Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft
File: HkogILgtApTpCi1rLA8o0Rc7ZGU.mft (raw, json)
Hash identifier: 0fGzI2gqoeHZEN1Fv7uPrrIbPyY/G66UiIWFh13bMXM=
Subject key identifier: 4D:59:C6:CB:43:3A:E3:27:25:94:2C:22:68:33:6E:B8:B8:5D:49:AA
Authority key identifier: 1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
Certificate issuer: /CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Certificate serial: 019CE335A1B5830BC0B8558324DCA50DE8EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft
Manifest number: 1864
Signing time: Thu 12 Mar 2026 18:01:08 +0000
Manifest this update: Thu 12 Mar 2026 18:01:08 +0000
Manifest next update: Fri 13 Mar 2026 18:01:08 +0000
Files and hashes: 1: 3Z0Q8tqH9sCjpBnVUqTQKroHNQs.roa (hash: iEhzHIRnRxzpQUWkwXpH8+wLuqzBi2WgNixBv2cWr5c=)
2: 4dtT2zpOkX0M7815CYFyhrrEj7w.roa (hash: pUvuTTzJiPGDI0tk56sxaLiwIp0+DLwoX1SaGdq6b1Q=)
3: DPEXaJsdpwunEHWISAhP8hFXOUI.roa (hash: +8xOQY/MLqFDz3F9RapHgwM88JkcxWRhi/gr4+Z5Fes=)
4: HkogILgtApTpCi1rLA8o0Rc7ZGU.crl (hash: we43EBH2GHVmONnFQFRL6h/l72aCD2s81dHkFQW4ooc=)
5: nJNnJik0D06rHfwp0JH-RW1i8d4.roa (hash: PZkJCh1a5eNPEm8fstSBrrfjyNUedpDjFwbI97jj8c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 15:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:35:a1:b5:83:0b:c0:b8:55:83:24:dc:a5:0d:e8:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Validity
Not Before: Mar 12 18:01:08 2026 GMT
Not After : Mar 13 18:01:08 2026 GMT
Subject: CN=4d59c6cb433ae32725942c2268336eb8b85d49aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b1:07:ee:f4:86:55:60:f8:b0:51:86:42:dd:
88:47:cd:8e:1d:fd:c2:06:ba:f4:39:fe:53:1f:40:
d6:c3:aa:ac:fd:68:46:69:33:df:29:44:d5:2c:e7:
00:c6:fc:d8:6c:14:dd:8c:b1:a3:ea:8a:75:5b:c9:
9d:55:82:d6:18:a7:5e:8d:6a:1d:50:89:48:21:9f:
9e:5d:80:42:f5:2c:ea:f0:e7:7d:68:06:46:f9:25:
d8:ca:88:94:c0:b7:07:c7:f0:e0:20:c7:1e:9e:e6:
2e:88:3e:83:eb:03:3b:fb:9e:50:85:ca:6a:b8:1f:
5a:d9:32:19:e1:e2:b5:17:5a:78:93:18:67:b5:25:
14:b4:d5:6b:35:1a:98:08:60:54:49:8d:e7:48:94:
73:aa:fc:22:4f:f4:f2:c0:85:d9:11:52:91:3f:68:
14:22:e5:1c:3e:36:85:3e:44:2b:ac:6a:82:42:6c:
f8:e7:0e:43:04:a6:5f:8a:5a:fe:32:cc:8b:8b:5b:
22:c5:6f:79:21:cf:e0:1d:40:50:cb:0e:c7:2b:e9:
09:a7:a2:f2:1c:f0:86:96:f8:c1:db:61:1d:f5:9f:
11:66:a2:65:9c:65:4f:aa:85:c9:02:98:79:bd:85:
2a:5f:80:e1:e5:d1:b1:fe:32:ba:fd:d0:7d:a4:53:
6e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:59:C6:CB:43:3A:E3:27:25:94:2C:22:68:33:6E:B8:B8:5D:49:AA
X509v3 Authority Key Identifier:
