Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
File: hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft (raw, json)
Hash identifier: lxVGM+Zvzw2fmWayDyLf05SpkGfzRTg+x+dqS0NAz0E=
Subject key identifier: 5D:C8:A9:87:D1:3E:A0:E9:76:8A:04:59:AF:56:C7:45:08:27:83:FF
Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
Certificate issuer: /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Certificate serial: 019CE47EE4F0A96A3D519D7343D5F59D9BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
Manifest number: 1839
Signing time: Fri 13 Mar 2026 00:00:47 +0000
Manifest this update: Fri 13 Mar 2026 00:00:47 +0000
Manifest next update: Sat 14 Mar 2026 00:00:47 +0000
Files and hashes: 1: gI4tnW4kPKjRONzlu_6zH8MeB9U.roa (hash: SAYaSp1GRG2E/ye85MqnahXwttShXyHtUuRf8N0xnmI=)
2: hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl (hash: q1S5xT4ZV5GbsqNZzfZWRzzn6UREsqTOy8gIbU+Kw94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:7e:e4:f0:a9:6a:3d:51:9d:73:43:d5:f5:9d:9b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Validity
Not Before: Mar 13 00:00:47 2026 GMT
Not After : Mar 14 00:00:47 2026 GMT
Subject: CN=5dc8a987d13ea0e9768a0459af56c745082783ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f0:21:b4:d7:4f:a5:99:25:4c:18:4c:f7:73:
10:d0:7c:62:0b:1d:7d:7f:45:f7:f1:b7:90:8c:21:
57:ba:5d:61:55:6a:ec:74:e4:8d:67:a9:e5:ca:34:
db:1e:9e:5c:70:d3:6c:d6:58:f3:d4:13:8e:bf:65:
48:5e:be:0d:6c:a9:79:d0:4c:0d:63:15:b7:73:b0:
28:c6:a1:e3:66:3e:b9:95:58:b1:32:76:32:1f:9e:
35:c4:1e:bb:a0:20:d6:32:c3:54:c7:9d:bb:ee:4d:
bb:07:ae:21:ec:ee:21:2a:32:c8:ee:f1:5e:b3:2d:
d6:50:c2:12:6b:63:98:8d:c6:81:db:d0:e8:1e:62:
94:0e:34:19:ef:cd:8f:22:bf:ba:86:4b:e8:1b:fe:
02:c0:1b:18:ea:ca:74:b8:5e:ea:e7:81:f9:b7:08:
71:8a:bb:0e:36:52:ae:7f:0a:83:90:b9:87:ab:37:
67:26:f2:fb:b3:a9:72:82:a1:a2:81:3c:cc:92:be:
37:06:ff:05:cc:25:2d:cb:c8:cc:22:c4:f8:d1:60:
11:97:c7:96:86:c9:83:56:81:fe:be:84:7c:a4:27:
45:bd:7d:17:9f:37:1b:4c:1c:66:17:6e:e4:73:b6:
f6:52:8f:7a:45:b9:ea:6e:b8:67:b8:6e:c6:42:92:
33:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C8:A9:87:D1:3E:A0:E9:76:8A:04:59:AF:56:C7:45:08:27:83:FF
X509v3 Authority Key Identifier:
keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:4f:3a:d1:b4:d3:6c:05:8c:83:ae:bd:63:ce:8f:12:af:51:
03:77:5b:c3:67:47:22:53:48:c7:f9:4d:9d:e1:c7:90:c9:e4:
f4:b9:5b:93:f2:20:73:0e:a5:85:60:dd:43:a6:d5:bf:83:7f:
26:ef:80:a9:07:26:01:8b:47:d2:4a:57:8d:09:54:f3:a3:88:
0c:5e:20:c1:f4:e6:ff:d3:36:5f:60:bc:43:53:59:79:d2:6d:
ef:5c:aa:83:88:d8:82:2c:d1:41:d3:d2:9b:f4:fd:1d:72:d4:
b8:2a:a6:d9:88:5b:cc:32:d9:3d:6f:d5:e4:e7:fd:4e:97:a2:
d1:99:b6:45:a9:fd:18:a6:26:76:64:23:c3:9b:69:a9:a5:79:
87:fe:84:e4:91:2e:a9:e9:53:ef:09:6d:b8:ab:52:9d:92:d0:
8f:f8:b8:39:1c:71:53:11:5a:dd:fc:3a:22:84:26:e5:bc:13:
9d:ff:94:2d:e3:d4:fb:8d:3d:96:74:dc:83:6e:80:7e:fa:df:
21:ba:f8:f9:04:5b:42:0c:6b:18:54:e6:8f:b9:dd:62:b8:e5:
9d:84:2b:0a:e0:92:dc:44:4f:42:aa:3b:34:6b:a1:ba:80:39:
ec:d8:34:e4:49:39:8d:b3:50:5e:49:eb:24:af:5a:32:a6:a1:
2c:84:c4:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:44:36 2026 by rpki-client