Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier: M0+WRbD4V+Fw3ElNbku0KH2WPleFc1TmxLURatmicEI=
Subject key identifier: 56:8D:F3:8E:BD:29:96:37:87:31:E0:9C:3C:0C:AE:68:AE:18:C2:59
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial: 019D992B535A6C159F54E4A3758E10AAD2FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number: 14D9
Signing time: Fri 17 Apr 2026 02:00:46 +0000
Manifest this update: Fri 17 Apr 2026 02:00:46 +0000
Manifest next update: Sat 18 Apr 2026 02:00:46 +0000
Files and hashes: 1: FMHMs5u6nqIr6z09yDsjzYxfks8.roa (hash: cXOK9Ev2UNFSti3Tqnxxgi2cL3wHqDi6S1Qe8D5ON6A=)
2: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: tgUA+UzH56QjdLTvGxYiKZXpX4WN1LhUDA9sK+Pp7vI=)
3: SgzTZO7h0qw0lQtLCLQDxdwtTHc.asa (hash: YpjRapR2fvquPrVNxyf5Ct4ddLeyNJ16sV02TNO6WCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:53:5a:6c:15:9f:54:e4:a3:75:8e:10:aa:d2:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
Validity
Not Before: Apr 17 02:00:46 2026 GMT
Not After : Apr 18 02:00:46 2026 GMT
Subject: CN=568df38ebd2996378731e09c3c0cae68ae18c259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f2:30:1e:ee:88:b8:2c:52:d5:4d:f4:bb:3c:
03:dc:4b:ef:8b:fb:4a:ef:8f:43:a7:d9:de:ad:32:
ba:93:12:1c:a3:83:a4:5b:15:51:ad:bf:f7:49:c9:
e2:56:26:97:03:6a:23:99:e8:fe:de:dc:83:ac:7b:
c5:d8:d8:47:9e:3e:b0:ae:7d:e8:4a:1d:d0:ed:91:
62:f8:1e:51:17:bf:b7:ef:e4:1d:ed:6e:01:24:05:
4f:13:d2:31:cb:9f:e3:e1:f7:ab:14:bc:71:22:6b:
73:58:55:fb:36:e1:de:1e:b7:46:b5:5c:9f:1c:8e:
96:20:15:a8:9e:2c:2a:b2:2f:5b:fc:d9:2f:9d:26:
ee:10:75:5b:96:c3:19:33:e9:ba:af:65:e9:f6:97:
9c:76:e0:2b:c8:e4:58:00:cb:c8:30:d5:db:2d:81:
1d:55:e1:ca:52:2f:96:86:a1:19:27:90:1c:27:3d:
1b:53:e6:fc:0a:4d:f7:04:fe:bd:59:91:09:9a:e3:
ed:e0:4b:5a:24:2b:4b:06:6e:a9:7b:f0:a1:d3:92:
c3:c9:f6:71:22:88:83:62:81:41:f6:9f:df:fa:b6:
5e:94:61:ad:21:9e:ce:49:0b:eb:92:55:f2:52:fa:
5b:6f:d7:60:32:b0:49:9c:42:dc:69:4a:9f:64:8f:
77:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8D:F3:8E:BD:29:96:37:87:31:E0:9C:3C:0C:AE:68:AE:18:C2:59
X509v3 Authority Key Identifier:
keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:09:2c:75:99:57:56:c2:7b:c8:cb:7f:e5:85:66:98:24:a6:
9b:28:23:80:ff:f5:fc:1b:16:88:bb:ed:fe:0f:4c:a0:4b:14:
a4:f0:33:0b:6f:f7:d3:b5:dc:19:78:96:a6:6d:95:17:6a:2f:
dc:98:93:b9:d7:cf:2b:43:1a:f6:64:ca:45:ba:fb:71:85:c8:
a3:ea:23:ea:95:a5:9f:99:8b:62:22:dc:3a:62:67:aa:e6:d6:
05:9e:81:de:bb:2c:ee:10:d7:66:82:f1:10:ca:46:25:96:10:
39:84:66:d6:19:49:ad:36:69:f5:f5:c4:54:31:f0:aa:e5:d6:
a1:16:70:2f:a6:a5:66:7c:82:cc:f9:6a:e4:1b:45:2c:98:de:
81:c3:34:3b:b6:3f:0f:71:cb:23:1f:1e:64:0b:16:64:71:0f:
1c:95:ef:f6:7d:67:d6:85:36:b5:99:2c:db:53:85:58:04:5d:
27:e2:b2:8e:bb:9d:b4:25:9b:ed:9d:b0:16:86:ef:f6:39:07:
df:3c:8b:20:05:ee:16:7c:06:30:6f:d2:11:29:a5:3c:c4:15:
6f:36:42:db:ed:04:bf:5d:8d:57:c9:6a:0c:b2:d9:b4:c5:c4:
3e:23:03:c1:95:48:c0:e6:6b:7d:2f:25:70:08:84:f3:81:40:
c1:19:c7:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:49:24 2026 by rpki-client