Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
File: hC4XioXWwwtXKyAmHET456S_wnI.mft (raw, json)
Hash identifier: +vX2ukskpziNZXlUdxHpRwUCt2YmhlI9hJDRFI7+Xso=
Subject key identifier: 8B:37:70:72:BD:EE:61:5B:14:70:AE:6E:DC:F8:47:1D:75:65:24:AF
Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Certificate serial: 019D3752826D11635D6FEEC5726902CEEBED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
Manifest number: 101F
Signing time: Sun 29 Mar 2026 02:00:47 +0000
Manifest this update: Sun 29 Mar 2026 02:00:47 +0000
Manifest next update: Mon 30 Mar 2026 02:00:47 +0000
Files and hashes: 1: 3widJOutrAHh97YKSptO-b1dBlc.roa (hash: WjqlvhNeLoXjkFAEnq8uZuntv6RT+a3RPjop0QMbaM8=)
2: hC4XioXWwwtXKyAmHET456S_wnI.crl (hash: kd6OZzOxHYafKu1ntTlJ766LWbc1BW0ALFw6SqHLk2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:82:6d:11:63:5d:6f:ee:c5:72:69:02:ce:eb:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Validity
Not Before: Mar 29 02:00:47 2026 GMT
Not After : Mar 30 02:00:47 2026 GMT
Subject: CN=8b377072bdee615b1470ae6edcf8471d756524af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ff:34:b2:18:57:ea:86:aa:73:8f:72:28:f9:
4a:b4:6a:f9:28:2a:2d:01:ab:f8:ef:c3:be:78:95:
4c:68:6d:45:ad:cb:89:ba:fe:1b:aa:38:68:b8:a9:
a5:34:26:a5:ab:15:de:5f:4c:56:b8:f3:b2:b9:2a:
88:85:87:19:e5:68:ca:24:1e:20:48:b9:99:2c:5d:
36:47:14:7e:13:d6:1b:d8:ec:06:33:3f:42:c4:28:
63:26:3c:f1:85:cb:b7:24:ca:9d:d9:04:32:ee:8d:
d9:85:f0:1c:6a:88:cd:a5:56:b2:71:1d:09:b8:7b:
d9:55:6d:fc:44:ad:18:49:bc:1c:12:17:ee:35:cd:
16:c0:b2:02:bf:ff:50:72:0d:1b:11:f3:1d:f8:12:
fc:80:16:c7:c6:85:62:2c:70:29:5f:bc:2c:a0:c8:
e1:db:a8:5d:06:b7:be:32:8d:b6:4b:bd:57:c0:a4:
7a:ca:b5:2f:fc:6d:91:79:95:2e:d8:64:e9:05:b1:
b3:c0:39:3a:c7:26:f9:0f:26:d5:65:9d:fd:d3:13:
45:c8:96:29:06:16:e6:58:6f:70:c4:15:c2:45:e4:
c7:d9:a3:4e:9f:74:17:9d:0a:4c:72:97:83:e8:dc:
e2:7b:f4:7d:26:4b:cc:a7:1a:e9:ad:48:db:37:2b:
06:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:37:70:72:BD:EE:61:5B:14:70:AE:6E:DC:F8:47:1D:75:65:24:AF
X509v3 Authority Key Identifier:
keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3f:3d:c5:9b:97:a2:3c:09:6e:a8:ab:5e:e2:6e:61:f6:3a:
6b:ef:2d:20:58:d9:b7:30:b3:54:bb:3b:b9:90:8c:ea:eb:86:
63:c0:88:80:03:c3:71:e5:5d:83:b9:b1:4d:8f:fd:d2:fc:43:
