Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
File: hLDKyDjyguBClI-dKyzVdU0ujEc.mft (raw, json)
Hash identifier: sbSvmxrGaP5Ggp+nl7hbXIINx7YGZ7DAL0qEiYo0N/o=
Subject key identifier: E6:B1:C5:A8:03:F6:27:DF:D1:5A:91:14:72:10:04:FC:1D:1E:CC:BA
Authority key identifier: 84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
Certificate issuer: /CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Certificate serial: 019D390A654DA41A174808EDFF46AD3A1585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 10:01:15 +0000
Manifest this update: Sun 29 Mar 2026 10:01:15 +0000
Manifest next update: Mon 30 Mar 2026 10:01:15 +0000
Files and hashes: 1: VlpI70dDa3SXtasYtMfEiBmSD6c.roa (hash: ZCpP7KsMiePX2xsWWMvyuZvFGbNzVM1llSJjyzmPYlQ=)
2: cuqHyO4V93ncme-J7Fr8-_3DTvU.roa (hash: RSEzdn3Ri0wlzenvwY/b18Rq2sLeWzRaHbLOuqaUorY=)
3: hLDKyDjyguBClI-dKyzVdU0ujEc.crl (hash: ElldbltwDkMNUzb5WaaU12EF44uI4lSKRFKIqkbPZpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:65:4d:a4:1a:17:48:08:ed:ff:46:ad:3a:15:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Validity
Not Before: Mar 29 10:01:15 2026 GMT
Not After : Mar 30 10:01:15 2026 GMT
Subject: CN=e6b1c5a803f627dfd15a9114721004fc1d1eccba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:04:52:89:8a:08:83:47:d0:df:18:93:64:ed:
79:e0:3d:72:f1:f1:7b:54:9c:c0:87:bd:5f:3f:89:
b4:d9:36:d9:86:1a:6d:f6:06:1f:a7:ec:a9:cd:41:
25:e0:f8:5a:04:8b:a0:db:8f:58:aa:b4:94:23:27:
a3:57:13:f6:9f:b6:a1:b0:a4:3d:27:2d:dc:c0:1a:
fc:f1:aa:93:6a:e4:8d:98:d8:a5:ff:e1:6b:78:a2:
c6:34:9d:fe:0e:da:30:ce:ee:ae:e7:53:51:d1:5d:
d4:0c:e0:1d:d6:c0:37:1c:8b:7f:7b:c7:2e:30:74:
a3:5b:21:14:a0:0b:39:46:b5:1a:71:12:a6:6a:6f:
81:74:2b:75:9f:eb:38:e2:ae:0e:a1:16:fd:00:fc:
51:d6:8d:63:e5:56:79:54:20:3f:57:ea:4f:6d:e0:
58:fe:97:91:17:4a:b0:c3:d4:4c:54:22:4a:88:f1:
25:f6:cf:f5:5e:c0:0d:59:28:c0:c5:56:d7:5b:f0:
91:38:a9:b1:e8:db:b3:28:0e:d7:37:5d:98:74:8f:
b6:11:1a:6a:ba:b9:80:62:a7:6f:15:92:d9:3e:ac:
11:a2:2c:d6:7c:47:df:07:66:56:0d:93:7c:61:11:
7e:f7:cb:b9:e4:2e:79:20:73:22:de:94:45:d4:77:
d3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B1:C5:A8:03:F6:27:DF:D1:5A:91:14:72:10:04:FC:1D:1E:CC:BA
X509v3 Authority Key Identifier:
keyid:84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:f3:ec:c7:3a:a0:0a:0f:ee:15:08:bd:01:22:99:9a:50:4e:
1e:52:bd:9f:eb:e6:51:e0:9a:a1:fc:77:8f:75:85:20:7e:22:
