Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier: UG9zoF8bdkBM8pRcPSN3Kuxj9YDuIPmAd6zsuJjqmE8=
Subject key identifier: 20:00:98:D8:EB:7A:C6:22:BD:F0:27:75:AE:06:FB:CF:54:6E:5C:37
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial: 019D390A00BBBBC0FA52CDA2455FF2D2D0EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number: 17E8
Signing time: Sun 29 Mar 2026 10:00:50 +0000
Manifest this update: Sun 29 Mar 2026 10:00:50 +0000
Manifest next update: Mon 30 Mar 2026 10:00:50 +0000
Files and hashes: 1: DRi6gZm2ApJ9zWvuSIffTh_44j0.roa (hash: NDQ8jCUezYMaYn3NL3pjn/AqInQQgH2COtpVWhCKawg=)
2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: zqdCIKV7aCsBO+S68meRqubkNtHU5WRnA+m9ORTveMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:00:bb:bb:c0:fa:52:cd:a2:45:5f:f2:d2:d0:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
Validity
Not Before: Mar 29 10:00:50 2026 GMT
Not After : Mar 30 10:00:50 2026 GMT
Subject: CN=200098d8eb7ac622bdf02775ae06fbcf546e5c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6c:50:f3:69:5a:ac:d3:71:97:a1:95:c4:1a:
64:a9:bc:fc:fe:82:48:4b:c1:6c:f6:dc:65:7f:38:
9a:0c:b2:6b:03:cf:1d:94:ed:3a:9e:dc:09:17:26:
f6:37:3c:34:a0:68:a6:ce:8f:37:5a:9a:3f:95:1b:
6a:bc:fa:7d:9e:6f:55:51:eb:e6:4c:0a:be:7e:31:
fa:f1:ce:87:1c:1b:36:3b:7e:21:06:49:94:fc:9d:
17:fb:bd:a8:e8:19:a8:6e:fa:a2:99:c3:4f:42:4c:
e1:ee:59:ef:77:b2:41:06:e6:50:46:7b:ba:b2:08:
6b:fd:04:20:eb:d7:f3:87:66:9d:06:0c:29:f8:23:
53:64:31:00:5e:b0:7c:79:47:8b:c0:0a:0a:a9:e8:
a6:6c:a7:c3:e3:e2:ed:d7:13:4f:ad:7a:34:9b:25:
04:c3:c1:d1:c2:21:d5:81:a1:6d:08:ac:42:70:24:
4d:87:80:91:53:b2:34:86:5c:b8:bf:ce:72:bb:a9:
db:27:05:ca:13:9b:b4:39:c9:55:37:5f:1d:80:c4:
45:26:43:0e:3c:42:15:10:13:e7:39:44:68:57:f8:
57:d5:2e:7a:6a:7f:7c:49:7f:dc:26:78:0b:fa:90:
19:4f:ab:0c:74:31:ef:7f:d5:37:18:77:4b:19:d4:
aa:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:00:98:D8:EB:7A:C6:22:BD:F0:27:75:AE:06:FB:CF:54:6E:5C:37
X509v3 Authority Key Identifier:
keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:19:0c:82:27:14:c2:e8:89:40:2e:ea:8e:46:59:a2:49:c6:
88:86:e7:5b:0e:53:72:fb:68:95:d2:d5:f6:59:4a:5d:5a:08:
b3:ac:46:4f:52:c4:2c:f5:12:23:da:39:0e:a2:49:75:8c:b3:
87:01:73:74:e9:a2:04:71:a2:ec:71:53:65:e1:63:58:55:df:
e2:34:25:69:ca:a8:0e:a2:f7:4e:e3:6e:3d:07:77:f5:7b:27:
ea:6b:77:ae:51:98:f3:f6:55:74:29:e3:a9:8d:a4:18:2d:8a:
e3:b9:99:20:8a:fa:1c:a9:0b:b4:68:c9:49:f3:b9:1d:50:25:
40:06:ff:c5:cc:da:e3:2f:73:93:f8:d3:90:ee:ef:48:88:da:
14:76:91:c6:73:0f:1a:45:3b:d7:ff:39:ca:cb:f3:89:5a:b0:
96:6c:40:ce:53:96:3c:88:a5:d3:26:10:19:7d:d9:d9:b8:ca:
c3:f5:7a:f2:4e:20:ae:a8:4a:96:76:83:34:ab:5e:5b:c4:d7:
32:a6:aa:bf:57:32:43:71:d0:4b:85:cd:e6:4c:87:c6:51:2e:
2f:a3:52:74:a0:e4:02:5e:83:a4:7c:f5:ab:7e:ca:ec:c9:f0:
c0:bd:df:b4:7d:cc:b6:d1:05:ff:27:78:7c:f0:aa:d3:61:2a:
9a:80:70:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:56:39 2026 by rpki-client