Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
File: hCIIK4U0vXrmP6gAimhbZfTNJZM.mft (raw, json)
Hash identifier: zWxjEdPi96Wfcc3PPkY1uhDOzT0CWAjB7+vjJZDvQlw=
Subject key identifier: C3:B7:BE:39:24:4E:91:00:3A:78:94:80:38:ED:70:33:9A:11:85:51
Authority key identifier: 84:22:08:2B:85:34:BD:7A:E6:3F:A8:00:8A:68:5B:65:F4:CD:25:93
Certificate issuer: /CN=8422082b8534bd7ae63fa8008a685b65f4cd2593
Certificate serial: 019D98BD265A2F597A9AADBAB8B6FD70A64B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCIIK4U0vXrmP6gAimhbZfTNJZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
Manifest number: 06CD
Signing time: Fri 17 Apr 2026 00:00:26 +0000
Manifest this update: Fri 17 Apr 2026 00:00:26 +0000
Manifest next update: Sat 18 Apr 2026 00:00:26 +0000
Files and hashes: 1: 7ObucnjBknjOc9VGyDvq-rah57Q.asa (hash: AfmsB5ElxTW0o9bXlvelsvJ0CpTckZTI7iwTHE4nG1E=)
2: hCIIK4U0vXrmP6gAimhbZfTNJZM.crl (hash: pMDf2BR4oBEn2FY04hremeSxAld0vBK5iOm39WcJorg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hCIIK4U0vXrmP6gAimhbZfTNJZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:26:5a:2f:59:7a:9a:ad:ba:b8:b6:fd:70:a6:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8422082b8534bd7ae63fa8008a685b65f4cd2593
Validity
Not Before: Apr 17 00:00:26 2026 GMT
Not After : Apr 18 00:00:26 2026 GMT
Subject: CN=c3b7be39244e91003a78948038ed70339a118551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:64:c3:e9:01:b8:4d:b9:aa:79:aa:d7:9c:9d:
ab:48:e7:17:df:45:88:7c:f4:68:08:31:04:4b:f4:
d7:13:9d:9c:65:9e:70:15:14:3c:97:aa:f4:2e:69:
41:a9:31:d0:b8:ae:a1:60:2a:7b:07:07:09:0c:5c:
2a:23:bd:f4:41:0a:d8:b4:9f:59:dc:85:5a:26:75:
7e:f3:16:eb:fa:bc:ee:aa:71:19:81:d7:79:65:00:
90:cb:91:9c:4b:3e:92:54:87:d1:a7:2f:96:06:5c:
34:56:59:24:ae:e9:8d:a8:51:9b:89:94:38:4d:1a:
45:30:d3:b8:20:19:82:f9:6c:fa:ef:86:8b:53:a9:
39:cc:86:e1:fc:fc:76:28:56:36:31:73:de:89:bf:
6a:db:85:7e:e1:d5:d9:63:e6:f7:ed:09:00:17:de:
6b:6b:3d:66:d4:0f:8f:c0:5c:43:26:b3:35:47:9e:
c8:b2:d7:1a:74:dc:25:db:b3:18:ce:44:4b:4f:76:
26:80:ed:14:9b:ab:15:fa:8d:20:a4:a7:d6:5d:3f:
0c:aa:1e:d7:aa:f7:75:0e:c1:5f:89:96:f4:07:eb:
3c:f7:96:fd:c5:fd:0a:ba:19:65:68:f9:02:cf:07:
ec:59:3c:c6:f2:29:17:51:87:b3:5b:2f:ba:f0:16:
98:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B7:BE:39:24:4E:91:00:3A:78:94:80:38:ED:70:33:9A:11:85:51
X509v3 Authority Key Identifier:
keyid:84:22:08:2B:85:34:BD:7A:E6:3F:A8:00:8A:68:5B:65:F4:CD:25:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCIIK4U0vXrmP6gAimhbZfTNJZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:26:a2:87:5f:d4:d8:6c:53:5e:4f:98:c0:95:68:67:36:ee:
18:7a:06:ea:04:06:bd:f1:78:30:df:02:4a:d4:40:9f:91:6e:
b2:39:19:e0:d3:2c:2c:91:31:27:56:2b:3f:2d:30:20:b2:f5:
78:e3:d5:05:76:0f:38:a7:b3:9e:ce:e3:69:dd:71:7c:6d:fa:
95:7c:db:1d:48:c1:20:e4:cc:6f:ca:83:24:8b:73:3b:03:5d:
12:92:55:f4:7b:c3:98:fe:c3:03:81:35:5a:b6:64:a5:61:ae:
e2:4b:e5:48:c3:19:0a:c4:b2:78:52:5d:b3:d3:1a:9d:9b:c5:
d7:55:80:a5:ac:e0:39:89:57:cd:d1:a1:3d:8e:dd:6d:28:fe:
1f:d6:8d:e5:1c:a1:b4:04:bb:58:8a:ff:7f:8c:64:6a:3d:54:
c7:96:5f:52:6c:b7:36:70:a7:58:a9:13:cf:7e:7f:d8:88:f2:
e7:d7:f7:a0:08:34:2c:ef:09:4d:bc:cc:df:2b:72:7e:d7:c2:
76:bb:78:d9:ac:3d:94:b6:2c:57:f9:d5:38:3d:a4:f7:45:f2:
c0:c7:eb:25:4a:98:fc:0a:c9:fa:1b:db:64:83:0f:b5:90:3f:
50:b2:c3:b9:ef:6e:e5:ff:5e:0c:3e:2a:d0:db:dc:e8:23:ac:
8b:63:ab:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:08:21 2026 by rpki-client