Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
File: HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft (raw, json)
Hash identifier: moo3mQ0xuZ5BYEHauKB1DlhjcfU85UENsfCbElqSgG8=
Subject key identifier: 9D:BC:87:F4:04:A4:5E:CE:EB:9A:E3:77:46:8E:A0:C4:83:9A:F1:7A
Authority key identifier: 1C:39:D5:79:36:DD:2D:15:21:44:3E:68:DA:DD:9D:09:49:CD:E3:3F
Certificate issuer: /CN=1c39d57936dd2d1521443e68dadd9d0949cde33f
Certificate serial: 019D3977F46ACDC576F2CA198A18B443DA56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
Manifest number: 1894
Signing time: Sun 29 Mar 2026 12:00:55 +0000
Manifest this update: Sun 29 Mar 2026 12:00:55 +0000
Manifest next update: Mon 30 Mar 2026 12:00:55 +0000
Files and hashes: 1: 9rDYh6RoCnRP7wyIaMUt11JFs3w.roa (hash: ceIif/yZZ/uAesVBkNPfdSQjyTnuFeMLRlIbdZ852RQ=)
2: HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl (hash: +C0AUPqq4TGDZh75A2/t2z3etbGq0qZ8DiDnK6h1u6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:f4:6a:cd:c5:76:f2:ca:19:8a:18:b4:43:da:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c39d57936dd2d1521443e68dadd9d0949cde33f
Validity
Not Before: Mar 29 12:00:55 2026 GMT
Not After : Mar 30 12:00:55 2026 GMT
Subject: CN=9dbc87f404a45eceeb9ae377468ea0c4839af17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2b:4e:b1:d6:dc:fe:61:d8:b8:e2:bb:23:fa:
0d:e8:fb:07:30:39:44:79:c8:9e:7b:dd:04:81:5c:
03:69:71:70:78:ed:bc:56:1b:30:63:4b:e9:33:b9:
3f:3d:65:23:88:da:d3:58:75:ae:04:99:73:53:48:
06:16:c9:83:8a:ad:cb:13:3b:f4:ea:e3:cf:65:b4:
2c:0c:d1:9d:5d:89:1d:b7:ea:40:f2:4a:a7:e1:2f:
a8:c6:2e:90:9a:74:34:d2:25:8e:9c:69:54:0a:97:
6f:48:ee:09:e7:a9:8d:78:53:a0:c5:46:31:be:f6:
46:72:8e:1f:79:b4:22:8a:be:96:67:92:6c:ee:db:
fd:0d:92:43:79:d3:6b:34:cb:bd:30:36:d3:35:fa:
eb:6e:c7:4b:bd:29:df:7e:b9:72:85:54:d4:ef:e1:
94:d7:a6:a4:56:52:05:15:e7:43:63:56:a4:af:0d:
09:ff:85:81:5d:ef:f6:42:25:56:94:ab:c4:84:75:
1e:50:47:04:a1:a4:3d:47:5a:cf:4c:e9:dc:83:b1:
14:6e:58:7d:29:82:a1:f9:65:0f:2f:9a:cc:c7:37:
3a:4b:d9:c6:3d:d1:f2:4b:15:e9:c3:97:36:cf:5b:
b4:a9:0b:0c:99:03:3c:e2:18:84:8c:02:66:4a:5c:
a4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:BC:87:F4:04:A4:5E:CE:EB:9A:E3:77:46:8E:A0:C4:83:9A:F1:7A
X509v3 Authority Key Identifier:
keyid:1C:39:D5:79:36:DD:2D:15:21:44:3E:68:DA:DD:9D:09:49:CD:E3:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:8b:e2:6c:52:3a:58:82:1b:5d:c5:65:94:d5:9f:93:04:82:
4d:58:5b:24:be:d0:1b:28:72:6b:15:8e:e1:56:c1:53:d2:79:
91:24:b3:8a:8e:70:55:b0:53:40:e3:28:84:22:a8:8d:b1:de:
b7:d2:3c:79:7c:0f:a8:28:20:fe:30:83:4c:fa:28:34:1d:fa:
de:55:e0:d8:c9:67:65:d2:cc:9d:75:f2:97:5a:9e:9f:59:22:
17:2c:65:30:45:04:b8:33:15:d6:2c:58:4b:65:5e:56:a0:bf:
2b:62:b5:14:cf:01:81:0d:d3:4a:ec:20:6c:c5:0c:bd:f5:f7:
2e:c5:fc:db:e5:a8:c9:9c:c0:c4:18:26:17:2f:c0:1c:ab:f3:
8d:88:a7:b5:d8:8c:31:a0:e1:7a:53:0e:08:05:4d:41:49:b1:
86:09:03:6d:85:c9:43:9d:c5:6f:78:82:8e:6b:72:e8:94:56:
45:31:9d:3c:43:aa:d8:b9:b0:43:c3:8f:9a:b1:b9:aa:cf:eb:
c7:42:30:c7:a9:fa:f9:19:87:b4:49:6a:c3:c0:cd:a5:9e:56:
33:16:0a:a1:36:38:e3:84:61:72:62:ac:b6:6a:da:9f:46:2a:
b4:b3:17:27:bf:3c:fd:05:9b:54:c4:71:7b:1c:a8:ed:f0:d1:
85:11:d5:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:54 2026 by rpki-client