Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
File: HgUGRdac54HkkMDzxJle5tTmB4s.mft (raw, json)
Hash identifier: M3T1q9dEMxois16evwup+eWcH4Vr511j4MwOK9sNBUU=
Subject key identifier: 0D:EC:25:C3:63:50:01:47:70:70:74:5C:C4:1D:A2:8B:A0:92:F5:D2
Authority key identifier: 1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B
Certificate issuer: /CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b
Certificate serial: 019D389BE313F8ACBD61C734562F471139BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
Manifest number: 0A69
Signing time: Sun 29 Mar 2026 08:00:33 +0000
Manifest this update: Sun 29 Mar 2026 08:00:33 +0000
Manifest next update: Mon 30 Mar 2026 08:00:33 +0000
Files and hashes: 1: 5IFZ-RmjX0QAE3XiRGeeU_gKW5s.roa (hash: x/Xn+2RJGz1zNEVIxZWPaaeHvskHVXZOixdJtJ5ELpU=)
2: HgUGRdac54HkkMDzxJle5tTmB4s.crl (hash: j3Siw0GHV164zXoYa6DSJ1DP9CBr3Hzbvf4PXf2iRdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:e3:13:f8:ac:bd:61:c7:34:56:2f:47:11:39:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b
Validity
Not Before: Mar 29 08:00:33 2026 GMT
Not After : Mar 30 08:00:33 2026 GMT
Subject: CN=0dec25c3635001477070745cc41da28ba092f5d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:43:a1:eb:07:f3:df:5b:ee:31:ef:59:b1:c7:
a3:8c:04:c1:a5:f0:66:01:b6:35:d3:02:f0:db:3b:
56:ab:72:d7:e3:8b:d6:08:79:4e:bc:68:0b:0d:bf:
7c:55:f3:32:c1:64:17:f6:29:23:5c:b9:20:b9:6d:
f0:86:5e:9a:ab:84:95:77:e3:8f:bc:83:a2:29:d9:
57:35:5f:69:4d:11:40:87:a7:31:dc:2d:79:14:c4:
9e:de:b3:2f:79:2b:91:d5:cc:a4:bc:25:b8:a2:b2:
22:62:53:75:80:22:61:32:f2:71:e6:20:8b:01:4f:
dd:7c:c6:a3:53:79:61:0d:17:75:f5:2c:f3:1f:b8:
86:97:59:8f:41:f1:2c:9c:17:a3:56:7d:22:62:5f:
80:62:5b:15:40:0c:4f:96:35:6d:c3:ec:38:6c:46:
22:2d:39:60:14:fa:33:73:71:5b:f5:9a:ba:50:cf:
68:93:7f:d8:31:2a:f5:3a:9c:b1:a9:c5:9e:38:8e:
b8:71:c7:dd:69:bc:73:a4:85:47:d6:de:15:8d:b9:
86:64:6d:a1:73:7c:d9:da:5e:f8:f2:df:90:d6:1a:
75:58:71:ad:57:22:9d:22:08:ca:7f:e0:85:2d:ec:
05:23:10:9f:64:b2:db:88:57:bb:fb:cd:54:28:36:
9f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EC:25:C3:63:50:01:47:70:70:74:5C:C4:1D:A2:8B:A0:92:F5:D2
X509v3 Authority Key Identifier:
keyid:1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:5c:ca:75:d6:1f:8d:56:a2:4f:10:ec:83:de:e0:71:b9:9a:
e9:d3:eb:b2:75:cb:64:e9:87:97:5b:06:64:8c:b9:fe:c3:e3:
c3:23:15:ff:4e:86:56:40:85:2f:3e:e3:c0:27:32:ee:f9:9f:
2c:e9:05:89:d8:00:db:4e:19:8a:d0:ca:96:6e:75:a0:b9:15:
2b:53:8d:a5:3d:38:d5:88:2b:11:bd:7b:cb:50:fa:5e:26:f8:
d9:9b:bd:2e:75:e1:26:36:46:a7:47:a7:3b:0f:1d:9a:b1:5b:
04:1e:9d:95:3d:21:02:cd:42:68:1d:85:11:93:c5:78:79:04:
0c:b4:c2:ff:36:88:8c:bc:fe:2b:4d:7b:a6:8f:8b:b3:4c:1b:
ef:df:00:40:76:b3:81:f8:3b:9d:cb:f5:cd:06:c0:93:f8:aa:
db:5f:ae:4d:21:2e:d4:b7:21:02:ff:49:10:35:da:e6:99:ab:
f0:07:dc:b3:b2:9c:73:2a:2d:ef:b7:b1:00:c0:98:81:d1:8e:
ff:2a:6b:5e:9a:ec:91:ee:80:56:c0:4f:91:89:05:99:9d:2f:
91:af:0f:44:ab:76:67:3e:b0:81:cd:08:d9:81:c0:b9:1e:97:
b4:72:d2:a9:89:72:72:ba:33:46:95:4b:23:13:6a:4f:7e:dd:
a5:01:ef:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:19 2026 by rpki-client