Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
File: Hrq0DWCBM83fdsO1pvgV34H7x90.mft (raw, json)
Hash identifier: 77eRpXhsQnJ0Y1/pDwd+a/FS7D/RsRkyF4eL3zm8a8U=
Subject key identifier: 6F:6D:92:BF:3D:FE:D5:87:42:51:D5:11:1A:29:82:A9:E7:ED:25:5E
Authority key identifier: 1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
Certificate issuer: /CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Certificate serial: 019D145930066DB7FD97B3BBBBD2A7EE5D75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
Manifest number: 03C8
Signing time: Sun 22 Mar 2026 07:01:22 +0000
Manifest this update: Sun 22 Mar 2026 07:01:22 +0000
Manifest next update: Mon 23 Mar 2026 07:01:22 +0000
Files and hashes: 1: 5Kagby_sStjMFhSw2G6-l1YpdBk.roa (hash: Noo2j7EiUwmhRo9X0f0rtLLladI+Ufm3DSaLlHlT9cg=)
2: Hrq0DWCBM83fdsO1pvgV34H7x90.crl (hash: cfps0oJ7woBZoWVIo80A0j4f/K5i9tMtEsWQ3NF75nI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Mar 2026 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:14:59:30:06:6d:b7:fd:97:b3:bb:bb:d2:a7:ee:5d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Validity
Not Before: Mar 22 07:01:22 2026 GMT
Not After : Mar 23 07:01:22 2026 GMT
Subject: CN=6f6d92bf3dfed5874251d5111a2982a9e7ed255e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9a:51:1c:f9:d1:12:1f:5d:7e:02:25:da:55:
e1:5a:8d:be:0c:8c:0f:91:50:41:8d:a2:02:b1:1a:
d8:f2:96:f5:42:f5:95:b8:19:c8:68:cd:6f:43:6f:
01:de:2a:6f:72:c6:e5:f4:8a:62:24:0d:56:d6:ca:
f6:4c:5b:fd:97:d3:a1:7d:af:4c:93:70:29:91:03:
ed:a6:8f:6d:d6:a3:dc:ba:c4:c6:d2:e4:2f:58:2f:
32:18:89:c7:1b:6a:c8:9d:e3:c8:f7:6d:a3:66:99:
fd:2d:0a:f8:b6:a0:cf:99:d0:7c:98:2e:d7:6a:64:
f6:dd:3e:b2:3d:bd:12:d7:20:3a:ea:7f:a0:72:a0:
d7:ec:2a:17:e7:38:70:d6:fd:d3:f9:70:80:55:70:
03:84:82:f9:61:60:d0:7f:e8:7b:36:3c:79:7c:21:
77:04:92:a6:b3:53:bf:34:b4:45:b4:30:b9:3d:06:
9c:b1:7a:86:72:88:43:d9:47:17:30:38:79:47:53:
0e:4e:4d:1d:4b:eb:94:89:95:22:b0:0c:85:e0:1f:
be:c9:2b:f7:28:91:09:2e:c3:fa:8e:a6:96:fe:3a:
96:7a:d7:1d:83:ba:18:4f:0c:f9:47:01:16:af:e8:
f9:d3:cf:80:fe:a3:13:77:ce:86:a6:22:42:f2:5e:
f5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:6D:92:BF:3D:FE:D5:87:42:51:D5:11:1A:29:82:A9:E7:ED:25:5E
X509v3 Authority Key Identifier:
keyid:1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:97:07:44:28:b8:c9:e5:2b:b3:47:6d:c2:5f:7c:c6:31:84:
69:1c:d4:ce:cd:ef:a2:9b:6f:88:99:f2:3e:7f:c1:43:bc:ab:
