Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
File: htljhE-CBdE2lDRTHJmGAMFXgaE.mft (raw, json)
Hash identifier: 5nAmlXczVdZOLzAPAaX5jCf1ws6YXhQ4Zn+Nt6FqySI=
Subject key identifier: B3:A9:68:6A:62:E2:3F:05:09:ED:CB:C7:42:54:55:05:6E:10:34:8F
Authority key identifier: 86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
Certificate issuer: /CN=86d963844f8205d1369434531c998600c15781a1
Certificate serial: 019D22B97BEF5E06534654C3D4DD1109765E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
Manifest number: 01AD
Signing time: Wed 25 Mar 2026 02:01:14 +0000
Manifest this update: Wed 25 Mar 2026 02:01:14 +0000
Manifest next update: Thu 26 Mar 2026 02:01:14 +0000
Files and hashes: 1: AL6_iNyYf5_-8MNJEgieEgNDMIY.roa (hash: 0+d8aJSNzAigR1rPUuhEaaIGr2KsvOX77RXS9BnQQ0E=)
2: Ri6eR0hyModJmhU4qRXYfOTF-Qg.roa (hash: vp43LSqg4UfumRnhKAC/q4lMv6KhCs9VlzcPfCyPdH4=)
3: SNSZyMcxHfPqzsZovpnv0TS4kEk.roa (hash: 6uX+ryYbLRIBx9RtsjWqz+fa+ZH7FgeP5Ku25N+gV9g=)
4: htljhE-CBdE2lDRTHJmGAMFXgaE.crl (hash: ymALFUOhOWUl3WVbr7h1/YJI3zuDT0pZQpVkEtypkaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:22:b9:7b:ef:5e:06:53:46:54:c3:d4:dd:11:09:76:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d963844f8205d1369434531c998600c15781a1
Validity
Not Before: Mar 25 02:01:14 2026 GMT
Not After : Mar 26 02:01:14 2026 GMT
Subject: CN=b3a9686a62e23f0509edcbc7425455056e10348f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:cc:58:4f:82:f5:42:88:50:c9:ce:10:32:
8c:b2:04:96:a7:fe:90:c0:a8:0a:76:f8:65:09:9a:
1b:61:66:00:ec:ec:1c:d5:2b:c5:a8:df:19:b8:09:
4c:e0:ff:dd:6c:a2:ea:f5:0a:ef:74:33:98:32:a2:
e7:0c:cf:fe:3b:9e:7b:2c:10:f5:bc:24:fe:01:3e:
88:e5:ee:98:d1:d2:f8:3d:f5:93:b0:5e:28:ab:bb:
f3:ad:b0:5c:20:e8:e3:4a:22:e9:e2:3c:8e:d7:ce:
08:b1:55:39:99:e8:e5:f3:1c:f6:6a:2b:bc:3c:ac:
31:f1:fe:98:70:3e:58:69:da:52:a3:7f:6f:b0:22:
95:2b:ad:1a:5b:0f:2c:4a:da:c7:d1:26:4d:a3:04:
31:5f:4d:6a:6b:e7:58:1b:8d:73:e1:b5:1d:60:f2:
e6:23:fd:dc:d9:94:4d:4d:40:5a:8c:7b:c8:0b:ee:
02:cb:c2:74:b0:70:4d:f4:2a:dc:1f:50:27:9b:2b:
ba:33:d8:67:32:11:45:5f:3a:f5:1d:f6:53:b5:6f:
b9:0a:13:37:2a:63:52:96:76:18:a5:69:02:e7:86:
31:7d:ee:12:ea:d1:33:b3:94:5d:d0:53:2b:06:74:
6c:a2:d4:3f:ef:82:c1:c8:0a:69:1a:e8:e4:e1:98:
08:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A9:68:6A:62:E2:3F:05:09:ED:CB:C7:42:54:55:05:6E:10:34:8F
X509v3 Authority Key Identifier:
keyid:86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:cd:e8:b4:e0:4d:70:9b:32:24:86:ec:81:e7:da:fc:05:5b:
dd:54:96:4e:2b:32:74:39:38:e6:7e:5d:c4:da:b6:d4:d3:51:
f2:a8:9f:09:03:90:da:74:bf:7e:65:05:b3:19:0a:12:8a:0f:
0d:c1:88:a8:7d:0f:28:d8:31:80:53:af:f3:25:43:93:ea:e7:
97:6f:60:40:c2:87:1f:92:24:b5:c4:4c:44:9d:03:e7:ce:5d:
3a:1b:1d:98:3c:b7:ac:90:f3:70:a2:ca:ad:60:f8:c3:d8:4d:
8a:66:0e:66:57:ae:b1:80:78:22:69:cc:5b:27:63:8a:c6:1a:
b0:01:5d:9f:34:de:43:35:ec:f8:7f:8d:bf:6c:7e:07:b6:9c:
d3:12:4a:a7:67:91:65:80:e2:8a:24:3e:30:26:ce:f3:fc:b8:
2d:e3:2d:01:9c:f8:4a:6f:66:d6:ef:a0:2b:3b:56:4b:a6:a6:
ec:c5:24:de:ff:04:0f:f2:0c:d7:85:bb:8c:64:57:81:ea:55:
4b:c5:17:03:20:08:69:18:0f:55:b7:b5:78:26:fa:67:9e:10:
d1:db:bf:a1:8f:ad:9a:77:30:48:20:a2:9f:e9:b6:2b:a0:fc:
3e:c3:ab:29:71:b8:d5:e4:09:c6:ff:43:80:59:ad:bd:52:43:
50:f9:bf:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 09:54:22 2026 by rpki-client