Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier: as9MaREJB+y0ba4OfwJn+4Z48+RziSAxHrq1ZOQsmqE=
Subject key identifier: DE:18:85:05:77:F6:84:E8:0E:93:09:4F:CC:37:20:58:D1:38:CF:05
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial: 019EC0A3BDC6A80C37A0AE14A3C0362664B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number: 1572
Signing time: Sat 13 Jun 2026 11:00:16 +0000
Manifest this update: Sat 13 Jun 2026 11:00:16 +0000
Manifest next update: Sun 14 Jun 2026 11:00:16 +0000
Files and hashes: 1: FMHMs5u6nqIr6z09yDsjzYxfks8.roa (hash: cXOK9Ev2UNFSti3Tqnxxgi2cL3wHqDi6S1Qe8D5ON6A=)
2: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: 4lnbImiPTR7dpgwu8XZC/u/0YJ4BR28UgTYtt4sI+kA=)
3: SgzTZO7h0qw0lQtLCLQDxdwtTHc.asa (hash: YpjRapR2fvquPrVNxyf5Ct4ddLeyNJ16sV02TNO6WCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a3:bd:c6:a8:0c:37:a0:ae:14:a3:c0:36:26:64:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
Validity
Not Before: Jun 13 11:00:16 2026 GMT
Not After : Jun 14 11:00:16 2026 GMT
Subject: CN=de18850577f684e80e93094fcc372058d138cf05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a9:ef:fd:23:d2:52:35:6a:52:1c:7f:89:45:
64:2c:40:7b:39:f6:a9:15:4a:d5:18:ee:29:b8:1a:
d9:a0:77:ea:e0:94:1f:bf:e4:0c:5a:59:a3:b1:ca:
55:c8:1a:b8:68:56:fd:e5:ba:b4:89:69:73:43:f5:
4b:ea:41:4f:bf:40:c1:0b:de:87:33:75:c9:24:78:
56:a6:bb:44:c9:57:b8:3d:83:3e:9f:58:63:e2:d5:
5a:08:6c:c6:c6:37:d2:c2:d4:48:82:7e:21:74:23:
4f:c7:ce:74:64:19:ec:13:ac:2e:8c:08:36:06:9c:
61:00:97:6a:d4:d2:49:27:03:c0:46:82:9e:25:25:
a3:0d:6b:33:37:33:d5:d6:5a:c6:bc:07:4b:99:b1:
ab:9c:ec:38:6c:de:87:0f:9a:53:d8:f0:16:29:aa:
ed:57:03:4a:3a:29:7f:f2:3f:fc:57:2f:e9:a8:6f:
c6:d0:e3:5f:63:1f:f2:1d:fe:02:6a:2f:7c:20:13:
e0:4d:7b:16:d2:82:11:44:ec:1c:b2:1f:c9:4f:f6:
99:11:6f:b1:c3:f3:90:25:41:3d:68:73:6d:14:5a:
a6:c1:f2:c6:fb:71:f9:fa:d9:d3:0c:f5:a1:09:51:
c2:2a:74:c0:30:89:55:6f:0f:06:a4:e6:95:4f:d9:
3c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:18:85:05:77:F6:84:E8:0E:93:09:4F:CC:37:20:58:D1:38:CF:05
X509v3 Authority Key Identifier:
keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:14:6a:ad:32:d5:dc:7c:62:4a:91:39:29:7f:0b:33:c4:e4:
e4:60:42:60:0a:b9:cd:69:33:93:bb:00:1c:61:3e:cf:c4:3c:
af:dc:3e:c9:90:1f:43:43:e8:1a:ff:7c:24:32:d7:ad:a9:44:
de:80:27:3b:6f:8c:38:f4:80:e4:de:a8:ba:8d:13:68:99:79:
6c:ff:8a:c9:f0:11:30:0c:eb:93:af:84:d2:cf:b6:b0:c9:bd:
e5:8d:33:45:7b:6b:f0:25:c1:51:66:2d:52:a7:65:b9:4e:6a:
aa:2d:88:3e:26:4c:1d:a8:4a:9e:82:f7:6d:2e:80:fd:12:69:
42:c4:f2:43:c6:24:9c:d6:36:16:c3:19:e9:79:24:1e:e4:88:
da:a7:c4:69:ea:83:63:20:04:20:db:8a:12:e8:71:b8:0d:56:
49:12:46:b4:f7:c3:ee:75:30:e0:c2:d8:e6:eb:ad:78:83:cb:
5e:ef:6b:69:bb:d7:47:68:b2:53:87:89:50:fd:e5:76:f2:cc:
77:fe:b2:9f:55:9e:91:c7:12:83:98:24:d1:79:da:52:23:3f:
c7:c8:53:91:4f:01:cb:95:e1:37:49:04:7c:5f:6a:7c:ed:bc:
63:c7:e5:65:c4:04:d2:e5:18:c6:6e:b7:ab:21:fb:2b:b9:83:
9f:6b:2a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:30:51 2026 by rpki-client