Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier: h4Iplssu3ZHC7RiCIzWtwuxv5SrqW7hCsayrYfW/Kqo=
Subject key identifier: 62:96:EC:0B:4D:4F:B5:9F:03:8C:DA:C2:75:2A:66:FB:9E:62:89:46
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial: 019CA7C5A9C7751F7EA0CD7BC697991D5A5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number: 145C
Signing time: Sun 01 Mar 2026 05:01:14 +0000
Manifest this update: Sun 01 Mar 2026 05:01:14 +0000
Manifest next update: Mon 02 Mar 2026 05:01:14 +0000
Files and hashes: 1: FMHMs5u6nqIr6z09yDsjzYxfks8.roa (hash: cXOK9Ev2UNFSti3Tqnxxgi2cL3wHqDi6S1Qe8D5ON6A=)
2: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: /NGiRrIhj7Pqixvs4mN33AnVdNBEuDi/dKkOlXKOkgQ=)
3: SgzTZO7h0qw0lQtLCLQDxdwtTHc.asa (hash: YpjRapR2fvquPrVNxyf5Ct4ddLeyNJ16sV02TNO6WCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a7:c5:a9:c7:75:1f:7e:a0:cd:7b:c6:97:99:1d:5a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
Validity
Not Before: Mar 1 05:01:14 2026 GMT
Not After : Mar 2 05:01:14 2026 GMT
Subject: CN=6296ec0b4d4fb59f038cdac2752a66fb9e628946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:63:98:ad:6e:8e:6d:fc:ac:2c:44:69:ea:5e:
ed:92:f7:df:9b:dc:e1:b6:57:30:22:20:b2:31:18:
54:b6:b0:98:30:5f:76:85:f7:05:7d:78:bc:f1:80:
24:30:6f:09:1e:96:4e:b4:dd:a4:63:79:59:c4:86:
55:d2:34:f8:d8:c8:ed:6d:bc:ee:7d:a1:eb:5e:63:
2d:ca:4d:d0:b5:58:ac:26:fb:3b:81:fc:a2:43:b6:
4c:f1:12:ed:f5:3f:70:4c:81:96:d6:40:9a:84:2d:
e4:0a:b2:2d:ff:a0:93:57:09:3b:81:44:6b:de:c9:
cb:2a:cf:83:63:2d:de:7b:6b:1b:9f:ce:c3:97:7a:
9f:56:57:a3:30:2a:78:2d:cf:96:45:f9:d6:8c:16:
27:ea:46:ba:39:b7:a8:60:c4:29:8f:56:79:45:4e:
c9:e2:96:99:aa:a1:1b:58:f6:26:eb:30:eb:67:34:
d1:eb:37:25:bd:7f:81:1d:c7:b1:39:da:75:96:8a:
f1:51:3b:5e:9d:03:84:8b:a5:da:0c:08:60:91:1b:
f9:37:5b:1d:e9:2f:fa:4b:fe:49:d4:54:2c:37:de:
64:14:a2:17:88:2e:1c:72:19:4b:65:62:e7:da:24:
89:c0:0a:43:5a:d3:8d:b1:7d:91:2d:77:c5:36:65:
82:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:96:EC:0B:4D:4F:B5:9F:03:8C:DA:C2:75:2A:66:FB:9E:62:89:46
X509v3 Authority Key Identifier:
keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:81:09:17:13:9b:35:8a:e1:70:5f:94:47:43:87:71:0a:84:
57:ee:ed:b6:ba:2f:0c:7b:fb:eb:57:d3:a0:90:e8:65:ed:f6:
e1:ab:63:b5:76:66:17:78:28:ab:cd:54:b1:fe:8d:d7:14:61:
d1:30:22:ac:72:7a:c0:5b:d1:5b:e0:33:80:33:21:f9:6c:ef:
85:61:53:92:5f:72:58:d2:bc:a9:ab:80:b5:7a:b4:5e:6b:9f:
7f:41:e9:16:85:83:9b:4c:6e:18:df:ea:8c:1a:79:b6:57:a3:
24:c5:32:5a:2b:57:d6:8a:49:0e:6a:ba:f1:21:c1:65:71:02:
cd:b9:5e:d1:f3:ee:10:e3:4a:47:55:ec:f7:d4:be:a2:ff:33:
c1:9b:3a:fa:1c:7d:e1:e8:80:a9:f5:8b:fe:55:0e:e7:b9:4e:
e5:ee:02:8c:9f:80:2a:de:0c:60:3b:d7:6e:69:82:2d:f0:b3:
9d:9f:a1:be:18:0c:c3:b6:c5:3e:e2:08:d1:57:54:f8:1b:e4:
af:d4:87:55:40:aa:c2:85:83:2d:cb:2c:c1:08:96:a6:76:81:
a0:e4:87:01:fa:ec:15:77:3a:5f:0d:73:e2:e4:05:7a:20:c1:
0a:f4:26:57:00:60:62:06:b9:39:a3:52:e0:7f:0d:9e:1c:24:
f9:4f:30:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 14:44:53 2026 by rpki-client