Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
File: hD0a_PE70hF9R99oPkCmMocATP4.mft (raw, json)
Hash identifier: VaP8wtJCpovV/1ZrIPztpjizjQn3NpzmsvzwbOmFVCM=
Subject key identifier: B4:D3:65:94:23:EE:53:B7:33:24:73:A4:2E:49:15:CA:55:ED:CE:88
Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe
Certificate serial: 019CE5C91D9F5443AA33562BDBD4FD0EFD0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
Manifest number: 150E
Signing time: Fri 13 Mar 2026 06:01:28 +0000
Manifest this update: Fri 13 Mar 2026 06:01:28 +0000
Manifest next update: Sat 14 Mar 2026 06:01:28 +0000
Files and hashes: 1: blJ-TZh-82zY8BmhlGXDYcWlXEM.roa (hash: Fd7qkgfgnAB5yGlcwTOLNMtcHfXu1EK11nyoGzaI4T8=)
2: hD0a_PE70hF9R99oPkCmMocATP4.crl (hash: hqdEJuQikA1mqBSmsD0SiMeOFMHW2L+UQk27zhacUoM=)
3: uGcdeOeH2FGE8oSm_emFftbBDBI.roa (hash: K6Jsrsz0fx7XMWqDVYW8cVOMG7U2AmGR+nHljnd4RYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 06:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:c9:1d:9f:54:43:aa:33:56:2b:db:d4:fd:0e:fd:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe
Validity
Not Before: Mar 13 06:01:28 2026 GMT
Not After : Mar 14 06:01:28 2026 GMT
Subject: CN=b4d3659423ee53b7332473a42e4915ca55edce88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:93:8a:08:3a:e3:b4:a4:1a:c3:d0:de:fd:af:
46:93:05:67:9d:d7:ea:f3:e9:3f:cc:46:c5:7b:4b:
1b:98:b5:ad:85:44:4f:06:e6:31:27:da:4e:0b:04:
bd:2a:e2:08:ed:46:ad:a5:00:a9:98:d7:06:32:32:
84:cc:93:7e:18:da:92:26:dc:98:ef:56:b2:55:1b:
78:f8:f6:03:8a:ea:0c:81:db:82:54:77:0d:6f:c5:
75:62:13:d2:8d:05:fe:f9:87:c4:e0:8c:9c:0d:32:
2c:3e:93:72:b3:d9:4e:2c:ff:16:74:96:0a:4a:c6:
af:dc:7b:51:f8:41:29:97:b1:66:56:16:9e:8d:47:
d5:bb:16:d7:96:40:e9:3e:67:de:d0:77:49:56:ea:
8a:20:a0:51:89:19:9b:3f:d4:21:e6:ba:01:5e:15:
e9:a0:9e:15:01:b2:33:d7:12:66:21:9e:b5:cd:0f:
62:9f:74:55:be:7f:61:ac:d7:9f:1d:80:74:06:b8:
7e:ca:01:f7:69:8d:81:66:11:44:cd:7d:75:e4:7c:
d9:a9:82:b4:63:b2:b0:b3:3e:7a:a3:d3:ee:01:49:
f3:86:13:b3:39:f7:be:65:8c:98:07:6c:25:f0:c6:
20:04:04:03:e0:7c:3b:28:83:32:bf:45:2e:cc:bf:
ad:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D3:65:94:23:EE:53:B7:33:24:73:A4:2E:49:15:CA:55:ED:CE:88
X509v3 Authority Key Identifier:
keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ee:e5:6f:0d:74:89:1d:49:1e:71:d9:1f:26:4f:dc:53:cc:
17:fd:a2:f5:51:9d:62:2c:7c:bc:34:85:c4:ba:d6:15:be:a0:
71:52:a4:33:69:52:71:22:4b:ea:ac:e4:c8:02:11:38:df:45:
48:a0:14:ea:fc:00:43:0d:05:f9:d5:a8:81:02:11:22:37:0f:
4f:13:fa:b1:88:95:5c:92:2b:6b:f8:6f:a0:1a:fa:5e:5f:02:
5a:01:b6:b2:e0:1d:3a:0d:ab:1a:8c:a4:81:82:c6:68:44:9c:
0e:29:26:ff:57:fc:0b:04:ae:a5:ad:5e:2e:6f:53:b6:59:25:
7c:b3:05:1a:a0:31:e5:99:c6:06:fa:9a:b7:b6:1b:f7:24:ae:
a8:25:0f:74:ba:85:c9:6b:6d:14:c4:b9:f4:c8:7d:38:db:44:
14:91:fd:60:10:20:59:81:c8:c9:e7:fa:5a:de:55:d0:55:60:
a7:49:8c:16:bf:be:d7:fe:40:d4:b9:73:87:28:08:96:66:2c:
bb:1e:ae:61:fc:d0:de:79:b4:35:07:ca:8b:6e:ba:e4:4a:ac:
f3:6e:e3:00:91:8c:5f:31:a3:3b:ce:56:98:b1:a7:7f:fd:0c:
9f:c9:15:86:63:be:da:1d:69:0f:86:18:7b:b6:12:7b:cb:c7:
5c:6d:02:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 15:13:15 2026 by rpki-client