Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
File: HNq3BST9UTE7hPXY9GNio9jICBQ.mft (raw, json)
Hash identifier: fqSPxfTaDeJZinfh1qc+5Flq4nYNCpPa5gHdGg7MP9g=
Subject key identifier: 94:50:C8:17:70:78:4A:07:31:29:50:D5:80:F9:98:1B:86:95:77:D1
Authority key identifier: 1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
Certificate issuer: /CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Certificate serial: 019D98BD24E1BC3C1CAD990949FDA9CC7471
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 00:00:25 +0000
Manifest this update: Fri 17 Apr 2026 00:00:25 +0000
Manifest next update: Sat 18 Apr 2026 00:00:25 +0000
Files and hashes: 1: HNq3BST9UTE7hPXY9GNio9jICBQ.crl (hash: DAv3+1mlkaB8FCY5gUoTckSVnK5TAq08+RAjITiBIVI=)
2: wJTOj0mEUrIF3Tlq4qTWWTuOppI.roa (hash: w9rdqk85HiQNy+SgpZs0zo1ZOjcfj7xojv16EEwMZF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:24:e1:bc:3c:1c:ad:99:09:49:fd:a9:cc:74:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Validity
Not Before: Apr 17 00:00:25 2026 GMT
Not After : Apr 18 00:00:25 2026 GMT
Subject: CN=9450c81770784a07312950d580f9981b869577d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fa:6a:09:4e:46:aa:02:45:72:a8:ba:d9:12:
22:66:8f:76:51:ef:01:17:4d:86:e8:b2:ed:53:7e:
9c:38:1f:92:9b:6c:9b:c0:0c:e5:60:3a:a6:be:ea:
02:72:55:fe:d8:93:3a:29:d9:81:53:d8:31:db:2d:
19:bf:61:04:f0:4c:af:e6:37:ea:17:9e:58:7a:a1:
d7:31:ff:ea:ea:c1:34:96:04:4f:b8:7f:25:e7:c6:
7d:25:0d:05:38:8f:12:95:17:a2:e9:fe:b8:4f:d9:
f6:c1:c7:54:1e:bd:7a:31:ca:af:36:43:f4:1d:26:
e9:a4:7e:d3:5f:17:f8:b1:8a:f0:85:c3:dd:6b:c0:
48:a9:62:72:de:e7:13:82:a5:28:b7:29:8d:63:9c:
10:2e:ee:71:f7:5d:8e:5b:c0:5e:fe:13:71:ca:bf:
94:92:6c:e8:43:6a:6f:65:5f:f6:b3:64:ea:b6:3d:
80:35:c9:32:4c:6d:4d:51:af:f1:f1:30:6a:3a:80:
b2:d4:df:29:0f:29:bb:ec:3a:90:01:f2:28:b9:1f:
f1:d5:b1:5d:9d:a6:f7:62:ca:4d:73:aa:18:f5:a3:
73:c8:a7:5b:18:8a:ec:e4:2c:ee:6b:9c:59:22:70:
14:65:52:39:38:c4:f7:c7:94:fd:5b:12:6d:26:88:
fd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:50:C8:17:70:78:4A:07:31:29:50:D5:80:F9:98:1B:86:95:77:D1
X509v3 Authority Key Identifier:
keyid:1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:af:d9:73:c5:8a:0f:49:6a:1b:8e:59:c9:35:37:a8:bc:fc:
31:68:a7:3e:be:8a:71:53:98:97:59:6a:69:55:79:9b:be:cc:
aa:31:b9:b3:d2:88:eb:72:45:ab:8d:77:24:51:ea:e0:e4:ea:
62:a5:4f:2d:1c:eb:16:a9:02:98:b4:65:90:b2:3a:8f:ce:56:
b7:89:66:bb:c6:ce:c9:3c:ab:3b:c9:f3:f6:bc:b0:11:c6:03:
e5:cd:0d:c2:3b:62:55:e4:af:26:d8:64:5e:cb:1e:08:43:f5:
6c:c9:13:6e:3a:ca:9b:3d:b3:d4:19:c9:f5:a7:33:4d:d2:e1:
20:1b:e8:f0:eb:ea:ce:b2:77:b6:b0:6a:28:20:b7:8f:93:d4:
2f:bb:98:0c:c1:da:08:c5:4e:50:d1:54:b8:6b:88:74:a8:54:
08:a7:1d:50:c6:89:69:41:d8:be:c8:27:f5:21:75:85:36:43:
e0:4e:7b:ca:63:85:ee:07:39:cf:de:22:7e:44:a7:cf:53:83:
4d:cf:8a:9b:43:d7:9b:38:55:a7:89:39:c1:87:40:35:0f:82:
6c:a8:29:12:c5:59:a7:46:1e:a9:58:b2:59:37:4f:59:6b:c2:
44:97:4e:e8:b7:ea:0c:f3:2a:a0:ad:36:f7:d2:cc:b1:f7:6a:
6b:93:2c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:24:42 2026 by rpki-client