keyid:1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:8e:1b:6a:d3:b9:ed:87:d0:d9:6f:bc:d1:bb:ed:7f:73:d1:
79:c1:8c:4b:70:4f:c8:3d:5c:43:7f:48:62:97:a5:39:a1:37:
68:b5:ec:c7:40:2a:c6:5b:69:01:4e:43:c0:43:f5:7c:84:8a:
b4:17:08:13:e3:10:fc:49:b8:8b:81:dc:6d:d2:37:6a:63:27:
c6:76:21:ba:b5:2b:a3:cf:51:94:af:76:e0:b7:3c:3b:87:d4:
95:4e:a3:98:1e:31:4b:bf:3e:5e:92:08:c8:d9:21:f9:7b:41:
da:ad:56:ff:95:09:0d:6c:0e:4e:b8:19:74:9f:cd:6d:ee:ed:
a2:97:75:2d:18:ae:d8:84:05:e1:e7:2b:98:89:64:25:49:4d:
c0:7f:98:42:6f:90:38:a0:c0:ac:9c:86:a2:df:8f:d8:41:f9:
20:da:ec:23:4a:21:09:11:44:36:e1:c0:27:6f:ff:8d:2b:11:
ab:b9:7f:f8:b4:8a:f7:ef:67:ac:4e:6c:51:95:1e:99:04:64:
63:85:1f:64:59:95:09:52:9e:eb:ef:49:bd:6e:5f:19:6b:2d:
2e:67:a7:54:40:bc:f6:12:ec:81:73:76:10:2a:5f:41:52:89:
fd:e5:34:60:c7:04:3a:8a:5a:36:10:fe:b3:c5:04:1a:1c:7b:
c3:83:81:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzjNaG1gwvAuFWDJNylDejvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNGEyMDIwYjgyZDAyOTRlOTBhMmQ2YjJjMGYyOGQxMTcz
YjY0NjUwHhcNMjYwMzEyMTgwMTA4WhcNMjYwMzEzMTgwMTA4WjAzMTEwLwYDVQQD
Eyg0ZDU5YzZjYjQzM2FlMzI3MjU5NDJjMjI2ODMzNmViOGI4NWQ0OWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6rEH7vSGVWD4sFGGQt2IR82OHf3C
Brr0Of5TH0DWw6qs/WhGaTPfKUTVLOcAxvzYbBTdjLGj6op1W8mdVYLWGKdejWod
UIlIIZ+eXYBC9Szq8Od9aAZG+SXYyoiUwLcHx/DgIMcenuYuiD6D6wM7+55Qhcpq
uB9a2TIZ4eK1F1p4kxhntSUUtNVrNRqYCGBUSY3nSJRzqvwiT/TywIXZEVKRP2gU
IuUcPjaFPkQrrGqCQmz45w5DBKZfilr+MsyLi1sixW95Ic/gHUBQyw7HK+kJp6Ly
HPCGlvjB22Ed9Z8RZqJlnGVPqoXJAph5vYUqX4Dh5dGx/jK6/dB9pFNuOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE1ZxstDOuMnJZQsImgzbri4XUmqMB8GA1UdIwQY
MBaAFB5KICC4LQKU6QotaywPKNEXO2RlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGtvZ0lMZ3RBcFRwQ2kxckxBOG8wUmM3WkdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80YzQ4YmItMzY2Yy00MWY1LTliMmQt
NTMwNDQwYzRmYTI5LzEvSGtvZ0lMZ3RBcFRwQ2kxckxBOG8wUmM3WkdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy80YzQ4YmItMzY2Yy00MWY1LTliMmQtNTMwNDQwYzRmYTI5
LzEvSGtvZ0lMZ3RBcFRwQ2kxckxBOG8wUmM3WkdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJY4batO5
7YfQ2W+80bvtf3PRecGMS3BPyD1cQ39IYpelOaE3aLXsx0AqxltpAU5DwEP1fISK
tBcIE+MQ/Em4i4HcbdI3amMnxnYhurUro89RlK924Lc8O4fUlU6jmB4xS78+XpII
yNkh+XtB2q1W/5UJDWwOTrgZdJ/Nbe7topd1LRiu2IQF4ecrmIlkJUlNwH+YQm+Q
OKDArJyGot+P2EH5INrsI0ohCRFENuHAJ2//jSsRq7l/+LSK9+9nrE5sUZUemQRk
Y4UfZFmVCVKe6+9JvW5fGWstLmenVEC89hLsgXN2ECpfQVKJ/eU0YMcEOopaNhD+
s8UEGhx7w4OBlw==
-----END CERTIFICATE-----
Generated at Thu Mar 12 22:56:15 2026 by rpki-client