e6:a0:9f:6b:ba:fc:ba:1d:17:75:8e:24:ce:5a:80:e4:e3:88:
fb:77:53:35:74:e3:d9:9f:c9:2d:4c:f6:2e:82:ec:d9:e0:a9:
ca:75:27:a1:1f:e3:36:f2:51:08:48:17:d6:4f:91:a2:68:7b:
72:74:7b:86:2a:6c:a9:40:4c:31:c6:bc:1c:1e:16:21:1a:66:
98:03:03:04:b2:e9:b8:3a:cd:fc:6e:b1:26:f1:c6:d0:ce:51:
8c:ba:b3:a0:5b:a0:d5:cd:a6:42:66:1f:39:01:3c:3c:da:53:
9c:01:1c:8a:11:a2:f4:e5:61:56:00:d4:01:3f:95:28:4c:5d:
7e:07:19:0b:04:89:95:fb:6b:a0:e4:b0:c0:df:10:fd:f2:8c:
03:b0:65:41:73:6b:a8:2d:9b:be:0a:ed:9e:9b:5e:47:49:d6:
fa:6e:6c:c3:30:f2:6f:77:dc:ac:dc:cc:01:60:fe:49:2f:14:
5e:bf:06:6f:7b:7c:04:72:eb:fc:02:89:b2:8b:b2:73:c7:46:
bf:fd:3c:d2:b8:21:41:01:cf:3e:20:52:26:c4:bd:c6:c0:1e:
01:b8:f3:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0UWTAGbbf9l7O7u9Kn7l11MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYmFiNDBkNjA4MTMzY2RkZjc2YzNiNWE2ZjgxNWRmODFm
YmM3ZGQwHhcNMjYwMzIyMDcwMTIyWhcNMjYwMzIzMDcwMTIyWjAzMTEwLwYDVQQD
Eyg2ZjZkOTJiZjNkZmVkNTg3NDI1MWQ1MTExYTI5ODJhOWU3ZWQyNTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZpRHPnREh9dfgIl2lXhWo2+DIwP
kVBBjaICsRrY8pb1QvWVuBnIaM1vQ28B3ipvcsbl9IpiJA1W1sr2TFv9l9Ohfa9M
k3ApkQPtpo9t1qPcusTG0uQvWC8yGInHG2rInePI922jZpn9LQr4tqDPmdB8mC7X
amT23T6yPb0S1yA66n+gcqDX7CoX5zhw1v3T+XCAVXADhIL5YWDQf+h7Njx5fCF3
BJKms1O/NLRFtDC5PQacsXqGcohD2UcXMDh5R1MOTk0dS+uUiZUisAyF4B++ySv3
KJEJLsP6jqaW/jqWetcdg7oYTwz5RwEWr+j508+A/qMTd86GpiJC8l71GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG9tkr89/tWHQlHVERopgqnn7SVeMB8GA1UdIwQY
MBaAFB66tA1ggTPN33bDtab4Fd+B+8fdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHJxMERXQ0JNODNmZHNPMXB2Z1YzNEg3eDkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yYjI2YWYtZTc1NC00MDgwLTllYzkt
NTlmMGYxMGIxZDI5LzEvSHJxMERXQ0JNODNmZHNPMXB2Z1YzNEg3eDkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS8yYjI2YWYtZTc1NC00MDgwLTllYzktNTlmMGYxMGIxZDI5
LzEvSHJxMERXQ0JNODNmZHNPMXB2Z1YzNEg3eDkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZcHRCi4
yeUrs0dtwl98xjGEaRzUzs3voptviJnyPn/BQ7yr5qCfa7r8uh0XdY4kzlqA5OOI
+3dTNXTj2Z/JLUz2LoLs2eCpynUnoR/jNvJRCEgX1k+Romh7cnR7hipsqUBMMca8
HB4WIRpmmAMDBLLpuDrN/G6xJvHG0M5RjLqzoFug1c2mQmYfOQE8PNpTnAEcihGi
9OVhVgDUAT+VKExdfgcZCwSJlftroOSwwN8Q/fKMA7BlQXNrqC2bvgrtnpteR0nW
+m5swzDyb3fcrNzMAWD+SS8UXr8Gb3t8BHLr/AKJsouyc8dGv/080rghQQHPPiBS
JsS9xsAeAbjz2g==
-----END CERTIFICATE-----
Generated at Sun Mar 22 11:11:52 2026 by rpki-client