Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: fc3qTFp/YeGQbRYgq/l+iFlVGurU2ObT+aK1HWW/1ko=
Subject key identifier: 6C:C3:72:B8:1B:BD:2E:11:A0:AB:BB:8A:77:39:06:F4:DF:04:2E:0A
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 019D9BBE63D96A5D58B2E2F37B5B599BC978
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 03E9
Signing time: Fri 17 Apr 2026 14:00:39 +0000
Manifest this update: Fri 17 Apr 2026 14:00:39 +0000
Manifest next update: Sat 18 Apr 2026 14:00:39 +0000
Files and hashes: 1: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: IIRu9vcS3nLrAG9C/gHBscvlfBnyZqvxPQOAQMsNcww=)
2: Z5oga0vgbQ3IfY7AuGU9kvMREF8.roa (hash: S/HDTLw/C2HlzUoz5QYaSY1KLwcsf1KpKUZ68xZPy3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:63:d9:6a:5d:58:b2:e2:f3:7b:5b:59:9b:c9:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Apr 17 14:00:39 2026 GMT
Not After : Apr 18 14:00:39 2026 GMT
Subject: CN=6cc372b81bbd2e11a0abbb8a773906f4df042e0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:49:ad:4b:4d:6f:78:82:73:0b:36:9d:b4:
53:bb:8d:55:63:91:55:e4:19:f3:3a:1f:24:c0:1a:
bf:76:ef:cd:59:6d:15:c6:b6:ad:8f:da:8a:06:2b:
d7:a7:7d:3d:12:76:23:d7:ba:32:93:7b:57:d9:18:
b3:fb:15:9c:40:cf:b1:31:6b:5b:f7:a9:a8:87:9a:
6c:ab:5a:8c:31:95:16:78:f0:5e:08:9e:77:b2:92:
c8:6c:5e:bc:78:d2:99:93:61:a4:ac:62:0c:6f:91:
1b:85:5f:59:88:0b:3c:b2:ee:68:50:b2:52:b1:e9:
18:87:e5:1f:ae:24:7f:79:d5:84:ca:51:33:34:19:
a4:70:61:a4:f3:93:2c:3a:dd:90:3d:93:52:03:82:
bc:4a:fc:7b:79:36:3e:fc:15:1f:da:05:76:a9:fc:
a4:8c:8b:7e:ff:7c:ef:17:10:83:6f:57:76:19:5c:
f7:c2:87:bb:fe:bf:0c:41:ed:84:17:e0:e8:af:14:
76:a0:39:5c:27:36:68:37:70:24:00:7a:a4:b3:23:
bb:c2:1a:2f:24:40:95:fa:94:68:fe:bc:b7:21:9f:
db:05:62:f2:5e:95:59:34:7c:47:de:c3:bf:cb:2c:
e7:33:9d:6a:96:3e:9b:ba:84:fa:cd:6a:26:4c:7e:
e8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C3:72:B8:1B:BD:2E:11:A0:AB:BB:8A:77:39:06:F4:DF:04:2E:0A
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:f8:8a:dc:f0:86:e2:ae:17:23:da:d3:ae:9e:75:83:ac:96:
51:4c:40:69:4a:ac:bb:ca:4e:7b:0b:1a:da:66:19:12:84:09:
5b:dc:ee:1a:e2:df:0e:29:5c:70:34:9b:2d:87:cf:69:69:57:
92:f9:4b:55:fe:73:b6:46:11:81:f9:39:da:6e:2a:86:ae:8e:
51:16:94:44:48:de:bf:26:ab:ab:c0:14:9e:e5:c5:60:94:41:
e9:58:28:3f:0a:4e:5f:1f:46:12:e8:c1:fd:7e:81:36:85:41:
67:72:df:8b:60:70:22:f8:e6:17:08:89:68:61:a9:e7:53:10:
6e:83:0b:4f:12:23:f5:14:02:d5:51:93:ce:e9:ec:0c:7f:3d:
b6:b4:be:18:7f:2a:3b:93:f7:b4:66:17:bf:e1:95:a2:80:ea:
c5:04:c0:a2:fb:e2:2a:6e:7f:d6:fa:35:15:82:f2:fd:12:b3:
a5:27:69:84:f2:57:8b:fc:bd:14:f7:1f:19:4c:64:ed:1d:17:
63:a3:31:e6:a2:51:86:62:e5:1e:c9:7e:96:59:f2:40:7b:c4:
15:b4:0e:4c:ae:a5:9c:6d:f3:43:10:6b:81:c7:9b:41:b7:7e:
68:b1:14:c3:e4:39:03:96:9a:7d:b4:1b:5a:77:20:04:8c:3f:
e4:66:40:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:01:10 2026 by rpki-client