Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
File: _HlIirThrA9L1GfStNNiHGsY7qA.mft (raw, json)
Hash identifier: cZH+O0WD/JvBU9a5Q9XY/9hQKAmzoIj6dFuG4lkNQBw=
Subject key identifier: 5B:9A:E9:8B:5F:6F:2E:C8:C0:59:5F:E0:C1:90:6E:86:09:33:68:C4
Authority key identifier: FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0
Certificate issuer: /CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0
Certificate serial: 019D3789B992CE9F9D7A7452676DA5D1EBD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 03:01:05 +0000
Manifest this update: Sun 29 Mar 2026 03:01:05 +0000
Manifest next update: Mon 30 Mar 2026 03:01:05 +0000
Files and hashes: 1: _HlIirThrA9L1GfStNNiHGsY7qA.crl (hash: epDLP6eTW5B0wzSTpL7mxC3IsNHtRgp7moC4Ngp3Ad4=)
2: zXpI_ZkMZjomMfSewt7eA9Kg9dk.roa (hash: AKFEqvG1w5Wb8V0Q0PMXn0i+G8aiBs1A75NxMO1M+zY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b9:92:ce:9f:9d:7a:74:52:67:6d:a5:d1:eb:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0
Validity
Not Before: Mar 29 03:01:05 2026 GMT
Not After : Mar 30 03:01:05 2026 GMT
Subject: CN=5b9ae98b5f6f2ec8c0595fe0c1906e86093368c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:18:e1:3a:f3:54:dd:28:76:0b:7d:60:63:28:
9a:35:f4:22:2c:42:f1:0b:77:a2:2f:0b:c8:8c:dd:
25:2a:29:09:89:03:d5:dd:cc:21:f5:f7:cd:dd:d6:
19:9c:71:a6:a3:e7:89:cc:7b:ef:a2:f8:76:00:75:
69:5f:ea:08:8a:5e:2b:54:0c:19:5f:c0:c3:9a:7b:
36:6d:3a:8b:57:17:9f:d5:0d:9c:ce:9f:c6:8e:bf:
f8:a9:c7:00:d3:9b:0a:03:42:f3:5c:a6:03:3d:4e:
94:b6:d1:c3:d3:f3:3f:48:c1:bb:0d:55:31:c3:06:
1b:13:68:7d:d6:64:5e:b2:eb:d8:69:2a:a6:f1:1b:
0c:78:4c:c5:49:12:2c:76:2d:c2:40:a2:f3:9a:d6:
50:70:df:97:73:5e:fb:d6:64:c8:87:44:aa:7e:00:
50:e1:fc:dc:90:33:0c:81:d6:e2:9d:41:bb:78:d9:
31:5d:42:41:ab:be:89:a2:6d:2c:d7:4f:20:38:4a:
86:02:b2:d3:e1:5c:d4:f3:e6:12:17:17:16:7a:20:
c4:e8:db:7c:17:36:0b:1e:db:6a:20:54:72:b3:e8:
99:91:df:b7:f5:13:bf:58:09:d0:0e:94:93:58:20:
24:20:8a:35:91:c9:dd:fc:2e:f6:fe:8c:9a:f4:37:
34:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9A:E9:8B:5F:6F:2E:C8:C0:59:5F:E0:C1:90:6E:86:09:33:68:C4
X509v3 Authority Key Identifier:
keyid:FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:77:ca:98:ae:ee:d3:26:f5:b9:d1:57:8a:31:ae:11:42:92:
3d:c7:37:f4:f3:33:10:63:6b:14:fb:86:82:32:b4:7c:f3:83:
38:0d:42:ab:93:dd:c9:8d:6e:84:10:fa:e2:61:a0:ec:a2:91:
07:71:91:a9:97:00:f0:5c:66:1f:ce:7c:7e:67:12:5f:24:e5:
de:2f:16:d6:9c:39:2e:11:3b:8c:9b:8f:3d:da:3b:53:fa:d2:
72:2e:63:2f:40:5e:00:53:62:be:4f:7f:06:3e:5a:b3:c0:02:
04:7b:04:53:9c:73:e0:eb:91:7f:f5:88:5c:a7:0f:c8:c5:a4:
6d:a1:d7:68:86:df:1d:db:51:c4:2f:38:47:7b:52:ff:24:d5:
00:2d:83:54:f0:12:cf:d3:33:a3:92:9f:dd:ba:b8:b2:14:c7:
97:99:81:5b:70:a1:33:e6:31:23:b0:c5:23:9d:2c:ae:cf:31:
fa:91:c8:a0:ee:a2:b0:08:36:6a:f4:8f:ff:e9:c8:15:39:94:
d6:34:81:b5:04:63:ff:a5:54:f9:c3:e6:80:03:86:fb:72:3d:
0b:9f:f4:6a:85:9d:fb:be:91:1d:5d:e3:b1:18:b9:8c:ec:cf:
42:88:ac:0f:58:d0:d7:28:56:25:06:d3:9a:f9:a9:62:da:ba:
c2:36:02:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:49:02 2026 by rpki-client