Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
File: hiuiH8_MNMnZtafGCBWF4KDucK4.mft (raw, json)
Hash identifier: JRUywAZZg4JsjXwN27PnALOnWFse9M6oY+kF167qVnA=
Subject key identifier: 38:FA:A2:AC:1C:31:72:30:5E:75:73:CD:F2:66:02:7A:03:2C:34:DA
Authority key identifier: 86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE
Certificate issuer: /CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae
Certificate serial: 019D37896491C3D7FFF8AD0CD8094B146D81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
Manifest number: 0989
Signing time: Sun 29 Mar 2026 03:00:44 +0000
Manifest this update: Sun 29 Mar 2026 03:00:44 +0000
Manifest next update: Mon 30 Mar 2026 03:00:44 +0000
Files and hashes: 1: Ac2g8HVyNDYwzqmo6Q0KVIwOBDo.roa (hash: Um65HfZZDJKesTmcrahWX7j2iQcfK801xXJSJGbgafE=)
2: hiuiH8_MNMnZtafGCBWF4KDucK4.crl (hash: uTMkI73GqOeCdircEDJn73L1Ai4GVEVu0eAG8KVyHJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:64:91:c3:d7:ff:f8:ad:0c:d8:09:4b:14:6d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae
Validity
Not Before: Mar 29 03:00:44 2026 GMT
Not After : Mar 30 03:00:44 2026 GMT
Subject: CN=38faa2ac1c3172305e7573cdf266027a032c34da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9a:c6:ed:49:c2:df:f1:86:23:af:a9:a4:64:
20:42:e7:65:a2:85:29:d3:a8:50:8b:0e:0b:85:cd:
f2:0d:05:64:18:5c:0a:25:c2:9b:53:ba:23:9c:d4:
47:7b:48:ef:cc:49:25:b8:5c:76:4d:74:24:24:03:
38:d0:39:0a:74:50:26:95:fe:df:94:c2:5a:e0:61:
12:56:30:dd:d7:85:f5:3e:42:6a:48:08:63:2a:a1:
41:75:1d:38:c8:2c:bd:7c:8e:7d:e5:29:e0:c1:0e:
92:b0:fc:c1:75:53:df:9a:b1:18:c6:83:10:23:5a:
4c:f2:7a:91:be:02:92:3a:d4:39:a0:43:74:e9:0b:
24:b1:19:3a:53:59:07:2c:e4:42:b6:df:0a:8a:75:
b9:59:e4:24:00:3b:96:8d:19:31:fd:ca:58:0e:ba:
82:4d:62:37:65:86:00:e7:16:5c:e3:ad:36:63:bc:
b2:ff:69:c7:fb:ac:b0:0b:a1:96:22:79:6c:33:51:
1e:8a:e3:77:0a:35:b8:7c:9f:01:d9:65:70:6d:97:
25:8b:ae:c3:aa:4a:43:62:cf:21:b9:59:c0:13:40:
65:55:d0:62:bf:15:be:7f:7a:28:2c:4b:3f:97:26:
bf:25:8e:30:c7:5b:bf:ae:98:47:c6:69:aa:82:2f:
03:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:FA:A2:AC:1C:31:72:30:5E:75:73:CD:F2:66:02:7A:03:2C:34:DA
X509v3 Authority Key Identifier:
keyid:86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:0d:4b:6f:77:46:10:54:44:65:b7:92:fa:5c:e7:46:cd:2f:
9c:36:43:ee:45:44:db:5b:c8:67:54:af:54:6f:eb:96:35:68:
39:7c:4c:e7:ee:07:33:de:d3:a6:d2:17:0b:c5:e0:2e:30:20:
1c:b4:82:ad:b4:d0:43:89:d4:59:d0:8e:05:db:bb:0b:73:02:
88:7d:b8:1c:5f:76:84:7b:25:48:1b:7e:9e:11:8f:e6:37:8c:
a6:bd:1b:62:85:9e:81:e3:d9:c4:f4:f1:c6:36:e3:64:7c:39:
66:d9:05:09:cb:06:4c:b9:31:1e:05:a3:be:a4:0d:51:0b:55:
8b:59:e5:5d:7f:ab:31:cb:df:64:0e:6b:6b:fe:d7:ef:1b:76:
7f:9d:f1:8b:30:d1:df:2b:ac:84:a3:10:55:91:59:a0:c9:e1:
2e:ad:4f:b4:97:55:6a:74:5b:a0:80:b7:5d:31:d3:aa:94:c1:
3c:dd:20:19:db:78:28:a8:7e:d3:6a:83:bc:31:5d:92:f6:7c:
ee:6e:38:83:af:35:08:59:3f:ba:e3:b2:a3:68:48:8c:c2:e4:
5b:ac:91:42:bf:1b:29:91:40:40:11:26:22:b1:89:51:14:2f:
79:4f:6a:f0:8d:c0:90:8d:61:af:6d:00:16:fa:3b:97:8e:ee:
38:75:36:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:45 2026 by rpki-client