Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: qDaCTOrbBSLA3k1bNPiNiGeVX5rlXmZvchYuscJCjA8=
Subject key identifier: 35:13:95:AA:53:AC:D0:A9:64:32:50:05:E3:48:02:36:BA:61:E5:6B
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019D97E1789718EC6A14D3BCBD7007FB18A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 18C2
Signing time: Thu 16 Apr 2026 20:00:29 +0000
Manifest this update: Thu 16 Apr 2026 20:00:29 +0000
Manifest next update: Fri 17 Apr 2026 20:00:29 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: lYpV6/YzI0y7rq9gWmKTZBE0NIYcrjreWak1fLy3byU=)
2: _SW-efIyZk8frPlLE8yBxAElkiU.roa (hash: iv2POwrNLwDCvtWPf5ONex0CqcvwAdFHiaQ1/D120FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:78:97:18:ec:6a:14:d3:bc:bd:70:07:fb:18:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Apr 16 20:00:29 2026 GMT
Not After : Apr 17 20:00:29 2026 GMT
Subject: CN=351395aa53acd0a964325005e3480236ba61e56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:01:2c:e6:04:25:d0:cd:e8:9f:86:0a:c3:3c:
1a:f8:ca:ca:fa:96:bf:78:ae:81:2c:fc:09:ea:cf:
cb:a7:65:1f:30:a1:b4:4b:da:b2:7e:05:5a:ee:68:
04:bd:a3:3a:dc:0a:83:10:eb:e3:1c:b1:6f:52:ba:
70:dc:23:22:3e:b3:15:10:0b:93:87:a4:36:95:21:
a2:66:b5:28:f2:bb:8d:b6:5e:48:ae:eb:13:75:8d:
eb:6a:22:5a:a2:af:0a:ac:21:d0:0d:87:a2:38:d1:
57:9d:2d:df:32:69:7e:57:40:ec:31:99:26:81:b2:
9a:2b:9d:14:72:08:ab:54:99:51:b8:eb:ec:ad:57:
a8:ed:dc:d8:c8:8f:b2:09:71:1a:86:2a:9f:d7:e0:
1a:64:e3:54:55:6b:7f:dc:c7:6f:dd:01:5c:b5:78:
7e:17:5a:65:24:f2:73:02:e0:98:61:e1:0e:b5:82:
59:21:da:3a:a5:fc:c4:04:33:42:d0:80:fc:c4:b7:
03:7f:53:c2:a3:15:52:69:54:57:62:21:75:27:30:
f3:1f:94:21:90:53:7d:aa:57:67:1f:18:4e:fe:60:
e8:67:7e:3e:af:ac:b7:2a:f0:e8:e1:90:51:c8:d0:
1a:a4:e3:0d:b9:2b:fc:2d:3f:c1:d2:f9:c8:8f:30:
c6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:13:95:AA:53:AC:D0:A9:64:32:50:05:E3:48:02:36:BA:61:E5:6B
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:74:cb:b6:f2:25:18:a1:44:99:99:75:0d:77:d1:68:54:e0:
5d:55:30:ce:24:07:28:d5:9f:6e:0e:97:11:bf:0d:18:05:be:
2d:84:2a:5a:30:72:05:bc:1a:64:d3:e6:70:11:16:e3:8f:5c:
7e:68:5b:40:39:89:de:30:e1:38:80:fd:25:7f:0b:ce:20:ba:
b3:90:36:17:de:7d:5f:d9:68:ca:41:03:5f:78:b5:72:d1:2b:
72:1f:20:2d:34:39:60:f9:a4:50:dd:1c:4e:9a:76:97:8c:51:
63:89:cf:a6:a2:b7:d1:f8:db:c2:85:d5:30:49:31:06:76:f6:
a9:77:ff:b2:c1:bd:29:ec:04:18:05:04:63:e6:3b:90:03:4e:
a8:c5:a2:b6:e8:ce:51:27:13:03:2e:af:80:3c:99:31:77:ef:
5a:19:b3:e9:ff:f8:a6:1e:a7:3e:0c:e5:0d:21:7f:7e:b8:b5:
8e:56:1f:f3:cd:83:3f:e8:d9:1d:1a:d3:04:60:1e:51:cc:29:
0c:a1:9b:80:14:99:5d:0b:71:ff:18:3b:0d:65:d7:3e:87:d7:
96:94:93:1b:c3:ea:f5:9a:ac:6b:95:26:01:80:a5:7f:dd:ec:
13:b4:5c:a1:33:ec:4b:e1:98:d3:fe:2e:34:f7:cf:e4:87:49:
e6:42:c3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:27:29 2026 by rpki-client