f2:84:f2:b2:29:aa:df:c3:73:be:9e:43:03:f4:38:bc:90:4d:
fd:4a:aa:ef:bd:3e:dd:f0:1a:7a:62:41:41:61:ad:78:4b:20:
d1:8f:18:4d:ab:68:e1:81:b7:db:ba:9b:85:bf:88:2d:0a:c8:
f5:bb:7b:6a:76:d2:b9:69:88:70:16:2b:51:1a:64:5d:cb:61:
fb:b6:a0:1f:af:9f:8d:ed:3f:89:64:fd:c3:f6:fd:9a:4f:27:
52:77:1e:7a:07:17:9a:55:61:8b:c8:27:00:30:bc:60:ba:b6:
3d:41:0e:32:89:1a:a3:a1:5d:81:94:5c:fd:d5:24:af:be:c0:
18:73:d7:5c:d0:ff:81:b7:83:ab:0a:a9:6d:14:4e:a9:34:80:
8f:7f:94:27:8a:4f:0f:6e:46:b3:3c:a1:a6:ae:a5:b6:f1:56:
ab:9d:5c:7d:bb:f1:76:71:04:b6:30:7f:c4:1b:33:3d:90:6c:
98:e8:46:c0:cb:17:2b:25:23:db:00:b4:a1:99:ac:a0:72:f2:
50:bf:3d:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03UoJtEWNdb+7FcmkCzuvtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MmUxNzhhODVkNmMzMGI1NzJiMjAyNjFjNDRmOGU3YTRi
ZmMyNzIwHhcNMjYwMzI5MDIwMDQ3WhcNMjYwMzMwMDIwMDQ3WjAzMTEwLwYDVQQD
Eyg4YjM3NzA3MmJkZWU2MTViMTQ3MGFlNmVkY2Y4NDcxZDc1NjUyNGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsf80shhX6oaqc49yKPlKtGr5KCot
Aav478O+eJVMaG1FrcuJuv4bqjhouKmlNCalqxXeX0xWuPOyuSqIhYcZ5WjKJB4g
SLmZLF02RxR+E9Yb2OwGMz9CxChjJjzxhcu3JMqd2QQy7o3ZhfAcaojNpVaycR0J
uHvZVW38RK0YSbwcEhfuNc0WwLICv/9Qcg0bEfMd+BL8gBbHxoViLHApX7wsoMjh
26hdBre+Mo22S71XwKR6yrUv/G2ReZUu2GTpBbGzwDk6xyb5DybVZZ390xNFyJYp
BhbmWG9wxBXCReTH2aNOn3QXnQpMcpeD6Nzie/R9JkvMpxrprUjbNysGbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIs3cHK97mFbFHCubtz4Rx11ZSSvMB8GA1UdIwQY
MBaAFIQuF4qF1sMLVysgJhxE+Oekv8JyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEM0WGlvWFd3d3RYS3lBbUhFVDQ1NlNfd25JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8wNzMwZDEtZmVlMy00NjU0LTlkZWEt
ZTE4N2JlOWI2YzIzLzEvaEM0WGlvWFd3d3RYS3lBbUhFVDQ1NlNfd25JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS8wNzMwZDEtZmVlMy00NjU0LTlkZWEtZTE4N2JlOWI2YzIz
LzEvaEM0WGlvWFd3d3RYS3lBbUhFVDQ1NlNfd25JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdz89xZuX
ojwJbqirXuJuYfY6a+8tIFjZtzCzVLs7uZCM6uuGY8CIgAPDceVdg7mxTY/90vxD
8oTysimq38Nzvp5DA/Q4vJBN/Uqq770+3fAaemJBQWGteEsg0Y8YTato4YG327qb
hb+ILQrI9bt7anbSuWmIcBYrURpkXcth+7agH6+fje0/iWT9w/b9mk8nUnceegcX
mlVhi8gnADC8YLq2PUEOMokao6FdgZRc/dUkr77AGHPXXND/gbeDqwqpbRROqTSA
j3+UJ4pPD25Gszyhpq6ltvFWq51cfbvxdnEEtjB/xBszPZBsmOhGwMsXKyUj2wC0
oZmsoHLyUL89sQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:33 2026 by rpki-client