Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
File: hqSVrmh0HnnVjjiGviqoeMSME7Y.mft (raw, json)
Hash identifier: WY7dxas5DnzkW6wfsQMtufEgoBohIciywcMPQdKJuc4=
Subject key identifier: BD:8B:0B:1E:A8:57:1D:79:E8:93:1A:1A:26:D6:B6:E6:44:D7:CE:FC
Authority key identifier: 86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
Certificate issuer: /CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Certificate serial: 019D3941ABB300FA62D49BFDFFEE3606B809
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 11:01:38 +0000
Manifest this update: Sun 29 Mar 2026 11:01:38 +0000
Manifest next update: Mon 30 Mar 2026 11:01:38 +0000
Files and hashes: 1: hqSVrmh0HnnVjjiGviqoeMSME7Y.crl (hash: EO2sLH3DKGzq8nGtl9R9PXhOajyhCdKOSTnHtpzzHXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:ab:b3:00:fa:62:d4:9b:fd:ff:ee:36:06:b8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Validity
Not Before: Mar 29 11:01:38 2026 GMT
Not After : Mar 30 11:01:38 2026 GMT
Subject: CN=bd8b0b1ea8571d79e8931a1a26d6b6e644d7cefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f5:9b:6e:b6:0f:27:57:23:34:c3:aa:4e:b4:
2d:10:3a:2f:1c:20:07:5e:5c:e9:67:06:b6:35:a6:
60:59:6a:19:70:95:44:b3:86:39:6b:50:5c:a5:6e:
e1:14:61:5b:a1:9f:1e:e4:23:40:f1:14:af:48:9a:
85:79:8a:4e:77:a6:22:d9:4c:63:54:cc:56:d1:de:
e2:24:e4:a3:86:46:bc:7d:ee:57:11:ce:7b:6e:0b:
b8:db:b0:ae:07:1a:e7:08:11:33:83:78:d4:02:9e:
b0:40:bf:f6:76:b3:f6:aa:05:e1:ec:c0:7c:a3:88:
2d:be:47:40:00:e4:4a:16:49:3c:27:48:98:29:9e:
1c:fe:9c:88:e6:ed:97:31:4f:d3:6c:c3:d4:ab:ab:
ac:03:9a:45:3f:5c:75:ec:d6:d5:ee:d4:1b:11:31:
3a:6f:e8:73:81:5a:59:6c:3f:23:1f:95:e1:33:b6:
f7:48:f9:86:75:16:52:39:e1:35:e0:ef:f8:69:d6:
20:da:49:ca:05:91:f0:bb:bf:b5:eb:0b:10:da:a8:
33:0a:94:68:f8:54:37:4a:b6:21:e6:45:61:b4:d1:
3b:6c:a7:97:86:5d:f3:06:58:1c:ac:94:12:5b:83:
18:a0:66:64:94:de:8c:07:08:cf:25:e7:a7:34:5a:
c8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8B:0B:1E:A8:57:1D:79:E8:93:1A:1A:26:D6:B6:E6:44:D7:CE:FC
X509v3 Authority Key Identifier:
keyid:86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:81:e9:bc:ae:1d:db:c6:67:50:08:b8:5d:d3:2a:cf:9f:b8:
f5:87:3c:1f:6a:51:5d:64:7d:3e:a7:3c:3c:7a:c4:31:89:17:
8b:4e:0d:6a:c0:12:84:12:3b:47:03:fe:d9:cc:3c:15:4f:a3:
44:db:7c:20:4b:a8:6b:1a:01:6c:cc:80:c0:0d:74:7c:a2:98:
ac:fb:ab:ee:ca:5f:da:7e:35:23:31:f3:36:d3:43:b3:79:0c:
20:70:ae:3e:a8:82:3a:7e:57:25:c2:d5:a9:f3:3d:87:9a:86:
88:96:68:e4:06:28:9a:f8:cb:0f:cd:6d:83:09:a4:c0:0f:ae:
9e:2b:e5:70:08:0c:d7:d2:08:ae:56:ba:c3:b8:ae:14:4f:50:
20:0f:f1:1c:f7:01:0e:ad:6b:14:2c:b9:e4:21:58:e6:d6:9e:
0d:92:16:98:d3:6c:91:d3:e4:be:75:63:65:da:9b:8a:19:74:
6f:6e:50:b7:61:94:91:58:6c:7d:a9:cf:39:bb:37:ef:fb:a5:
dd:d6:14:c9:40:51:f8:4c:ec:d0:b8:17:5b:79:67:5d:ac:c5:
4e:5f:77:9a:09:a8:ca:fc:fb:a5:45:1e:53:ae:33:4a:7f:dc:
9c:ac:b3:22:6a:fb:f3:59:f4:29:d3:79:b6:db:72:70:61:f2:
11:75:ed:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QauzAPpi1Jv9/+42BrgJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YTQ5NWFlNjg3NDFlNzlkNThlMzg4NmJlMmFhODc4YzQ4
YzEzYjYwHhcNMjYwMzI5MTEwMTM4WhcNMjYwMzMwMTEwMTM4WjAzMTEwLwYDVQQD
EyhiZDhiMGIxZWE4NTcxZDc5ZTg5MzFhMWEyNmQ2YjZlNjQ0ZDdjZWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjfWbbrYPJ1cjNMOqTrQtEDovHCAH
XlzpZwa2NaZgWWoZcJVEs4Y5a1BcpW7hFGFboZ8e5CNA8RSvSJqFeYpOd6Yi2Uxj
VMxW0d7iJOSjhka8fe5XEc57bgu427CuBxrnCBEzg3jUAp6wQL/2drP2qgXh7MB8
o4gtvkdAAORKFkk8J0iYKZ4c/pyI5u2XMU/TbMPUq6usA5pFP1x17NbV7tQbETE6
b+hzgVpZbD8jH5XhM7b3SPmGdRZSOeE14O/4adYg2knKBZHwu7+16wsQ2qgzCpRo
+FQ3SrYh5kVhtNE7bKeXhl3zBlgcrJQSW4MYoGZklN6MBwjPJeenNFrIEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL2LCx6oVx156JMaGibWtuZE1878MB8GA1UdIwQY
MBaAFIakla5odB551Y44hr4qqHjEjBO2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEt
NDkxOGIwMjc0MmM3LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEtNDkxOGIwMjc0MmM3
LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACIHpvK4d
28ZnUAi4XdMqz5+49Yc8H2pRXWR9Pqc8PHrEMYkXi04NasAShBI7RwP+2cw8FU+j
RNt8IEuoaxoBbMyAwA10fKKYrPur7spf2n41IzHzNtNDs3kMIHCuPqiCOn5XJcLV
qfM9h5qGiJZo5AYomvjLD81tgwmkwA+univlcAgM19IIrla6w7iuFE9QIA/xHPcB
Dq1rFCy55CFY5taeDZIWmNNskdPkvnVjZdqbihl0b25Qt2GUkVhsfanPObs37/ul
3dYUyUBR+Ezs0LgXW3lnXazFTl93mgmoyvz7pUUeU64zSn/cnKyzImr781n0KdN5
tttycGHyEXXt5Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:13:29 2026 by rpki-client