Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
File: HDP7O3JSC4FpopKNU4LknWda0GA.mft (raw, json)
Hash identifier: FbDwgXTRrTu7oYtErT1c08wyIZJm59pTilI6wBPzWT0=
Subject key identifier: 29:DC:69:1F:93:C6:BE:FC:E9:48:F3:FE:44:78:8F:DD:87:7B:5B:89
Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Certificate serial: 019EC2CA0004FF5362C881A6FBE65A77930C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
Manifest number: 1709
Signing time: Sat 13 Jun 2026 21:01:18 +0000
Manifest this update: Sat 13 Jun 2026 21:01:18 +0000
Manifest next update: Sun 14 Jun 2026 21:01:18 +0000
Files and hashes: 1: Gy7ZxbulJ_7Y0tx78zpcZAOHO2I.roa (hash: 8PQOWmSZ9/1/Et2ot0KAAdAS2aYMSpPnN0AQzm11bWE=)
2: HDP7O3JSC4FpopKNU4LknWda0GA.crl (hash: pU+NljG5c6YWGpaxAcB/fXxxJGuBwe9KlVsE6aQ1XW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:ca:00:04:ff:53:62:c8:81:a6:fb:e6:5a:77:93:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Validity
Not Before: Jun 13 21:01:18 2026 GMT
Not After : Jun 14 21:01:18 2026 GMT
Subject: CN=29dc691f93c6befce948f3fe44788fdd877b5b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:94:e0:bd:f2:d8:71:99:fc:07:fe:34:f3:8b:
c5:15:6a:d8:a4:79:16:35:24:fa:33:72:43:8d:c0:
cb:20:1d:6f:d5:b1:a6:27:61:f7:53:a1:6f:3a:d2:
fb:7c:9e:13:93:cf:8a:be:5e:9f:2b:e7:34:48:63:
99:6a:28:03:a2:de:55:97:87:d4:07:73:5b:41:08:
34:3e:c9:f9:0b:0b:23:84:a9:5d:b1:93:e4:2e:4c:
90:1c:37:79:29:50:6e:5c:b7:73:cf:80:26:e5:8d:
8d:aa:b6:30:15:a7:8f:69:60:68:1f:c3:f6:d1:8a:
b4:2a:15:91:bf:5d:83:04:58:b8:f2:85:e4:95:ea:
97:f1:75:9d:74:6c:5f:f3:78:12:4f:c1:fd:45:ad:
2a:28:f4:e2:aa:73:61:13:48:50:63:75:ae:27:96:
80:c1:0b:42:a4:bc:96:5e:71:d5:96:87:79:11:4d:
df:5c:89:0e:4f:a0:53:0b:95:78:d9:da:37:55:f7:
e3:32:ac:05:06:81:07:45:91:91:83:06:a0:03:24:
df:4f:2f:3b:8d:4a:b0:49:0c:7d:4e:bd:13:21:cd:
9c:71:e3:71:a7:a6:78:96:09:04:27:e4:13:43:03:
db:02:41:17:51:5c:fb:6b:a7:fb:25:1d:de:7a:2b:
ef:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DC:69:1F:93:C6:BE:FC:E9:48:F3:FE:44:78:8F:DD:87:7B:5B:89
X509v3 Authority Key Identifier:
keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:1f:aa:83:fb:19:26:3a:9e:20:ef:fe:24:4f:9a:07:cd:5a:
69:c0:e8:5e:91:df:3f:c1:23:11:ef:63:19:2f:cd:ce:43:72:
85:bb:ac:c9:90:59:e5:49:e5:d1:04:7d:38:af:9a:fa:98:73:
a8:86:2a:a4:f1:4c:21:52:3b:bc:bf:3a:49:51:8a:ea:b7:ed:
29:41:2a:1e:a5:31:5a:82:15:8c:42:7c:b3:da:7d:2f:5d:55:
f1:71:b5:58:b1:a2:5e:52:81:0a:65:12:f3:4d:a0:65:3b:a8:
89:a5:8d:4f:f0:29:be:bc:6d:43:68:00:17:83:7a:4a:99:7a:
9a:c8:a1:a1:90:e9:c4:bf:4b:5c:8f:d2:12:e4:15:29:30:ab:
76:61:f8:6e:4e:70:72:08:49:c7:7e:98:e8:10:f2:5c:53:8d:
96:f8:32:b3:d0:db:8b:1f:d3:49:00:a8:e7:79:2e:b6:25:a0:
ea:83:b8:51:f0:f3:6f:92:ab:5a:19:60:e7:48:bb:c1:db:c8:
e4:aa:e8:ab:79:f7:2c:d8:e4:d9:13:37:38:29:09:3d:f4:c1:
2b:f7:00:69:62:59:e1:10:0d:a5:50:d6:e3:2d:68:9c:c2:17:
48:ae:f3:d0:a6:fb:b1:22:ee:4e:9c:36:a8:37:7a:35:ed:26:
5a:0f:de:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:43:40 2026 by rpki-client