Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: gEZuO7vuki+blzZbPFQo07I/njCN0k+bD2abkeE3Bt8=
Subject key identifier: CD:AD:C9:9C:56:13:9B:7A:63:53:F8:B3:E4:94:28:29:4E:81:EE:4C
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019D088BB58F3AE27240B76EE3BC4577985C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 041F
Signing time: Fri 20 Mar 2026 00:01:06 +0000
Manifest this update: Fri 20 Mar 2026 00:01:06 +0000
Manifest next update: Sat 21 Mar 2026 00:01:06 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: AvUnpLiorhi34V4eM5gx2Ij72JHe7eQZ/2qCzFOBFcY=)
2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 16:33:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:08:8b:b5:8f:3a:e2:72:40:b7:6e:e3:bc:45:77:98:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Mar 20 00:01:06 2026 GMT
Not After : Mar 21 00:01:06 2026 GMT
Subject: CN=cdadc99c56139b7a6353f8b3e49428294e81ee4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:72:9c:bf:a5:03:21:01:2b:4e:d4:de:2e:6c:
b6:6a:50:09:5c:43:02:0b:71:2b:90:9a:cf:98:79:
6b:24:46:00:80:f9:10:ba:b0:78:47:76:6e:7d:fd:
81:87:d6:3b:d1:47:84:1f:ad:1f:64:b7:b8:2f:21:
6f:47:6b:97:fe:e8:46:49:22:69:93:11:28:4a:4d:
3f:e0:4c:c3:71:1d:fd:66:03:88:7e:ed:af:82:5e:
94:66:3d:a7:c7:9d:93:d2:c1:be:4b:5d:2e:23:16:
95:13:aa:41:8b:a8:3b:fb:be:b9:cb:73:2a:d3:14:
61:0b:1d:b1:0d:c3:7d:28:5a:b3:17:85:d4:a4:85:
5f:45:71:44:ab:95:a1:8b:2d:c2:6f:72:f5:8c:2b:
57:e8:e5:4c:78:b0:2f:f5:02:6a:ba:20:ee:a6:49:
82:9d:bc:f2:38:92:5a:00:e6:33:52:9a:fa:b6:14:
bb:d3:1a:68:22:b2:f1:34:0e:e5:a0:0c:30:39:15:
46:17:ff:81:b5:e3:d8:c9:79:e2:85:c7:9d:be:0d:
21:67:fe:ee:fb:36:84:91:94:76:ab:d9:0c:83:32:
1b:c2:06:5a:31:a0:ac:6d:6d:58:2b:dc:76:01:4a:
5f:3c:d4:1e:d9:30:c9:04:ef:61:09:81:0f:18:ab:
5f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:AD:C9:9C:56:13:9B:7A:63:53:F8:B3:E4:94:28:29:4E:81:EE:4C
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a8:96:82:24:e1:eb:9a:8b:53:2c:c9:a0:c4:42:18:4d:8d:
b0:86:95:62:1c:8f:cb:75:f4:74:42:79:45:5f:5e:8c:46:dd:
2f:d8:f1:85:31:ea:e1:02:d3:0d:e2:52:bd:36:48:21:d2:e6:
01:c8:e1:02:ea:d2:27:b0:39:b5:82:aa:96:62:d5:06:05:f7:
1a:df:60:d1:91:8a:13:7c:87:71:ef:d0:0b:ea:22:11:6c:57:
c5:91:33:e0:10:5f:d4:5d:4f:ca:9f:94:15:9e:46:bd:a2:de:
13:90:7a:11:f5:86:db:02:43:40:e0:43:f9:fc:a2:d3:78:d3:
f7:68:f0:70:fb:44:32:03:15:0f:0b:56:d3:f2:46:8f:cc:f6:
72:b5:94:c6:62:24:74:80:99:17:73:5a:2c:a2:a6:a3:99:cc:
5c:07:e4:52:cc:21:51:e7:bc:4b:c5:f8:99:d9:2b:7c:4b:4f:
1f:93:5b:08:88:54:53:3b:67:37:5b:98:71:7e:d9:48:08:6e:
23:b0:9a:e0:3a:cd:31:01:9e:9b:88:37:88:cd:3a:9b:30:17:
92:c8:10:74:f4:32:64:15:e5:a8:6a:23:f8:40:3d:b9:5d:8c:
18:44:7c:cd:26:4a:b3:45:29:ee:27:4e:41:09:c1:32:5d:b3:
05:ef:ea:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0Ii7WPOuJyQLdu47xFd5hcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMzFlMDIwN2VkM2NhNzY4NGEwM2U4OGY5YTFkZTI5MjJk
ZDQ1ZGUwHhcNMjYwMzIwMDAwMTA2WhcNMjYwMzIxMDAwMTA2WjAzMTEwLwYDVQQD
EyhjZGFkYzk5YzU2MTM5YjdhNjM1M2Y4YjNlNDk0MjgyOTRlODFlZTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHKcv6UDIQErTtTeLmy2alAJXEMC
C3ErkJrPmHlrJEYAgPkQurB4R3Zuff2Bh9Y70UeEH60fZLe4LyFvR2uX/uhGSSJp
kxEoSk0/4EzDcR39ZgOIfu2vgl6UZj2nx52T0sG+S10uIxaVE6pBi6g7+765y3Mq
0xRhCx2xDcN9KFqzF4XUpIVfRXFEq5Whiy3Cb3L1jCtX6OVMeLAv9QJquiDupkmC
nbzyOJJaAOYzUpr6thS70xpoIrLxNA7loAwwORVGF/+BtePYyXnihcedvg0hZ/7u
+zaEkZR2q9kMgzIbwgZaMaCsbW1YK9x2AUpfPNQe2TDJBO9hCYEPGKtf7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2tyZxWE5t6Y1P4s+SUKClOge5MMB8GA1UdIwQY
MBaAFB0x4CB+08p2hKA+iPmh3iki3UXeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUt
YTFiNzc4ZjRkMDdkLzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUtYTFiNzc4ZjRkMDdk
LzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ6iWgiTh
65qLUyzJoMRCGE2NsIaVYhyPy3X0dEJ5RV9ejEbdL9jxhTHq4QLTDeJSvTZIIdLm
AcjhAurSJ7A5tYKqlmLVBgX3Gt9g0ZGKE3yHce/QC+oiEWxXxZEz4BBf1F1Pyp+U
FZ5GvaLeE5B6EfWG2wJDQOBD+fyi03jT92jwcPtEMgMVDwtW0/JGj8z2crWUxmIk
dICZF3NaLKKmo5nMXAfkUswhUee8S8X4mdkrfEtPH5NbCIhUUztnN1uYcX7ZSAhu
I7Ca4DrNMQGem4g3iM06mzAXksgQdPQyZBXlqGoj+EA9uV2MGER8zSZKs0Up7idO
QQnBMl2zBe/quA==
-----END CERTIFICATE-----
Generated at Fri Mar 20 02:39:15 2026 by rpki-client