b0:78:bc:1b:b9:63:65:1f:60:07:58:f2:54:3a:a6:b7:45:9e:
ac:16:73:67:fb:d8:c5:47:be:0c:e3:99:56:55:82:30:96:ad:
cf:a9:b1:85:47:5d:ca:f3:59:f4:71:4d:9e:77:a6:68:0a:93:
92:c1:2c:6d:b7:53:04:57:52:d9:28:25:e3:22:ae:60:2c:71:
f3:26:4f:53:2c:46:a9:c6:58:78:45:5b:a4:c0:2f:a4:4d:27:
9d:1f:b2:b3:16:14:d6:68:1a:bf:24:15:09:7a:f0:e8:80:47:
59:1e:92:35:df:ef:88:a1:a9:e7:5a:71:4f:ac:e2:47:28:5a:
80:85:97:7e:b0:10:99:fd:16:c5:e1:53:39:a5:36:3a:1b:59:
e4:1b:5d:c4:73:1a:3f:25:5d:92:9e:2d:95:8a:f7:b1:e7:71:
85:99:3d:44:95:dd:62:bc:17:78:f0:e6:ff:ab:1d:fa:24:19:
e3:9d:45:f5:50:ca:14:9e:c1:82:79:b6:09:6f:24:47:65:e9:
fe:b7:04:04:97:dc:a1:31:74:c9:6d:c5:04:a9:16:dd:89:c2:
62:fe:41:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CmVNpBoXSAjt/0atOhWFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjBjYWM4MzhmMjgyZTA0Mjk0OGY5ZDJiMmNkNTc1NGQy
ZThjNDcwHhcNMjYwMzI5MTAwMTE1WhcNMjYwMzMwMTAwMTE1WjAzMTEwLwYDVQQD
EyhlNmIxYzVhODAzZjYyN2RmZDE1YTkxMTQ3MjEwMDRmYzFkMWVjY2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgRSiYoIg0fQ3xiTZO154D1y8fF7
VJzAh71fP4m02TbZhhpt9gYfp+ypzUEl4PhaBIug249YqrSUIyejVxP2n7ahsKQ9
Jy3cwBr88aqTauSNmNil/+FreKLGNJ3+Dtowzu6u51NR0V3UDOAd1sA3HIt/e8cu
MHSjWyEUoAs5RrUacRKmam+BdCt1n+s44q4OoRb9APxR1o1j5VZ5VCA/V+pPbeBY
/peRF0qww9RMVCJKiPEl9s/1XsANWSjAxVbXW/CROKmx6NuzKA7XN12YdI+2ERpq
urmAYqdvFZLZPqwRoizWfEffB2ZWDZN8YRF+98u55C55IHMi3pRF1HfTcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOaxxagD9iff0VqRFHIQBPwdHsy6MB8GA1UdIwQY
MBaAFISwysg48oLgQpSPnSss1XVNLoxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExES3lEanlndUJDbEktZEt5elZkVTB1akVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9lOTQ4N2YtZmRjNy00MGE3LThhNjct
MWJlNjljYTM5M2JhLzEvaExES3lEanlndUJDbEktZEt5elZkVTB1akVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9lOTQ4N2YtZmRjNy00MGE3LThhNjctMWJlNjljYTM5M2Jh
LzEvaExES3lEanlndUJDbEktZEt5elZkVTB1akVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/Psxzqg
Cg/uFQi9ASKZmlBOHlK9n+vmUeCaofx3j3WFIH4isHi8G7ljZR9gB1jyVDqmt0We
rBZzZ/vYxUe+DOOZVlWCMJatz6mxhUddyvNZ9HFNnnemaAqTksEsbbdTBFdS2Sgl
4yKuYCxx8yZPUyxGqcZYeEVbpMAvpE0nnR+ysxYU1mgavyQVCXrw6IBHWR6SNd/v
iKGp51pxT6ziRyhagIWXfrAQmf0WxeFTOaU2OhtZ5BtdxHMaPyVdkp4tlYr3sedx
hZk9RJXdYrwXePDm/6sd+iQZ451F9VDKFJ7Bgnm2CW8kR2Xp/rcEBJfcoTF0yW3F
BKkW3YnCYv5BbQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:23:17 2026 by rpki-client