Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json)
Hash identifier: f36Qjsxm1FtxWDgjhTUe0DFLicpa5YNHoFMWj+cbBVg=
Subject key identifier: 0A:6B:EE:98:83:69:BF:33:B1:37:A1:36:CA:AC:E3:81:3E:4D:AF:2B
Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Certificate serial: 019D38667F848DE4E10A28F3293EBA8FE8D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:02:14 +0000
Manifest this update: Sun 29 Mar 2026 07:02:14 +0000
Manifest next update: Mon 30 Mar 2026 07:02:14 +0000
Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: k8FDlroe0/7HK8sIb08bsnBtv1bFcDWK8vzN6t4Mu24=)
2: YH3qouyi9uf0Sjp7erwfbtdqIMY.roa (hash: XATxeFAkfU3QrOitUmq9zj3TBTO+Je2+3q8oJUZcsYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:7f:84:8d:e4:e1:0a:28:f3:29:3e:ba:8f:e8:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Validity
Not Before: Mar 29 07:02:14 2026 GMT
Not After : Mar 30 07:02:14 2026 GMT
Subject: CN=0a6bee988369bf33b137a136caace3813e4daf2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d6:46:b7:54:81:37:45:d0:92:f7:e6:4c:ea:
8d:2a:e6:77:d1:38:b2:81:2b:20:2e:b2:6e:e1:66:
90:ef:92:df:a6:e6:ec:83:bb:04:12:55:87:29:f2:
f3:2e:5f:8c:c0:e1:28:f2:a7:67:1f:0f:28:47:32:
e3:55:ec:43:d5:97:09:c2:02:32:9c:84:ea:4f:15:
a9:e3:cf:90:89:d0:8e:29:39:87:33:b2:ff:49:70:
de:54:13:dd:a9:31:ea:eb:83:25:bc:35:43:e4:40:
6d:c6:d1:36:ca:b6:7c:0b:d2:18:bf:2c:9b:18:b2:
c7:de:26:10:af:7e:62:cb:4d:d6:74:5b:ed:50:9d:
41:e2:26:58:d4:15:ff:f3:d5:bd:91:81:5b:eb:de:
4d:64:32:c4:f5:8c:22:34:23:d4:48:4f:ea:ff:29:
84:b8:3c:ad:f9:bf:f4:8f:db:c2:fe:b4:e7:ff:21:
91:47:04:70:b9:fe:9d:80:8d:48:cf:a0:66:d1:b0:
79:32:ea:86:1d:88:22:22:98:ba:39:20:41:36:0b:
e8:aa:14:08:73:75:81:87:4e:1f:de:9d:ae:16:01:
05:ca:23:96:4e:3f:11:ed:40:33:eb:d4:fe:f1:1c:
c4:b7:7a:b7:f1:5e:a1:9b:5b:46:14:00:7f:21:6d:
3f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:6B:EE:98:83:69:BF:33:B1:37:A1:36:CA:AC:E3:81:3E:4D:AF:2B
X509v3 Authority Key Identifier:
keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:01:c3:59:d0:d4:8f:42:2f:08:f5:35:3d:5d:62:47:e0:31:
6d:be:d3:2a:83:83:0e:15:98:3e:54:80:e5:1a:b1:3b:e2:46:
87:f0:c7:d7:2b:2b:03:c0:59:19:eb:81:a6:b7:0e:cf:99:16:
3b:ca:c3:d7:69:26:0b:69:f8:9e:e3:e8:30:07:5f:20:4d:4d:
17:4c:0a:06:a4:fe:a7:16:4d:8d:a9:08:14:e4:9c:45:cc:72:
21:40:c6:83:69:97:90:0c:3f:f3:7a:2d:1a:2a:a6:80:15:c6:
44:54:9d:4f:de:0f:91:84:ca:24:5b:52:be:9f:80:5d:91:da:
71:f3:4a:3f:47:ef:d3:c3:9d:0b:0e:f3:30:a4:3b:a2:59:4c:
3f:b8:3d:ae:ad:a7:a0:08:cc:12:4d:97:8e:2f:55:ba:24:7a:
fd:3c:f7:30:0d:8a:8d:b2:f1:b2:1f:2a:4a:78:76:d9:ab:5a:
cd:b7:be:ea:3a:6b:cf:3b:a5:8c:52:85:08:e4:01:2e:af:aa:
66:c1:e4:6b:9c:07:d3:03:c9:8b:a1:91:74:0c:d8:a3:a3:08:
8d:90:99:c5:23:af:51:ee:58:77:ba:ff:30:bd:dd:90:2b:59:
09:c9:9d:b1:7e:a6:63:cd:24:3a:a0:04:81:46:a1:c0:96:0e:
04:d1:41:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:26 2026 by rpki-client