Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
File: hcNSXWi2ERZWThbh3U5WywNcnIU.mft (raw, json)
Hash identifier: kA5zPBN26z7k053yzTfa5IQrLdvtdiqMDzttPBfiqhY=
Subject key identifier: 1C:57:82:3E:05:2F:8E:67:8F:D7:CB:D7:F6:57:66:9F:8F:A0:A5:03
Authority key identifier: 85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
Certificate issuer: /CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Certificate serial: 019D37F787C5807EF7605E71C33F42837BC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
Manifest number: 1896
Signing time: Sun 29 Mar 2026 05:01:02 +0000
Manifest this update: Sun 29 Mar 2026 05:01:02 +0000
Manifest next update: Mon 30 Mar 2026 05:01:02 +0000
Files and hashes: 1: 9j3nuOJhYS9_ZFXqxcrD7kXzXn8.roa (hash: yrqM3YmDVW0i3nBRQF8ojpl3PLx4I5epyyrEiw1s4Ho=)
2: hcNSXWi2ERZWThbh3U5WywNcnIU.crl (hash: bsFw7ar50wk5G8S33RMLaOonEHh6vkwbmSglfdxzAn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:87:c5:80:7e:f7:60:5e:71:c3:3f:42:83:7b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3525d68b61116564e16e1dd4e56cb035c9c85
Validity
Not Before: Mar 29 05:01:02 2026 GMT
Not After : Mar 30 05:01:02 2026 GMT
Subject: CN=1c57823e052f8e678fd7cbd7f657669f8fa0a503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:91:69:35:83:92:20:ec:11:a0:d7:fd:d6:84:
b7:2c:15:bb:e1:79:4b:8d:28:70:17:8c:a3:05:4f:
5a:c0:b6:52:73:cb:2c:d1:e3:01:9c:40:43:59:d0:
63:fe:99:b8:76:14:75:9e:25:c2:ee:39:50:89:9b:
fe:99:a2:db:71:b1:1e:76:23:15:f2:3e:f6:d3:77:
f6:f0:07:6f:c6:2c:6d:7e:a1:4a:ed:60:d9:bc:01:
68:78:7c:70:63:9c:fa:47:47:a8:b2:c0:f1:dc:e3:
54:16:59:37:ab:e5:7e:5e:62:4d:40:bd:0e:c2:57:
08:31:24:48:f0:4c:3a:74:34:69:ee:3f:e4:df:68:
ca:0a:6b:88:1e:81:a5:54:91:69:05:c1:38:7d:18:
ee:21:1e:f5:01:da:4a:54:6c:b9:32:52:12:b7:c5:
1b:86:4b:06:58:89:21:3e:af:b8:a2:8b:5e:ad:14:
75:be:f3:e8:b5:02:d1:d3:d3:b7:be:a5:c3:8d:87:
75:64:d9:c2:99:d0:35:34:af:91:d5:f8:93:79:2b:
cb:c8:45:3d:3e:bd:0d:b9:fe:2b:88:c7:85:54:43:
06:3c:36:be:7f:f3:ab:59:f3:28:3a:6d:a5:2b:b3:
db:d5:8a:1a:e1:e1:4c:e4:65:f8:f0:21:b6:0c:e9:
ae:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:57:82:3E:05:2F:8E:67:8F:D7:CB:D7:F6:57:66:9F:8F:A0:A5:03
X509v3 Authority Key Identifier:
keyid:85:C3:52:5D:68:B6:11:16:56:4E:16:E1:DD:4E:56:CB:03:5C:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcNSXWi2ERZWThbh3U5WywNcnIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/9fbec1-ebd2-41ba-83d9-694dbfaddb8f/1/hcNSXWi2ERZWThbh3U5WywNcnIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:f1:3b:0d:10:dc:3f:b4:55:14:9a:a7:29:55:9a:a1:cc:75:
4d:0b:f2:df:2e:10:e8:f8:ac:f5:bc:6f:45:4e:37:51:a6:bf:
4b:13:44:4b:fd:6a:24:b9:f0:ca:74:ff:3d:c6:06:a7:b0:b9:
02:83:85:2e:ff:e6:f5:e8:d2:06:c0:d2:42:2c:6b:0a:ce:91:
4e:c8:71:c3:f0:40:00:e3:06:76:c1:1a:1e:5d:4e:01:30:37:
3e:ce:21:48:94:f2:f1:54:f3:91:7e:22:c8:6e:fc:28:9c:78:
96:c0:ec:1d:d3:8f:e9:13:ce:3e:03:62:39:73:2e:d2:62:aa:
53:b7:cf:62:c9:13:b4:6f:6e:4f:ec:16:4f:95:d3:16:c2:a3:
22:9e:c6:c1:68:64:f5:e7:a6:5d:4b:1b:15:61:87:1b:39:03:
1a:0a:9e:54:9c:e3:a7:45:60:56:5d:a8:9c:8d:e9:22:e7:69:
37:6b:b8:05:99:c1:4b:5f:d6:b4:9e:a0:49:50:4a:29:8a:2b:
ca:3d:9b:ed:46:40:8f:74:7f:d5:d7:4d:eb:2d:d5:f3:75:c1:
7f:51:be:3c:54:75:0a:28:6f:29:74:0e:0c:ce:fe:74:aa:06:
9c:3e:37:d3:3b:21:c7:ed:fc:6a:f2:ae:d3:de:3a:09:68:71:
5f:63:5e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:21 2026 by rpki-client