Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
File: mHyvDLazMBzAhKJdXCFBCpLKfjY.mft (raw, json)
Hash identifier: DVxTsN27EUgso5i9DoT1cy+Jz1kIefX4K88za1S7KuU=
Subject key identifier: 3C:47:6F:00:80:64:A6:F6:9D:D8:F1:AA:D7:02:24:4C:FE:1B:31:D9
Authority key identifier: 98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
Certificate issuer: /CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Certificate serial: 019D37C06491002FA00577E8B531571D144C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
Manifest number: 0A02
Signing time: Sun 29 Mar 2026 04:00:48 +0000
Manifest this update: Sun 29 Mar 2026 04:00:48 +0000
Manifest next update: Mon 30 Mar 2026 04:00:48 +0000
Files and hashes: 1: SnoNlY5zJQKWPQpDtP3lmgVqDWI.roa (hash: UfC4MTPTPQZoHUvi5oB3mT4y+nLt9U+6XEC480aLUxY=)
2: mHyvDLazMBzAhKJdXCFBCpLKfjY.crl (hash: eMKlkJFMsPT68mY123PRe5+fruPMmbQpzTD+4xjkObU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:64:91:00:2f:a0:05:77:e8:b5:31:57:1d:14:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Validity
Not Before: Mar 29 04:00:48 2026 GMT
Not After : Mar 30 04:00:48 2026 GMT
Subject: CN=3c476f008064a6f69dd8f1aad702244cfe1b31d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:71:e5:47:60:95:a9:39:bc:44:c6:50:94:05:
4f:15:2c:a3:c6:f7:b0:09:64:41:aa:88:c7:1d:50:
20:07:91:2c:e0:07:6c:a3:d7:72:6d:26:3f:16:ed:
41:52:9f:71:6c:b6:16:af:30:9f:0b:34:ff:05:8b:
42:0d:26:af:c2:46:0a:29:0c:08:03:aa:88:b5:5f:
68:9e:a4:e2:1c:b5:e3:b6:6f:68:5a:a9:c7:b7:39:
83:53:84:09:d9:c1:90:8e:b6:5c:23:fb:a4:3b:23:
06:3a:9d:a2:87:ba:c8:12:8a:c5:74:f8:d8:af:66:
c4:22:b4:c7:94:00:fc:17:ad:63:09:89:d6:f9:3d:
50:90:4f:26:7a:8c:ac:66:b0:8a:0a:97:21:cb:c6:
f5:be:10:ad:7a:bc:da:13:49:2c:b9:48:cb:7e:4c:
6b:fb:7b:66:4e:23:f1:93:2d:b6:8f:4b:d8:e6:4a:
01:06:b9:8d:3e:65:09:2d:b6:7e:f9:51:f3:36:1b:
f1:9a:9b:19:7e:e1:71:ba:d6:4f:4f:62:7a:7e:2b:
ea:ed:0d:f2:b4:64:53:cb:4d:8b:68:d8:8b:e4:ac:
f6:89:d6:f4:2d:0b:e8:d7:4d:9b:cb:48:2f:b5:44:
03:31:0b:92:23:ab:a6:c4:d5:26:e1:b1:5e:e9:94:
ac:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:47:6F:00:80:64:A6:F6:9D:D8:F1:AA:D7:02:24:4C:FE:1B:31:D9
X509v3 Authority Key Identifier:
keyid:98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:8e:3d:67:5b:bd:5c:14:c7:c2:5d:72:27:2b:ee:75:9b:b4:
e2:40:7a:30:4e:26:54:e0:e1:da:2a:77:47:83:c8:cf:3a:d7:
0d:bc:bf:f7:89:07:4e:3f:55:c1:65:30:e6:99:fe:52:4d:78:
30:09:6f:d5:dc:20:21:42:05:43:9e:13:90:93:dd:39:da:59:
b5:6b:11:9a:14:84:f2:3a:11:cc:86:f3:3b:93:2f:fc:1f:96:
ec:19:73:09:67:b4:59:c2:d8:29:72:1b:86:3f:9d:62:18:c6:
13:eb:a0:ff:a6:6e:1e:31:49:6e:37:5f:86:61:86:68:f4:f4:
42:c7:1f:e2:43:e3:fe:b7:0c:91:7e:c6:28:91:47:51:9b:17:
9e:f2:3b:24:5c:25:fd:96:62:f0:32:37:d3:2f:1a:f5:a0:69:
cc:17:0a:2c:ed:9b:c7:cd:9c:26:1d:50:b3:37:dd:a9:45:51:
8f:d4:b4:ac:81:af:44:97:95:8c:8b:be:ab:ba:d6:69:4a:68:
62:aa:9e:c6:40:91:b3:c4:a8:55:7c:13:1a:d0:15:be:52:f6:
9a:2d:1e:23:42:e6:48:eb:5d:02:92:48:ee:53:ef:0b:b8:fa:
a2:1e:15:bf:db:ba:cc:cc:3f:10:9d:a3:4b:de:04:85:97:43:
c0:90:77:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:38 2026 by rpki-client