Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: nKzjhaXWkB/NoPbMpNUvSMWqU0k9TElBbfofPrwf+OQ=
Subject key identifier: B2:30:1E:A8:57:B3:B0:F1:A7:A6:54:33:2D:FC:07:25:5C:BA:07:A7
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 019ED4994E46E6F770CB2505D057E77825C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 048B
Signing time: Wed 17 Jun 2026 08:01:17 +0000
Manifest this update: Wed 17 Jun 2026 08:01:17 +0000
Manifest next update: Thu 18 Jun 2026 08:01:17 +0000
Files and hashes: 1: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: x95MkqPaB4EYcnR4cG0l7Nkhj6bg+3Ab3w2NprtLKsw=)
2: Z5oga0vgbQ3IfY7AuGU9kvMREF8.roa (hash: S/HDTLw/C2HlzUoz5QYaSY1KLwcsf1KpKUZ68xZPy3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:99:4e:46:e6:f7:70:cb:25:05:d0:57:e7:78:25:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Jun 17 08:01:17 2026 GMT
Not After : Jun 18 08:01:17 2026 GMT
Subject: CN=b2301ea857b3b0f1a7a654332dfc07255cba07a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e4:1f:fb:7d:61:18:55:bf:e1:93:f4:64:b5:
a1:33:07:d1:4d:2b:f2:cb:a5:f3:ac:05:02:64:37:
f4:14:b9:67:be:31:18:ef:b5:99:20:19:a3:5a:ea:
5c:d1:d9:df:43:61:7d:86:a0:99:e1:dc:e0:7e:a6:
15:9d:07:ee:39:38:e3:52:ce:f5:d7:c2:1a:99:01:
55:12:97:e2:fd:b1:f4:69:02:9f:bb:c9:93:5d:84:
28:ba:04:77:ca:6f:02:63:86:bd:50:65:1b:3e:f9:
42:74:63:a7:ff:a2:05:72:ba:e8:e8:f0:a1:14:0e:
02:8f:47:68:a0:7f:f3:92:72:1f:34:d3:c9:f0:ec:
d1:70:16:94:ef:0e:5b:0e:75:8c:2d:62:cb:5a:27:
c2:71:e5:a1:55:6d:05:c7:ae:21:e5:59:6d:9d:9d:
24:03:6c:be:82:67:6d:f7:64:04:4f:31:3f:c5:6a:
9c:25:e2:db:25:8b:6f:1b:6e:90:8a:df:89:fe:09:
b5:70:dc:6b:e1:63:12:af:50:ae:48:c9:a1:eb:13:
a3:7f:13:7e:f4:dd:41:55:7e:28:38:6d:5c:aa:70:
40:86:3c:8f:67:07:c4:22:6e:09:6b:34:1f:25:59:
cf:b7:07:11:de:0e:ba:95:e1:de:b1:bd:b0:5d:b4:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:30:1E:A8:57:B3:B0:F1:A7:A6:54:33:2D:FC:07:25:5C:BA:07:A7
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:77:0a:dc:d9:6f:d0:9f:3c:44:11:55:ec:c6:a7:60:7d:96:
6c:18:24:3b:ad:f6:19:b5:83:3b:d9:23:00:21:81:c9:3e:ca:
70:eb:1f:74:3f:ce:7e:21:39:b2:5d:20:aa:ca:fe:77:e7:99:
66:48:9c:6f:52:17:bb:0c:62:4c:ce:fa:e1:d6:b7:c7:45:94:
89:86:df:5f:3f:25:39:76:f4:82:f1:59:68:4e:a5:b8:fb:36:
ce:02:9d:02:cf:7f:a6:bc:e6:ae:3a:3a:80:a4:5c:b6:a7:7a:
1c:5a:c8:7f:2a:6b:f2:23:bb:97:b2:85:80:33:c7:0c:ae:66:
e0:f7:f8:1d:f6:f3:ea:e0:b0:83:7d:f3:2b:9e:ac:50:b0:49:
ab:43:5e:7d:a8:2d:72:dd:94:da:f0:d6:94:be:5e:c1:d8:8a:
ac:7d:03:14:24:6b:e4:04:18:2b:4c:5e:71:84:89:6a:76:8f:
e7:a0:2a:d4:cf:5c:e7:cc:82:e0:d2:4e:9b:42:46:ba:e7:35:
62:a9:91:30:3e:31:c3:a3:7a:14:b8:a3:ae:2e:61:54:51:d3:
b0:d8:43:28:5d:c6:6f:1e:45:a9:28:61:71:6b:e4:ee:14:23:
31:6e:84:ff:f2:f9:ed:aa:bf:9c:84:74:0b:8b:ab:26:28:9d:
7b:63:31:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7UmU5G5vdwyyUF0FfneCXIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjE3YzgwODZiZTI5ZDUwZjgzYzhmZDhmYzkxN2IwMDlk
ZTNjODEwHhcNMjYwNjE3MDgwMTE3WhcNMjYwNjE4MDgwMTE3WjAzMTEwLwYDVQQD
EyhiMjMwMWVhODU3YjNiMGYxYTdhNjU0MzMyZGZjMDcyNTVjYmEwN2E3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOQf+31hGFW/4ZP0ZLWhMwfRTSvy
y6XzrAUCZDf0FLlnvjEY77WZIBmjWupc0dnfQ2F9hqCZ4dzgfqYVnQfuOTjjUs71
18IamQFVEpfi/bH0aQKfu8mTXYQougR3ym8CY4a9UGUbPvlCdGOn/6IFcrro6PCh
FA4Cj0dooH/zknIfNNPJ8OzRcBaU7w5bDnWMLWLLWifCceWhVW0Fx64h5VltnZ0k
A2y+gmdt92QETzE/xWqcJeLbJYtvG26Qit+J/gm1cNxr4WMSr1CuSMmh6xOjfxN+
9N1BVX4oOG1cqnBAhjyPZwfEIm4JazQfJVnPtwcR3g66leHesb2wXbS5NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLIwHqhXs7Dxp6ZUMy38ByVcugenMB8GA1UdIwQY
MBaAFBwhfICGvinVD4PI/Y/JF7AJ3jyBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1Zjkt
ZjM0YjMxZDNiNDNjLzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1ZjktZjM0YjMxZDNiNDNj
LzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3cK3Nlv
0J88RBFV7ManYH2WbBgkO632GbWDO9kjACGByT7KcOsfdD/OfiE5sl0gqsr+d+eZ
Zkicb1IXuwxiTM764da3x0WUiYbfXz8lOXb0gvFZaE6luPs2zgKdAs9/przmrjo6
gKRctqd6HFrIfypr8iO7l7KFgDPHDK5m4Pf4Hfbz6uCwg33zK56sULBJq0Nefagt
ct2U2vDWlL5ewdiKrH0DFCRr5AQYK0xecYSJanaP56Aq1M9c58yC4NJOm0JGuuc1
YqmRMD4xw6N6FLijri5hVFHTsNhDKF3Gbx5FqShhcWvk7hQjMW6E//L57aq/nIR0
C4urJiide2MxkA==
-----END CERTIFICATE-----
Generated at Wed Jun 17 16:52:07 2026 by rpki-client