Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier: jkgpY3hNXO9FEJ2RZ2Hip1GrJirqxFQhXZkg3IFf2TY=
Subject key identifier: 56:D1:AC:FA:A4:E9:0E:4D:6B:EF:A1:87:C3:0C:19:06:F4:E3:FB:78
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial: 019CA9B3F2F387F17B3976F30808DA3C538F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number: 145D
Signing time: Sun 01 Mar 2026 14:01:08 +0000
Manifest this update: Sun 01 Mar 2026 14:01:08 +0000
Manifest next update: Mon 02 Mar 2026 14:01:08 +0000
Files and hashes: 1: FMHMs5u6nqIr6z09yDsjzYxfks8.roa (hash: cXOK9Ev2UNFSti3Tqnxxgi2cL3wHqDi6S1Qe8D5ON6A=)
2: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: mgkP17CSzOTdWDyDCDvUw3ajXdLzVF6qr3ogXFr+3To=)
3: SgzTZO7h0qw0lQtLCLQDxdwtTHc.asa (hash: YpjRapR2fvquPrVNxyf5Ct4ddLeyNJ16sV02TNO6WCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:f2:f3:87:f1:7b:39:76:f3:08:08:da:3c:53:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
Validity
Not Before: Mar 1 14:01:08 2026 GMT
Not After : Mar 2 14:01:08 2026 GMT
Subject: CN=56d1acfaa4e90e4d6befa187c30c1906f4e3fb78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:78:46:cc:4c:f8:d5:30:b8:1d:85:bb:d0:e6:
6a:3b:8a:33:37:57:17:d6:9a:7e:83:fb:f2:83:a6:
f7:c5:a0:ba:50:a5:a4:15:3c:6c:8a:1d:a5:cb:52:
c5:a3:64:85:0e:f4:80:a4:89:11:a3:f2:ee:31:7a:
2c:22:07:a3:ce:75:2a:b9:fb:2c:b1:a4:e0:6c:99:
78:ee:87:1b:a8:78:3f:e4:fe:52:65:ad:13:b8:08:
00:a3:f8:2d:02:61:1e:b6:0c:a1:d0:20:04:a6:6d:
7a:f6:91:f5:c7:54:ba:81:6d:a0:9e:f6:49:ab:1d:
12:1a:9f:8a:0f:c5:78:79:ca:b7:39:21:b1:91:6a:
13:5a:0f:6a:43:0c:31:19:c4:53:61:3b:27:04:96:
8a:7b:a8:4d:19:94:85:c3:e0:3a:47:65:dd:36:d7:
86:df:b1:8b:3f:6e:c1:1d:92:84:b7:5a:28:66:43:
11:de:1d:42:43:83:15:d9:9a:17:a9:1b:56:83:fb:
b3:49:99:af:a9:41:02:70:34:f9:f0:62:0d:d1:08:
f0:5e:80:b8:a9:71:66:00:b9:70:16:c0:81:af:b2:
2e:89:2f:1b:8e:e6:c9:97:c8:e4:5b:c6:10:b9:f8:
9e:f0:1b:38:98:8e:8e:c0:22:9e:ef:fa:cb:0f:f8:
b0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D1:AC:FA:A4:E9:0E:4D:6B:EF:A1:87:C3:0C:19:06:F4:E3:FB:78
X509v3 Authority Key Identifier:
keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:b7:eb:e7:e4:f4:81:45:47:56:e6:fe:99:6f:05:72:23:bf:
23:ff:37:3a:b9:b9:ae:62:ca:eb:1f:51:42:c0:9c:f8:f2:85:
23:73:64:ff:e0:47:96:b5:a1:bd:b2:e9:1d:71:58:eb:68:ac:
98:05:21:e7:96:41:03:da:08:36:9b:4b:93:85:b1:6e:a0:2e:
6d:c9:88:ec:ea:65:a0:72:74:d0:db:f4:b3:39:bf:c8:66:72:
8b:66:c7:6d:60:f0:15:5b:5a:78:28:ab:58:14:ce:a8:a0:2e:
0e:e8:0b:60:35:a5:68:0f:82:9b:6f:a8:fa:77:5d:e5:06:a4:
9e:aa:b1:d2:39:1e:31:92:50:aa:03:ee:b5:42:0c:f9:b6:74:
d4:ee:f0:d9:5d:f6:13:3c:9f:a9:0f:47:91:d6:43:95:65:bf:
13:55:3c:70:af:ea:b4:a1:de:88:3b:fc:9b:38:54:49:cb:41:
64:12:c6:a0:c4:bb:54:f8:f0:9f:04:82:e1:79:1e:02:8a:14:
94:2c:e5:e2:ef:d2:83:ef:df:82:5b:5c:ba:c3:e8:5d:0c:2a:
06:e1:2e:5d:56:75:5c:70:9d:e7:2c:91:9d:09:f4:e1:db:cc:
76:cb:9f:cc:ad:42:f4:e5:4a:6a:1d:3a:78:ff:6d:ae:87:39:
e7:89:88:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:20:05 2026 by rpki-client