Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
File: hGr1TmVYz8hiUpRuRpKrknd8DhA.mft (raw, json)
Hash identifier: 2G6VRoI3peiUzVZh64jT3ZsZT/SnZKQI51TCzZ/IwEo=
Subject key identifier: 4A:AF:C3:B5:9D:DD:E1:EE:16:57:A8:DB:61:FC:49:C1:D1:84:58:73
Authority key identifier: 84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
Certificate issuer: /CN=846af54e6558cfc86252946e4692ab92777c0e10
Certificate serial: 019D382EB29F570710506C26B695CB1F33B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
Manifest number: 14B3
Signing time: Sun 29 Mar 2026 06:01:17 +0000
Manifest this update: Sun 29 Mar 2026 06:01:17 +0000
Manifest next update: Mon 30 Mar 2026 06:01:17 +0000
Files and hashes: 1: DzxlgYolYmYrOw6dLtHYtuvzTW4.roa (hash: snxX9+Dmsgw6Tf7GTwWvTcPR+yOEzI9Wj8zN8W2eCBE=)
2: OQLmyHIHKnOQqtsOG6o6hyfLKFE.roa (hash: OAPut5klxvnwxvXekYncRq9ZTcquwuK9N/4Pis2RPnI=)
3: SU9l9n5tTaHoiwwtJtq99KggAas.roa (hash: 7Jnaa+yaZEgfZ0pJI5V9JYe56J0Eyz54F3utpVXqqBs=)
4: hGr1TmVYz8hiUpRuRpKrknd8DhA.crl (hash: cM32KhTQr1yTc3d/4jST1qxoZSIOOZvRTzO4J7fJJaE=)
5: y18u9oMcyFjkgl_LFXqULX8NytA.roa (hash: B5vX5oLv2822UN69f2wG7jEHSe1FzIcV1zpP+Ish8P8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:b2:9f:57:07:10:50:6c:26:b6:95:cb:1f:33:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846af54e6558cfc86252946e4692ab92777c0e10
Validity
Not Before: Mar 29 06:01:17 2026 GMT
Not After : Mar 30 06:01:17 2026 GMT
Subject: CN=4aafc3b59ddde1ee1657a8db61fc49c1d1845873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ff:7c:c0:cb:0c:5e:8b:fe:54:f2:3d:d0:fe:
9c:da:b3:36:45:3e:92:23:fa:cf:ef:62:0e:d3:b4:
69:78:a4:92:a5:cf:ab:05:77:64:9a:fc:52:80:e9:
6f:dc:3c:5a:c9:74:e9:3f:d8:89:41:8f:74:9f:e1:
48:75:29:29:ed:1a:17:0c:9b:f7:6f:46:ba:04:1d:
8c:e2:b7:05:02:1e:57:46:85:4f:d0:00:16:a9:21:
a5:12:0e:c8:f1:cb:35:ab:2b:f8:eb:84:39:50:cc:
6b:c7:cb:bc:16:44:40:09:1a:57:00:2d:1c:0d:81:
7a:ac:50:38:15:c0:21:91:18:37:1d:92:91:36:78:
11:63:64:16:de:db:93:34:98:63:9a:e6:8e:87:69:
68:8d:9e:38:8e:aa:00:3c:c3:85:74:59:2a:18:7e:
2d:ed:aa:45:95:95:c3:5e:94:49:97:66:1b:98:87:
79:15:db:ab:ae:0f:2b:da:ad:c1:db:f0:33:3f:ed:
90:db:99:bb:17:d7:ed:ad:cf:ca:77:68:68:71:e1:
31:bf:af:6f:56:e4:bb:7f:9b:cd:6d:ed:f2:f6:21:
36:78:a4:75:d5:d0:0b:56:e8:ff:6b:86:43:a0:6a:
8e:0c:ca:2e:06:01:2c:31:16:86:fc:46:8d:e6:72:
a9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AF:C3:B5:9D:DD:E1:EE:16:57:A8:DB:61:FC:49:C1:D1:84:58:73
X509v3 Authority Key Identifier:
keyid:84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c3:f1:0c:21:f2:c2:e6:ab:ae:da:22:94:79:c8:63:95:67:
66:c1:e9:cd:a7:9f:b2:3f:66:b3:61:bb:77:78:9b:e3:04:6d:
a6:e2:53:34:f8:7a:2b:47:f4:01:5f:d0:86:77:e3:52:c5:db:
11:0f:4d:1d:bf:c6:9c:e4:44:9d:86:57:ae:0c:9f:17:8d:5e:
ff:20:57:6d:af:4c:51:b5:c4:f8:77:56:ad:71:96:32:50:88:
b7:1c:f8:71:1e:42:4f:7a:b7:de:b5:55:a6:02:32:56:26:0a:
54:66:12:23:b2:7d:90:b7:82:7e:19:40:82:31:b2:99:89:f5:
59:12:4e:74:9e:3f:61:83:5c:7d:5f:b3:11:9b:eb:d5:9c:eb:
54:d7:58:37:a0:91:f8:34:f3:54:7c:91:87:a1:43:43:22:b9:
dc:35:26:f0:e3:89:97:e4:a3:ef:c0:8a:07:b7:d1:b5:ca:e8:
c8:c7:70:6b:7e:74:da:68:e6:04:f7:bf:91:4d:da:2b:a4:af:
a7:3d:e9:44:a6:69:25:77:8a:21:56:26:8a:49:62:2b:fa:bc:
4b:f6:b2:4e:99:17:94:9c:1d:0d:4a:3b:05:f0:f3:aa:bd:49:
88:e2:9d:39:5f:4e:d2:32:e8:ec:8a:4c:9e:7f:85:e8:03:28:
98:6a:a7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:41 2026 by rpki-client