Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
File: HyLAhI0wWeWuVfaMBwecuaksJ54.mft (raw, json)
Hash identifier: jfazzLZS9GzsIVBlOQyJrcTrvSAMQvw5VXtDb61ZGyc=
Subject key identifier: 3C:DA:27:FB:C9:34:63:5D:89:52:1B:DD:D6:7E:20:72:7A:28:2E:B4
Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Certificate serial: 019D37F7379B23FBA8E06770C0F6C9B74B29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
Manifest number: 157B
Signing time: Sun 29 Mar 2026 05:00:41 +0000
Manifest this update: Sun 29 Mar 2026 05:00:41 +0000
Manifest next update: Mon 30 Mar 2026 05:00:41 +0000
Files and hashes: 1: HyLAhI0wWeWuVfaMBwecuaksJ54.crl (hash: vx0EmNGTYHMId3g6DDFy1LbW7sjbVhM+0b5drEau4vU=)
2: w5yC-7_BeEAUv5kdABElqtcahiw.roa (hash: MnBkOa0BegcXHiC5KD30/CFPwuYklVK8Uh3ekT7IGzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:37:9b:23:fb:a8:e0:67:70:c0:f6:c9:b7:4b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Validity
Not Before: Mar 29 05:00:41 2026 GMT
Not After : Mar 30 05:00:41 2026 GMT
Subject: CN=3cda27fbc934635d89521bddd67e20727a282eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:04:04:dc:97:a6:37:d2:20:d0:7b:42:c0:59:
7f:bc:fd:97:f8:83:35:9d:db:6f:78:cf:b0:4d:50:
03:a6:9f:df:65:56:cd:cd:1f:78:03:a1:bc:7f:28:
c8:77:f8:6e:b4:80:67:fd:1a:30:08:f2:2a:43:cc:
8e:d2:46:50:42:f6:07:bf:0d:3c:12:9d:0c:2e:8b:
92:4e:2f:66:65:09:51:98:c8:6d:39:4c:ab:15:ff:
62:12:21:a0:0b:86:3c:e8:7c:14:8f:ec:63:2d:c7:
9a:0a:ef:0f:40:27:34:72:f6:1c:a2:16:1e:a5:24:
21:39:00:f6:a5:28:29:a6:aa:d4:59:ba:24:b6:90:
38:a7:ff:48:e1:06:50:f6:1c:72:21:0e:80:1d:16:
6c:2f:22:bb:e2:7c:74:a8:fc:0a:5f:25:91:be:ea:
64:57:6c:ea:93:74:3c:01:90:7a:b7:dd:c0:11:ef:
89:c5:ae:e1:df:56:d0:48:7a:51:77:de:e1:3a:ff:
f6:6f:7d:80:88:c3:23:1b:06:eb:bb:d3:3f:0a:5a:
ec:a4:4c:5a:9d:31:8d:e7:53:3f:bc:8d:57:0c:07:
5b:43:81:9a:b3:df:cc:12:4a:9d:18:05:e2:ee:14:
6f:12:ed:6a:6a:16:8c:c7:f3:59:db:e5:9b:9a:dc:
53:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DA:27:FB:C9:34:63:5D:89:52:1B:DD:D6:7E:20:72:7A:28:2E:B4
X509v3 Authority Key Identifier:
keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:92:70:25:07:5c:6e:99:04:89:65:51:06:a8:56:3f:5a:7c:
a8:f1:c0:7b:24:d6:97:e2:83:c6:d9:ff:fb:64:12:f6:c8:6c:
06:4b:30:f0:23:a8:a6:a2:00:f9:5e:81:6f:65:ac:09:dd:0c:
c3:57:73:31:67:73:34:fa:88:c0:2d:94:cb:f0:75:73:e9:d0:
9e:d1:f2:05:6b:96:09:c1:d6:24:40:c8:41:0d:fc:06:6c:d9:
99:02:f9:82:99:7e:66:6d:b9:47:a2:1f:53:d1:a6:e4:e0:bd:
95:ee:e0:4d:2d:0f:1a:ba:b2:8d:d3:c4:44:84:10:4c:c8:8e:
92:8a:3b:62:dd:57:f3:bd:6d:f2:32:24:d9:6a:45:f3:68:c5:
01:a0:ef:29:8e:7b:c1:76:b7:37:85:2a:13:88:e9:49:61:98:
03:3d:a8:fa:bd:a6:2a:5c:b5:9d:a1:16:83:84:47:5b:7a:8d:
05:86:42:2d:f6:02:3e:3d:23:f3:a1:3b:51:5a:81:12:2d:ee:
6d:7f:0a:40:15:99:82:30:0d:61:f6:07:16:9f:65:c0:cb:2d:
5a:6a:71:98:e0:39:99:9d:22:68:36:20:c0:c0:9c:6f:0a:6a:
31:b3:8b:66:3a:a9:07:c1:ab:92:32:2a:be:28:73:ba:8d:b0:
7f:f4:a9:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:39 2026 by rpki-client