Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: dPKnBfqlJ4/GHm2Ycp9MgTOCgLsu086HkXhPptfdF1M=
Subject key identifier: A0:30:AE:6C:8A:76:C3:CD:E7:EF:77:76:83:D4:87:FB:23:85:AD:BC
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 019D390A28653399C220D2746F7A005EC79E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 1603
Signing time: Sun 29 Mar 2026 10:01:00 +0000
Manifest this update: Sun 29 Mar 2026 10:01:00 +0000
Manifest next update: Mon 30 Mar 2026 10:01:00 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: BK2VtIGybCAzJssHQMNCvGs71J3TAoMVeLbFs19XKAo=)
2: IMhrDeS7pt6POgdqkwhQn8NXjdQ.roa (hash: 8Co4GdnGTbaplfNAIs0VU0evrLpH3iNJkhwVpK6YVsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:28:65:33:99:c2:20:d2:74:6f:7a:00:5e:c7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Mar 29 10:01:00 2026 GMT
Not After : Mar 30 10:01:00 2026 GMT
Subject: CN=a030ae6c8a76c3cde7ef777683d487fb2385adbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:25:2c:3a:8f:65:a2:16:23:c4:fe:8e:7f:c1:
26:b4:10:e9:b5:db:cc:a6:72:1e:fa:bd:16:1e:c7:
b4:60:6d:fb:c6:87:27:15:2c:10:b1:cd:5b:b1:bf:
9e:8e:82:21:50:0a:0f:4e:f1:d9:e5:22:ae:66:e2:
2a:64:04:72:15:39:6d:c4:1a:71:a3:e3:1c:2b:b6:
67:2d:b2:e3:20:9a:8a:e3:15:81:01:5a:a2:b7:b8:
c3:24:47:a9:a6:14:a7:7c:f0:f1:87:ef:92:0c:3d:
9a:ad:00:84:8b:cb:19:d6:ec:ed:41:9e:b7:19:e7:
f0:32:98:30:98:91:d2:57:f8:e4:b1:00:1d:99:fb:
2f:ee:21:eb:02:98:e6:e0:40:65:13:ff:7c:0c:0b:
23:fd:fb:f6:01:0f:8f:b0:5c:ec:e0:9b:34:92:2c:
35:bf:cc:22:e7:c6:8d:84:0a:4b:71:dc:80:4b:48:
d8:f7:c3:87:ea:91:0a:4d:05:cb:7c:78:d1:f9:ed:
1c:09:87:ad:9e:ba:85:02:01:28:a0:38:f7:d3:e0:
44:7f:c6:0a:8e:c7:b5:c0:02:b4:88:eb:23:f6:bc:
0f:17:80:51:10:a5:aa:6d:97:aa:0d:6c:d7:1f:01:
69:97:60:aa:bd:9b:39:89:7c:09:53:82:bd:a0:18:
b9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:30:AE:6C:8A:76:C3:CD:E7:EF:77:76:83:D4:87:FB:23:85:AD:BC
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:94:e6:53:c4:a9:13:6b:fd:e1:73:16:7b:21:39:ce:31:61:
91:15:50:e9:bb:b3:27:84:6e:f2:20:f4:66:65:d2:ab:19:11:
d5:35:58:47:f5:2b:43:68:f3:03:39:42:9d:ef:de:5a:23:c4:
f4:26:8e:03:95:94:ea:70:42:4c:37:08:a6:15:95:3f:23:ed:
49:26:75:3d:42:5a:65:7f:52:83:2c:18:cb:9c:c3:c8:5e:e3:
4c:9a:0c:13:d8:90:65:72:c3:f0:cd:eb:98:15:d5:b8:e9:c2:
5e:e2:19:65:50:18:22:ff:2a:7d:18:56:68:32:64:80:7c:77:
ec:a8:7e:84:12:5e:51:71:73:58:cd:56:ce:be:5f:50:6c:89:
3f:12:c9:e1:f8:5d:ff:6e:5b:21:63:94:31:26:a7:e4:ef:eb:
a4:19:2e:5c:8f:ef:20:27:73:3b:a2:b9:27:5a:77:6e:79:db:
5d:7c:b5:02:22:0c:08:23:ca:44:0d:46:40:81:d4:ca:3a:b1:
62:eb:a7:16:e5:ec:23:5c:c8:4e:ad:1b:99:bc:40:f6:2e:f5:
98:71:c4:df:e9:3f:c6:38:c5:0e:76:49:4f:00:3e:37:b9:57:
e1:d9:e6:14:3a:99:0d:ec:df:e7:b7:6f:09:bc:71:25:95:c1:
2a:18:0c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:25:47 2026 by rpki-client