Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
File: hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft (raw, json)
Hash identifier: egsSwd2NG/2Uxmn9G1iU3U6Mr7/NatOWKEjTje5mlL4=
Subject key identifier: 7B:84:F1:21:FD:F6:08:51:FB:C3:B9:F5:16:4B:ED:9A:0C:51:90:99
Authority key identifier: 85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
Certificate issuer: /CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Certificate serial: 019D38655D1EF579D8F0A09DCAE830E27883
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:01:00 +0000
Manifest this update: Sun 29 Mar 2026 07:01:00 +0000
Manifest next update: Mon 30 Mar 2026 07:01:00 +0000
Files and hashes: 1: hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl (hash: cEwgiuFdVygUkIKmu7vJgggQ2xSfvufFeT20H7cMiEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:5d:1e:f5:79:d8:f0:a0:9d:ca:e8:30:e2:78:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Validity
Not Before: Mar 29 07:01:00 2026 GMT
Not After : Mar 30 07:01:00 2026 GMT
Subject: CN=7b84f121fdf60851fbc3b9f5164bed9a0c519099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c1:fc:e9:4f:37:e6:e1:a9:57:cf:fc:f4:db:
97:ed:d7:9d:8e:5c:e9:5d:79:e0:6f:63:e1:cd:8d:
c7:90:4d:44:fa:95:ef:c3:32:73:5a:a2:49:3a:8c:
8a:b5:25:58:80:c3:26:28:96:de:65:18:00:3c:6f:
55:bd:18:5f:e6:eb:d3:bb:b1:98:ac:61:4a:62:0f:
01:e3:4a:4a:ff:09:ae:b3:c5:96:6f:29:02:46:56:
08:c9:5f:5f:2a:57:49:f3:00:28:7e:a1:e1:d5:86:
ff:91:17:81:17:bf:f0:57:d2:41:0e:da:cd:34:e4:
46:ab:58:d7:a2:7e:2d:62:95:5b:5a:2d:ec:a7:af:
8b:38:d4:b6:04:38:5a:a0:58:0a:92:4f:9e:45:d3:
ed:12:cd:aa:5f:cb:32:bd:81:d2:32:3e:1d:81:86:
ee:1e:a8:89:80:29:a7:ce:14:1b:4d:8e:c8:14:7c:
7c:69:da:e4:0f:12:9e:d3:57:69:25:5e:f7:8e:77:
a8:82:ea:a9:60:ba:f8:60:75:d3:ff:ac:b8:3e:6d:
d8:58:39:74:a3:06:c0:59:ca:d0:cc:f0:7b:1b:cf:
f0:3b:ed:28:e6:14:9c:3e:1b:09:7f:0b:16:44:50:
eb:5f:d9:d7:ac:dc:42:31:ba:1a:37:5a:58:65:17:
c1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:84:F1:21:FD:F6:08:51:FB:C3:B9:F5:16:4B:ED:9A:0C:51:90:99
X509v3 Authority Key Identifier:
keyid:85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:87:c4:7d:79:4c:00:4c:1a:f7:3d:a7:17:0e:bb:07:32:c6:
02:ae:e5:68:5a:7e:27:1e:18:88:6d:c6:eb:51:bd:d5:e7:b5:
09:0a:b2:a7:b6:48:3b:5e:7a:b7:8d:ea:d9:1e:c2:11:63:b9:
dc:4d:85:23:49:4d:17:f1:5f:f3:23:58:2a:97:4e:01:c0:70:
46:7c:84:d4:74:de:d9:b0:3a:c4:09:d7:e8:b4:59:dc:cc:f6:
97:7f:70:7b:d7:04:65:06:ae:b7:79:08:62:26:99:94:e0:e9:
da:c0:d9:de:61:26:bc:60:ab:a0:b5:a2:f0:e2:34:68:76:6c:
9c:df:30:15:01:4b:05:17:0c:39:c1:2e:e4:bc:c7:b1:88:c3:
2d:8c:54:b8:1b:d2:99:f8:4c:00:6e:c7:5e:1c:f2:33:ed:b0:
d7:af:15:e7:7f:11:e2:04:bf:55:ae:8e:8a:4b:44:f0:17:80:
fc:c9:88:aa:2d:71:9f:1f:26:1c:15:dd:27:5c:48:82:3e:ef:
e4:32:73:85:90:04:79:d6:b0:3f:1c:ce:48:e8:c7:54:71:bf:
91:19:96:58:a4:cb:9e:59:cb:3c:59:df:b3:dc:6b:68:09:0c:
c7:0b:1a:59:9f:bf:fe:65:a3:ed:02:38:ad:53:9c:6c:8d:a8:
bd:96:09:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZV0e9XnY8KCdyugw4niDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MDEyM2U0Y2UyYjgwZWJmMTJlNDNmZWU0YjFjMThjNWM3
M2QzYjQwHhcNMjYwMzI5MDcwMTAwWhcNMjYwMzMwMDcwMTAwWjAzMTEwLwYDVQQD
Eyg3Yjg0ZjEyMWZkZjYwODUxZmJjM2I5ZjUxNjRiZWQ5YTBjNTE5MDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMH86U835uGpV8/89NuX7dedjlzp
XXngb2PhzY3HkE1E+pXvwzJzWqJJOoyKtSVYgMMmKJbeZRgAPG9VvRhf5uvTu7GY
rGFKYg8B40pK/wmus8WWbykCRlYIyV9fKldJ8wAofqHh1Yb/kReBF7/wV9JBDtrN
NORGq1jXon4tYpVbWi3sp6+LONS2BDhaoFgKkk+eRdPtEs2qX8syvYHSMj4dgYbu
HqiJgCmnzhQbTY7IFHx8adrkDxKe01dpJV73jneoguqpYLr4YHXT/6y4Pm3YWDl0
owbAWcrQzPB7G8/wO+0o5hScPhsJfwsWRFDrX9nXrNxCMboaN1pYZRfB+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHuE8SH99ghR+8O59RZL7ZoMUZCZMB8GA1UdIwQY
MBaAFIUBI+TOK4Dr8S5D/uSxwYxcc9O0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My85OGI1ZGQtN2RlZS00ZjRlLTljZDEt
MTYzMjBkMDE0YzA0LzEvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My85OGI1ZGQtN2RlZS00ZjRlLTljZDEtMTYzMjBkMDE0YzA0
LzEvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASYfEfXlM
AEwa9z2nFw67BzLGAq7laFp+Jx4YiG3G61G91ee1CQqyp7ZIO156t43q2R7CEWO5
3E2FI0lNF/Ff8yNYKpdOAcBwRnyE1HTe2bA6xAnX6LRZ3Mz2l39we9cEZQaut3kI
YiaZlODp2sDZ3mEmvGCroLWi8OI0aHZsnN8wFQFLBRcMOcEu5LzHsYjDLYxUuBvS
mfhMAG7HXhzyM+2w168V538R4gS/Va6OiktE8BeA/MmIqi1xnx8mHBXdJ1xIgj7v
5DJzhZAEedawPxzOSOjHVHG/kRmWWKTLnlnLPFnfs9xraAkMxwsaWZ+//mWj7QI4
rVOcbI2ovZYJzg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:01 2026 by rpki-client