Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
File: HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json)
Hash identifier: 5Gc2PNBYxAXPY6DY6775ZOmPtHIh1Iig6pGI57UHilM=
Subject key identifier: CC:38:A1:75:C2:BA:E8:EA:BB:40:69:5F:C5:8E:B6:05:12:20:25:0E
Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
Certificate issuer: /CN=1c24f1caafb3208eb827a07826417bcb9493412f
Certificate serial: 019D992B8DB7E3294D80848395D32C6A69E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
Manifest number: 0837
Signing time: Fri 17 Apr 2026 02:01:01 +0000
Manifest this update: Fri 17 Apr 2026 02:01:01 +0000
Manifest next update: Sat 18 Apr 2026 02:01:01 +0000
Files and hashes: 1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: RIDGCH3qa/0b/z1LmItNove0zN+IKDOclskLbs7AMXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:8d:b7:e3:29:4d:80:84:83:95:d3:2c:6a:69:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f
Validity
Not Before: Apr 17 02:01:01 2026 GMT
Not After : Apr 18 02:01:01 2026 GMT
Subject: CN=cc38a175c2bae8eabb40695fc58eb6051220250e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:81:58:aa:4b:f4:af:6b:56:87:aa:ef:b8:7e:
67:98:a3:77:2d:fd:f6:b4:bb:c6:6f:32:19:6f:45:
a7:62:0c:63:46:48:bc:ff:ff:0a:50:1e:bc:69:95:
e8:bd:68:5b:75:c8:0e:4a:b4:ea:ce:17:f7:cc:2c:
bb:cc:c4:88:67:2b:cb:97:97:5e:b7:a1:33:9a:3a:
56:d9:2e:88:f7:a4:7e:8f:5b:d5:c7:7f:58:5f:43:
f1:61:88:b1:0f:78:ca:cd:4f:5f:01:83:91:98:3f:
4e:f2:c1:49:c5:29:5c:b2:25:5f:1a:c6:ed:a3:5e:
22:30:f5:4b:65:83:74:e0:3a:51:0f:aa:33:3e:59:
1a:f9:5d:85:a1:88:74:6c:bb:1b:1b:b7:d1:68:3f:
b3:63:41:3b:85:27:48:f5:f6:d6:d3:72:33:bc:f2:
87:9b:d0:3b:dd:66:9a:d8:34:cc:09:32:9a:02:c7:
04:ee:c3:06:8e:09:35:c0:1d:4c:70:af:b5:c4:59:
9b:52:23:2d:a6:04:31:15:eb:2a:d3:9f:91:78:8e:
e9:ce:e0:fb:c9:d4:1c:09:5f:6f:a4:1e:51:ad:20:
48:ca:0a:8f:f2:25:6d:a5:bb:7d:7e:9d:16:3a:9d:
54:2c:dc:8d:97:e4:f5:61:fe:28:1f:90:c5:2e:08:
27:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:38:A1:75:C2:BA:E8:EA:BB:40:69:5F:C5:8E:B6:05:12:20:25:0E
X509v3 Authority Key Identifier:
keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:42:de:5f:c9:a5:9b:02:14:3a:e5:63:40:a1:4c:95:ad:60:
9f:6b:c7:a7:dd:03:72:55:68:9f:c3:7e:07:7a:e6:29:f0:e9:
8f:fe:3c:20:83:b4:a2:05:b3:cb:bc:04:02:77:83:18:5c:28:
1c:84:2d:f5:44:31:3a:72:0a:40:38:68:c0:ed:f7:e4:ca:18:
c0:93:2d:6a:46:fe:ba:3c:c1:fb:f1:56:64:49:ba:b6:b2:f6:
b8:1c:70:ba:ef:26:7f:14:b0:7f:37:a3:f2:0f:be:63:6e:84:
0a:7e:7a:7c:0f:7b:cf:dc:37:45:db:80:30:a8:46:48:ea:1a:
23:9a:fe:fd:9a:6e:91:22:24:79:27:ff:43:09:00:44:c5:3d:
28:e3:e7:36:4e:6a:18:12:cf:4d:5c:00:fe:e7:8b:7b:65:e1:
5e:9e:6a:f3:54:fb:e5:4d:f9:c9:ab:df:d1:6c:24:c8:be:a3:
55:58:5b:de:3b:3c:72:8b:14:4c:80:c9:65:1c:a4:85:0b:b1:
a1:ab:ba:a0:7a:17:b1:1f:0c:81:f0:eb:43:26:37:e2:df:56:
34:39:92:78:f5:65:29:90:67:81:f3:30:ef:75:3a:18:cb:f1:
92:1a:96:c0:d0:91:cb:0e:15:80:11:d2:43:ed:fd:5d:47:1c:
28:54:33:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:09:09 2026 by rpki-client