Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: CKVolnFDW5xctXCPPKgBLnU5hA0Xdmtmc5WTfLTgpQk=
Subject key identifier: DD:FE:4A:6D:A3:9C:00:55:38:28:39:50:F3:0B:42:53:A7:6A:67:E7
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 019D37F752B68EF4FFF1C581DDB4F6AEE1D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 05:00:48 +0000
Manifest this update: Sun 29 Mar 2026 05:00:48 +0000
Manifest next update: Mon 30 Mar 2026 05:00:48 +0000
Files and hashes: 1: d2YpPYTenafvZ_RaINu156L8Uwo.roa (hash: CMTonUYiOCRZMLmytRZF7eJJ3JvO2VABjeLXssmZVNw=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: qQqLN5TVXF7iO4T9riDiBSpnz9fwe5nHCXWLWncrd2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:52:b6:8e:f4:ff:f1:c5:81:dd:b4:f6:ae:e1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Mar 29 05:00:48 2026 GMT
Not After : Mar 30 05:00:48 2026 GMT
Subject: CN=ddfe4a6da39c005538283950f30b4253a76a67e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:de:7c:87:6a:1d:a0:bf:8c:3c:c4:ea:1a:a1:
f2:71:f1:45:4c:94:69:1f:78:f0:a2:ba:aa:29:ff:
96:45:59:8c:55:4d:4f:f4:09:89:c9:05:05:87:af:
8f:f2:df:4b:9c:03:e4:bb:20:5a:c8:f2:60:a9:e1:
84:13:9c:8f:cf:05:bf:ca:e8:86:8c:0a:49:77:c7:
fe:ca:16:10:90:c4:8d:0d:fa:1a:d2:68:48:73:c7:
c3:8d:90:5b:1f:51:a5:9f:7c:be:ff:0b:d9:19:47:
92:4b:d7:b8:e3:3b:d1:9e:01:0f:2f:4e:16:6b:75:
36:87:4c:19:99:17:33:84:b4:f4:4d:d4:06:d8:e8:
8c:5f:cf:0b:5a:a8:bf:e6:6d:ff:e8:00:81:b5:14:
3d:66:eb:81:49:e8:ba:49:b7:c8:2a:0b:b9:db:60:
b7:f7:a9:1a:fb:d3:bc:e4:54:e1:a6:e7:92:f6:07:
fa:80:6b:25:64:e4:94:c0:8a:7b:54:36:00:18:02:
04:56:01:4c:c6:ec:d9:6b:00:2e:bc:00:4f:37:5f:
94:0b:a9:75:3c:cc:b5:1e:27:48:68:9a:11:f5:3d:
cc:0f:9f:30:8a:e9:7e:a1:01:5d:af:e2:a4:7a:86:
56:4f:b9:bf:52:07:1e:bd:a5:a2:a7:d3:84:e8:be:
40:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FE:4A:6D:A3:9C:00:55:38:28:39:50:F3:0B:42:53:A7:6A:67:E7
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:fb:c2:14:ea:bc:7a:ad:b6:03:e2:14:47:f7:a8:91:dc:a6:
47:49:57:6c:02:e3:9c:35:dc:45:4b:93:eb:2b:46:7a:3f:09:
25:e0:68:6b:3a:76:a2:45:46:c6:24:d7:41:ae:2d:24:47:01:
92:78:ad:1c:5a:0d:78:f4:95:0e:5c:3d:61:b0:40:cd:39:c2:
b9:f5:3c:d8:cc:6a:de:bf:84:6f:96:e2:1e:74:d1:50:c8:4e:
ef:3d:70:7f:cd:0c:1d:e6:d9:4e:44:39:f9:ab:5f:f9:54:39:
9a:ea:a1:a1:e0:c1:d9:b7:c3:78:65:ba:67:ce:a1:b4:d6:33:
45:7c:77:f0:47:5c:38:ba:17:37:ca:48:44:32:30:1f:39:64:
09:e6:07:5b:67:3c:c2:e2:bd:76:4d:3e:42:cc:6f:73:ec:85:
b6:64:dd:f1:a8:b0:fa:8b:81:28:20:07:e7:a9:6b:b1:04:22:
12:53:e9:39:36:aa:df:22:94:02:f1:d4:1d:5f:d4:62:e8:ce:
30:53:03:ab:c7:42:25:b1:d0:8f:7d:fd:74:77:6b:68:02:8b:
51:82:84:4d:6c:f2:86:aa:6c:26:47:3b:63:e5:31:05:be:15:
15:cf:e7:fc:54:c4:42:c5:3d:23:9d:36:75:7b:b4:39:0d:12:
d8:c5:5f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:59 2026 by rpki-client