Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
File: HkQmt06M9v_e23sGBBgIMqhiXzI.mft (raw, json)
Hash identifier: GOBH9KKCKdyeqBb20HLrKgVKfxY52tUAvRsX+lvCY9g=
Subject key identifier: 97:6C:8C:6F:C3:1B:59:D4:3C:3E:4D:53:08:E9:F9:30:06:A7:4D:39
Authority key identifier: 1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32
Certificate issuer: /CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
Certificate serial: 019D98F43F3EC799DAB9304A36B953BF38E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
Manifest number: 09D2
Signing time: Fri 17 Apr 2026 01:00:36 +0000
Manifest this update: Fri 17 Apr 2026 01:00:36 +0000
Manifest next update: Sat 18 Apr 2026 01:00:36 +0000
Files and hashes: 1: HkQmt06M9v_e23sGBBgIMqhiXzI.crl (hash: TBfdNB17Ak2L1UFzEgevM6LB0KkIrAdkYrWIHZzSd4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:3f:3e:c7:99:da:b9:30:4a:36:b9:53:bf:38:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
Validity
Not Before: Apr 17 01:00:36 2026 GMT
Not After : Apr 18 01:00:36 2026 GMT
Subject: CN=976c8c6fc31b59d43c3e4d5308e9f93006a74d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a6:0e:9e:65:8c:c1:84:b8:48:a2:31:7b:ba:
62:b7:3d:76:cf:7f:a6:a2:ec:c1:b6:ee:a9:02:2a:
99:cd:b9:e6:ce:84:19:f3:e3:9f:54:ea:f9:c7:79:
6c:ff:c1:4f:ab:91:56:57:12:85:dc:73:68:89:07:
c2:1f:63:80:09:ea:0c:ab:93:8f:96:24:78:99:44:
8f:eb:fb:5d:1b:46:23:97:98:f7:b2:8a:ab:1f:42:
a8:b9:4a:5b:01:77:9a:22:e0:03:25:a7:ec:05:ed:
56:59:3e:17:04:59:ac:06:2c:bb:64:6b:a8:e7:8d:
4d:03:f3:0c:3b:f1:1e:80:47:03:3b:15:d4:45:80:
ac:a2:eb:67:6b:3b:7e:6b:fc:43:fc:d1:e0:79:c0:
84:17:3c:81:d4:d8:d2:a6:2c:47:17:37:4d:13:b5:
6b:c2:8d:a7:17:3a:24:dd:92:36:11:19:48:c7:89:
08:53:f4:ae:ef:ac:d7:bc:39:6f:70:be:97:96:9d:
25:27:5f:60:8b:95:5a:94:55:d7:6a:b8:84:6b:8c:
3e:d2:11:cd:a7:ce:e2:5b:b6:c4:3a:44:1e:22:f6:
42:b9:54:98:47:78:e8:66:38:29:82:c4:f9:f3:21:
60:66:d8:99:d1:eb:56:94:24:96:61:ea:f7:f9:70:
7d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:6C:8C:6F:C3:1B:59:D4:3C:3E:4D:53:08:E9:F9:30:06:A7:4D:39
X509v3 Authority Key Identifier:
keyid:1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:4e:06:03:da:bb:ca:4d:0a:b7:62:d1:90:31:14:df:b8:ab:
f7:5f:25:99:5b:74:38:6a:24:f4:81:17:88:b3:d5:95:99:2e:
d6:d1:bf:d6:17:65:e5:2c:1c:af:4f:21:cb:cb:10:3c:d2:48:
14:cf:79:19:95:84:55:b1:33:e2:88:cd:18:6c:23:42:dd:76:
ae:fd:7f:52:56:86:6a:d7:b4:1b:7a:1f:5f:ab:84:d8:d5:67:
c0:35:e0:5b:9b:d3:24:c4:4b:f2:f1:ef:8a:de:0f:57:ea:5d:
f1:af:71:f0:4c:4b:01:a2:de:9a:49:27:84:fd:b0:1e:09:40:
07:b4:64:d1:97:f6:07:cf:69:a7:8a:c8:d7:3f:e6:e6:c2:f7:
81:df:22:51:a8:1a:97:fd:1e:84:cb:e9:09:e6:bc:7f:73:07:
21:43:dc:33:30:47:54:ae:c1:fe:5a:3e:cc:98:58:78:88:1c:
47:3b:8e:98:b5:05:3f:fa:15:d5:b0:93:07:f3:10:5d:05:30:
e3:a7:dc:fa:0c:27:d2:91:a3:dd:cd:c5:1d:0d:d3:3d:c9:1d:
6f:82:a2:17:04:8c:65:3b:43:ff:7a:3e:11:30:d5:88:cf:ee:
25:f5:3e:81:a1:13:45:ce:02:60:16:a0:4f:6b:26:91:b8:17:
61:e9:2b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:09:16 2026 by rpki-client