Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
File: HpKJoBWvREH4-d9MjFXpiykogc8.mft (raw, json)
Hash identifier: A6dTR6lnRwdkOtwKLy4VpoSAiMtk1LE+zM1Rqa3zqtI=
Subject key identifier: 32:60:95:9B:C3:F6:3C:52:39:97:20:EA:83:B2:6A:CC:BE:07:85:01
Authority key identifier: 1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
Certificate issuer: /CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Certificate serial: 019D9BBE256F05BA95F9A15D0D22A8891436
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 14:00:22 +0000
Manifest this update: Fri 17 Apr 2026 14:00:22 +0000
Manifest next update: Sat 18 Apr 2026 14:00:22 +0000
Files and hashes: 1: HpKJoBWvREH4-d9MjFXpiykogc8.crl (hash: 1ritJLk/FhwV+BOd7p3SvrREjLeOQcssLUNZnEakaBw=)
2: qXW1tFeOtiksAO4B-LToz6aX1z0.roa (hash: uLilZNr9B9MLP79uUoSooDJXZ1XBNKFz1okgC0rlTvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:25:6f:05:ba:95:f9:a1:5d:0d:22:a8:89:14:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Validity
Not Before: Apr 17 14:00:22 2026 GMT
Not After : Apr 18 14:00:22 2026 GMT
Subject: CN=3260959bc3f63c52399720ea83b26accbe078501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c3:55:ec:55:24:71:a0:be:64:41:2f:17:9d:
a8:87:09:6c:9d:97:07:f0:0e:69:6d:80:0e:cb:5a:
bf:9e:08:65:e0:f4:4f:21:79:be:a9:0c:bc:78:77:
75:0e:98:51:29:69:8a:ac:97:e0:73:4a:b8:f8:07:
63:db:3b:be:10:95:b3:b4:2c:e6:c5:82:d3:37:8c:
df:71:1f:9c:72:8a:dc:61:51:02:93:b4:7d:1e:60:
2c:65:de:06:37:94:c5:dd:db:61:35:94:c1:f2:2b:
77:31:8f:07:f1:bb:25:b2:d7:67:22:ef:3a:55:1d:
e1:da:47:cb:86:1c:d2:10:2c:da:45:f9:54:a7:7e:
87:1b:83:3c:2a:a9:8c:ea:6f:72:cf:51:52:01:69:
f4:44:25:17:29:01:39:a4:4f:a0:b2:a0:37:2a:11:
08:c3:c4:17:09:0d:d8:b8:72:e3:58:51:bc:5a:31:
f0:ce:89:27:e4:54:9c:87:26:36:65:54:af:48:50:
cb:a8:da:7b:53:e5:3c:3d:2d:15:71:6e:f5:66:e7:
44:45:bf:9d:8e:b0:c6:92:9c:87:c1:de:63:a1:fd:
d6:c2:c3:61:aa:6b:58:9c:f6:45:ba:35:08:82:47:
55:cb:b4:06:02:25:ea:3d:60:a4:c6:98:4e:32:91:
4f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:60:95:9B:C3:F6:3C:52:39:97:20:EA:83:B2:6A:CC:BE:07:85:01
X509v3 Authority Key Identifier:
keyid:1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:c4:e7:44:69:19:b9:a1:54:a3:32:b5:b2:db:ad:7d:73:0b:
fa:cc:0e:67:37:57:4a:18:b2:6b:22:2f:17:82:33:d8:ab:34:
9b:48:4b:9d:b0:5f:05:b2:19:7b:99:41:4a:cd:62:f7:d0:a3:
6d:81:74:5a:78:f1:07:7d:38:73:04:ac:3b:c9:0f:44:6c:11:
98:f9:de:51:c5:c7:88:45:15:37:25:78:bd:57:fe:6b:0f:72:
83:d7:10:5f:e5:8a:c4:9f:30:89:bd:b8:80:ce:c4:2d:8d:6d:
54:f2:bf:72:2b:c2:3f:9b:44:ff:fd:50:e9:d9:ab:9f:ee:a5:
2c:a7:53:4f:3a:c5:86:7e:89:d4:f4:ae:a8:b2:e4:1b:39:6f:
9e:da:91:0d:2d:f3:13:e9:b4:45:e4:f6:02:34:31:e6:ed:c4:
8b:48:79:52:1f:6e:11:72:fb:15:ab:22:4c:90:ae:35:e9:55:
55:17:af:b5:f9:58:48:6e:8f:a8:dc:38:20:c1:ca:12:88:a7:
c2:e0:ee:f3:60:72:d3:06:30:5e:46:d1:5e:ae:7f:61:82:cc:
e4:bf:1d:9e:cb:00:9f:fa:92:18:99:34:69:04:f9:72:37:28:
9c:fb:8a:15:98:24:66:31:6f:fa:8a:f1:53:60:6b:ea:aa:07:
eb:e7:fe:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:04:20 2026 by rpki-client