Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: v2UIxr6TndBjs9jal5Bru4zp0AU6rPVo33/IEIu2HX0=
Subject key identifier: 82:CE:38:0A:64:00:2E:5E:C2:09:2F:11:FE:17:39:4A:3A:51:3A:2A
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 019D9A3DE171B8A68DCABA2321E626762F66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 1856
Signing time: Fri 17 Apr 2026 07:00:39 +0000
Manifest this update: Fri 17 Apr 2026 07:00:39 +0000
Manifest next update: Sat 18 Apr 2026 07:00:39 +0000
Files and hashes: 1: HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa (hash: cUV79+nq1UfEgnpECvrj1jXV8gIvKA75fQt4Y8wK7Xg=)
2: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: NnEp1YYi4fKVfBB8U+J9zZ5bJgwWFDRNyFBbGcnBYyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3d:e1:71:b8:a6:8d:ca:ba:23:21:e6:26:76:2f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Apr 17 07:00:39 2026 GMT
Not After : Apr 18 07:00:39 2026 GMT
Subject: CN=82ce380a64002e5ec2092f11fe17394a3a513a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cd:ad:63:e1:6c:24:92:2f:17:b5:7e:d3:6f:
81:10:47:4c:6c:1c:06:8d:a7:13:1d:32:b1:a7:c0:
8d:a8:cd:84:2a:ce:00:b9:0d:ef:a5:82:c8:21:70:
b1:52:35:21:70:7e:89:2e:0a:52:16:40:ed:5c:cc:
30:d0:e9:e3:f4:33:7f:e6:d3:af:2b:6b:3f:4c:2e:
0a:10:ff:55:d8:c3:61:72:b4:8e:4b:ab:c9:e2:94:
2e:67:af:75:47:f5:f2:27:e5:01:a1:95:f3:2f:65:
00:a4:ed:48:bd:25:6d:88:5a:87:63:a4:25:f6:a5:
89:d9:60:f3:bb:75:a0:60:61:c8:eb:e5:b9:5a:6f:
9a:f5:15:b4:25:bb:a5:6c:5e:68:a7:08:6e:88:d9:
c4:bf:62:be:69:84:af:3a:fe:fc:e2:d0:0c:1b:50:
32:e2:aa:5e:a9:53:d7:33:30:9a:0f:24:74:72:86:
e3:41:b1:ca:0a:0d:23:11:09:63:b9:63:68:5c:2d:
8d:5e:c4:73:84:59:a5:aa:97:52:3a:93:89:77:a9:
ff:fd:43:12:67:e6:a1:11:a4:b3:96:0c:02:79:19:
05:6e:5b:0e:94:7d:c3:fe:40:29:9b:a8:89:67:71:
e1:9b:50:ac:7e:d0:46:de:90:68:20:b5:22:1c:33:
80:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CE:38:0A:64:00:2E:5E:C2:09:2F:11:FE:17:39:4A:3A:51:3A:2A
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:25:22:41:89:05:e7:44:75:2a:d3:30:dd:ff:30:66:73:bd:
0c:8b:c0:b6:e8:37:c7:c8:a0:2e:0a:90:26:32:02:b0:a5:52:
c0:7e:33:ff:e4:96:c5:88:ba:2f:87:eb:34:72:3c:53:3b:f0:
88:d7:04:c4:0b:2e:de:bf:2e:a2:42:28:19:fd:4b:f2:ea:a4:
a2:11:6c:cd:7d:7a:44:38:18:07:53:cd:e4:af:35:d0:a1:f0:
f7:46:fd:54:96:1b:33:f2:a1:cf:db:ba:0a:69:ac:b7:b9:f9:
c6:ab:c0:45:65:37:fb:ff:86:bf:51:bb:7d:a1:03:0d:8f:b1:
55:96:2a:8f:42:78:d8:a3:d8:82:75:9e:39:15:06:01:b4:fc:
30:8d:35:a3:56:f3:39:08:9e:a4:3a:92:85:c7:eb:2e:3e:66:
58:29:75:0d:52:a8:9e:b3:54:f4:65:7b:c9:3e:c8:a3:6d:92:
9a:4d:90:63:72:a6:a8:60:15:5f:b4:ea:fe:d1:f4:82:9d:90:
21:37:17:de:3e:70:e4:cd:23:ba:5a:7a:a5:41:55:d6:07:2f:
6d:00:77:f8:e6:ed:31:aa:59:57:9a:a8:99:bd:cc:67:69:d2:
e7:08:94:02:98:39:19:52:6a:9a:67:5e:d8:0f:ca:27:af:63:
fb:92:15:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:29:12 2026 by rpki-client