Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: FA3oGj7Sp8t5u3xsS3GB+bRguJOglVqixZABTwmQIbI=
Subject key identifier: 65:E7:29:55:B9:51:F9:06:58:A4:56:29:33:10:99:48:18:44:6E:10
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 019D37F731908684BC0F5D18716D214D8B6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 05:00:40 +0000
Manifest this update: Sun 29 Mar 2026 05:00:40 +0000
Manifest next update: Mon 30 Mar 2026 05:00:40 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: /i11nP/RN9WZ0mW7r9Di6IcFaCPCVdp9DbU/6AWh4bs=)
2: n5ajNi9wA3P70_E15oIv54CXpok.roa (hash: jR2itfiSW5cBnQGOq4LIcSp76PVQGV3oF57lsh5izq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:31:90:86:84:bc:0f:5d:18:71:6d:21:4d:8b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Mar 29 05:00:40 2026 GMT
Not After : Mar 30 05:00:40 2026 GMT
Subject: CN=65e72955b951f90658a456293310994818446e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ea:34:80:fc:c0:12:30:94:2c:61:3b:27:79:
7a:a4:bd:87:7d:22:a6:b9:2e:28:68:88:ce:c3:31:
bc:fc:03:7c:ae:4e:4c:3a:17:10:8e:2e:da:b2:2c:
fc:87:53:de:79:7f:a6:68:ce:1b:10:cb:3b:e5:e9:
c7:2a:b9:6d:5d:0a:9f:d2:b3:e1:21:fa:2e:67:7a:
e7:25:be:35:90:10:ec:57:94:30:d7:aa:72:de:92:
1b:da:f8:e5:8e:fd:af:59:1e:62:a4:61:8f:42:29:
da:ee:b5:c6:22:61:1c:a7:d6:69:68:29:84:5c:be:
2e:e7:fd:c3:d6:87:2d:51:d6:a2:f3:c3:b9:56:47:
73:26:e8:cf:ad:22:f5:af:1b:2e:b0:4f:7f:c7:65:
bd:61:7f:eb:89:3c:2e:0a:2b:8c:f0:c1:32:4c:97:
1c:b1:40:78:61:56:e6:22:cd:b1:a2:a4:b4:ef:8e:
85:7a:28:75:b3:01:d3:b8:c4:1b:7e:c3:f9:c6:de:
a9:17:0a:af:62:00:fb:50:64:f6:a1:79:4d:87:7d:
ba:ea:49:37:1c:54:5d:5a:bc:0e:2e:e2:e4:36:93:
52:90:aa:94:5f:18:2e:fa:2e:3c:7e:9e:5e:9e:db:
22:84:3f:36:76:4c:df:1c:43:4a:d1:83:e8:ba:10:
08:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E7:29:55:B9:51:F9:06:58:A4:56:29:33:10:99:48:18:44:6E:10
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:1e:b9:bc:68:cc:8a:c4:1d:a9:0a:19:c8:eb:68:f2:df:13:
66:2f:4c:c2:20:7b:23:5a:54:c6:cb:38:22:14:74:3e:9a:11:
5f:86:03:94:e0:b7:74:28:63:2e:0f:21:80:a1:da:84:6d:be:
93:5e:2f:fb:78:35:36:2e:0f:f6:57:ae:62:db:38:0c:0c:11:
b6:69:25:1c:70:be:56:99:59:52:60:b3:57:15:09:01:d4:13:
41:31:59:79:23:89:19:36:68:98:e1:63:b8:e6:05:72:2c:5d:
7e:cc:e2:94:cc:a5:7a:a1:67:95:3f:3d:a0:2a:8b:09:41:ff:
f2:80:57:57:57:1e:44:bc:1e:9c:5c:ac:98:fa:5f:80:14:40:
59:84:7b:8a:cf:ae:63:6a:d4:94:ef:9b:cf:48:80:ec:6d:3e:
97:c5:fa:5e:28:d7:7f:6d:ec:b8:bd:c6:8e:a1:3c:15:45:cf:
d1:3d:88:74:91:ba:b1:80:05:b5:5f:82:4f:cc:1e:13:dc:d9:
18:af:3e:92:c0:10:c3:93:4e:de:26:1b:a4:6f:db:b4:c5:67:
b9:25:2f:3c:2f:fe:6b:e7:b5:56:7a:fc:bb:72:e2:2f:2e:bd:
b6:bd:29:50:35:48:5f:a3:11:8f:1b:f5:4f:c5:79:ed:24:9d:
65:1e:fa:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:24 2026 by rpki-client