Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft
File: HA73NQ7-NSp2AezkHDGl-DhkVic.mft (raw, json)
Hash identifier: aOObtbn4c270JGttke6DGOsFyJ1/PTwzKHwwZ4PVxjU=
Subject key identifier: 83:A0:D2:BC:25:21:39:08:07:A8:12:86:AA:81:03:E0:F3:8C:F7:D9
Authority key identifier: 1C:0E:F7:35:0E:FE:35:2A:76:01:EC:E4:1C:31:A5:F8:38:64:56:27
Certificate issuer: /CN=1c0ef7350efe352a7601ece41c31a5f838645627
Certificate serial: 019D375272D098C889513AD6C3E7582C3907
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HA73NQ7-NSp2AezkHDGl-DhkVic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft
Manifest number: 01BB
Signing time: Sun 29 Mar 2026 02:00:43 +0000
Manifest this update: Sun 29 Mar 2026 02:00:43 +0000
Manifest next update: Mon 30 Mar 2026 02:00:43 +0000
Files and hashes: 1: HA73NQ7-NSp2AezkHDGl-DhkVic.crl (hash: CdYg3c41ERWtK2ykF7TUcQKr/D+zm7SoNG+gljfgY80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft
rsync://rpki.ripe.net/repository/DEFAULT/HA73NQ7-NSp2AezkHDGl-DhkVic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:72:d0:98:c8:89:51:3a:d6:c3:e7:58:2c:39:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c0ef7350efe352a7601ece41c31a5f838645627
Validity
Not Before: Mar 29 02:00:43 2026 GMT
Not After : Mar 30 02:00:43 2026 GMT
Subject: CN=83a0d2bc2521390807a81286aa8103e0f38cf7d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:02:4c:df:a9:f6:e3:58:71:96:ff:c5:c5:5b:
96:45:87:3c:e1:96:88:7b:66:a3:9f:0b:8b:b7:1c:
e2:2c:39:d3:5e:3b:11:02:87:09:2f:d2:3c:9e:75:
8e:88:f4:68:6a:e3:eb:2b:0f:78:77:47:4f:91:d8:
30:5e:cd:cf:81:73:0c:83:fd:22:3b:e9:0b:6d:a2:
2e:65:0a:43:2e:88:8c:ce:28:e8:9c:f7:39:f2:05:
05:2c:94:1c:14:29:5a:c0:6f:af:81:9f:a2:f3:ee:
48:ef:43:d7:6b:48:20:d9:15:4a:27:ab:4c:c3:c6:
55:f3:6f:e2:f8:61:44:04:29:6e:d3:85:64:05:71:
e6:c1:b0:86:29:01:7a:c5:4a:28:39:35:1a:2f:a6:
a1:ca:e7:90:91:e3:f7:6b:22:d3:54:6b:1e:30:e1:
f9:49:9a:f0:f1:fd:84:87:d9:61:2f:ad:e9:06:da:
c7:cf:3b:ee:3f:6d:88:84:4c:34:47:01:9c:e1:62:
2f:1f:ca:84:c2:db:22:98:c1:ab:48:0a:f5:c5:8b:
19:d7:20:da:cd:1e:80:b2:3a:15:96:6e:c4:58:3a:
af:e7:01:5a:a6:84:bd:3c:c4:72:52:bb:7c:d7:7a:
49:f2:ce:8b:68:e1:ae:89:c8:d5:94:b7:fe:35:46:
15:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A0:D2:BC:25:21:39:08:07:A8:12:86:AA:81:03:E0:F3:8C:F7:D9
X509v3 Authority Key Identifier:
keyid:1C:0E:F7:35:0E:FE:35:2A:76:01:EC:E4:1C:31:A5:F8:38:64:56:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HA73NQ7-NSp2AezkHDGl-DhkVic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:fb:72:4c:c7:d3:bc:93:e7:3d:6e:0d:48:58:ae:eb:0c:0a:
7f:cf:04:2c:a5:af:0e:52:2e:89:aa:61:02:4b:e8:0d:e2:f8:
c5:5e:a5:43:8e:9c:10:60:85:ec:4e:d7:a3:02:63:02:f3:41:
13:c6:85:ea:31:58:1a:89:61:ec:e8:b6:aa:90:d1:97:36:96:
94:f5:85:3d:1a:13:7f:b1:46:01:f5:91:ed:47:25:02:2e:0b:
7a:7c:ce:8c:a2:81:e7:ef:5f:7e:ee:73:eb:a9:22:fe:20:fd:
1d:6e:50:3e:4f:34:fc:b2:20:08:d3:c7:69:bc:17:bc:93:53:
bc:3a:51:98:c3:9a:5d:f3:fe:54:46:f9:16:ba:7b:e7:8f:6c:
23:0c:da:ed:b0:d0:77:de:01:f1:7b:b0:a3:80:35:4d:1e:2e:
09:18:dc:11:f0:4f:36:ec:c0:b5:01:c5:78:22:1e:65:c4:17:
b8:69:3d:f6:1a:df:a1:ee:79:41:7b:35:be:d7:d1:f6:a5:8b:
78:e4:31:af:5b:eb:13:0f:05:c4:45:1d:9c:c1:3e:e8:2e:f6:
c1:e2:3b:91:54:71:98:39:ef:a0:1c:c2:5e:1a:ec:7a:65:58:
c5:81:19:34:11:1d:84:98:d5:56:80:fe:a6:af:b3:cb:19:7b:
0f:37:aa:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:20 2026 by rpki-client