f8:
e0:f2:6f:6b:18:24:cb:87:e8:58:eb:c1:b9:7e:3b:2c:9e:fd:
6a:e0:2b:05:03:46:cc:67:a9:cb:53:fb:c3:75:b2:df:0a:42:
89:2b:3c:0b:9e:de:d4:88:8e:48:10:13:96:a5:6c:a8:72:06:
77:83:6d:ff:1e:ed:87:13:a8:a7:37:d8:79:f5:c1:63:a9:6f:
3e:e4:6e:5a:28:75:46:5c:03:44:48:5c:6f:c5:b4:a5:bd:97:
9a:cf:6d:0a:19:26:53:e9:62:1d:da:61:09:d7:19:64:b0:d6:
46:3c:ec:e4:a8:c8:54:37:32:ee:90:a6:d6:4a:f8:3b:d3:20:
f4:cd:9b:dd:35:67:24:05:36:ee:da:52:9b:dc:44:a8:75:ea:
08:ba:af:c3:5d:61:6c:0d:e5:f8:e7:12:5d:ff:31:21:5b:36:
db:25:44:a0:f7:9a:5f:05:fa:b8:e0:01:da:6f:32:51:ef:77:
8c:22:a2:11:0a:9c:da:67:c0:c9:d0:82:1f:53:46:d6:e7:be:
0e:b6:30:a1:fc:fc:c5:c7:9c:ff:21:c7:73:d8:9b:0c:81:f4:
ec:cd:9a:aa:5c:5d:5f:2e:a4:c0:92:19:60:d2:e2:6a:f7:1f:
70:d2:7c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:25:03 2026 by rpki-client