Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
File: HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft (raw, json)
Hash identifier: dX+FGjM+hyAu7XOuFghd7v7hgurN/BighgBr0JAar2Q=
Subject key identifier: D5:DC:87:9E:D6:26:4A:E6:A1:83:B0:0E:3A:9B:75:A3:99:66:90:A0
Authority key identifier: 1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
Certificate issuer: /CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Certificate serial: 019D99D0C1ACC99EDAB87EBAD44809802FE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
Manifest number: 093C
Signing time: Fri 17 Apr 2026 05:01:28 +0000
Manifest this update: Fri 17 Apr 2026 05:01:28 +0000
Manifest next update: Sat 18 Apr 2026 05:01:28 +0000
Files and hashes: 1: HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl (hash: boSz3Xui+qTiSFDvGXVy0sRiva0Hlj0taBoPcaK017A=)
2: K3dVJzjb4UxWNn2q6SzagSp02Oo.roa (hash: vSuxNcyOp/bZV6+vMViNTDz5yQOhdkZ3pxgYsBeSdRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:c1:ac:c9:9e:da:b8:7e:ba:d4:48:09:80:2f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Validity
Not Before: Apr 17 05:01:28 2026 GMT
Not After : Apr 18 05:01:28 2026 GMT
Subject: CN=d5dc879ed6264ae6a183b00e3a9b75a3996690a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:24:80:79:43:83:45:8c:eb:e2:f9:61:df:
6b:d6:87:e2:3b:57:33:d3:cc:55:fc:9f:ed:2f:5d:
dd:61:90:44:ae:34:5e:f5:5f:fd:3e:55:e9:f8:af:
7f:78:a2:ce:d9:5c:0d:cb:d3:5f:00:85:28:9b:bc:
96:fd:6d:24:8f:d5:24:fd:fa:9b:cd:94:80:09:79:
fd:88:f1:f3:61:bf:fc:b5:4f:dc:39:01:56:4f:1f:
e1:73:75:76:b7:80:47:31:ea:d7:c7:46:14:17:88:
17:88:19:48:87:35:2e:7a:5a:8d:8f:60:a2:bd:80:
a7:f9:92:12:ef:07:81:54:da:c7:e6:2b:c9:e0:c9:
6d:21:29:f2:13:62:a3:66:3f:a9:68:a6:3c:b2:d5:
9e:43:36:7d:c6:99:24:ca:39:22:e1:94:a7:2b:b1:
8c:f5:ee:c6:d9:b6:c9:0a:49:7e:2a:2e:0d:d9:cd:
5c:58:67:e7:b2:28:07:5c:68:48:d9:4d:1c:0f:b6:
9c:c2:3e:39:86:f4:38:1b:2f:b9:09:85:20:ea:ec:
9b:8e:b8:68:c4:98:c7:4f:fe:20:28:53:e0:fd:e2:
d2:c8:ef:24:bc:7f:ff:71:0d:4b:d4:04:61:18:01:
c5:20:cb:23:df:f9:7e:d4:ef:ee:a0:d9:11:fb:23:
05:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:DC:87:9E:D6:26:4A:E6:A1:83:B0:0E:3A:9B:75:A3:99:66:90:A0
X509v3 Authority Key Identifier:
keyid:1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:98:39:86:88:37:13:38:53:97:19:9a:14:70:33:47:7a:1a:
03:be:fa:e8:1b:a9:a0:14:dd:29:4b:5f:83:db:d1:82:b9:4e:
ce:60:dd:1d:91:d6:d5:60:7b:8b:b9:84:dc:94:a1:8d:dd:c9:
41:d5:e2:5b:b6:f7:bb:1f:a1:2c:45:91:d5:38:f1:74:e9:01:
7c:fe:e8:a3:c3:f5:55:74:12:97:99:3e:7b:0f:0b:b0:c6:b5:
13:b7:6e:51:ae:0e:ee:16:39:f6:92:47:ce:35:cd:82:87:54:
cc:35:ca:bd:95:27:7a:3e:b1:d5:69:11:aa:a4:75:97:69:16:
bf:f2:b0:80:fd:91:ea:74:14:73:ce:94:e5:e5:f1:17:b9:6b:
be:b7:22:96:e1:99:25:de:91:40:90:9b:3a:b8:e2:a1:c0:23:
f4:82:cf:19:cb:7b:7d:e8:88:a5:14:f0:8c:24:85:e6:bd:9b:
0f:c5:57:08:20:53:88:c4:96:44:d8:bf:56:9f:97:e6:ad:73:
6d:55:61:1f:c2:10:d0:85:de:86:d3:f0:d2:f5:e0:21:28:88:
84:51:f8:f3:ce:21:b4:06:60:70:22:83:08:f9:55:0b:cf:e7:
96:04:7a:fd:88:81:4d:f4:e0:de:26:9c:51:9c:f1:9b:f3:0f:
1a:fd:d0:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:24:01 2026 by rpki-client