Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json)
Hash identifier: kqkdZq4IRixoppQXRIlFwv3qEu70VW+56Vo7d7r+Jmw=
Subject key identifier: 18:74:3D:A8:47:D9:00:36:B0:C0:E2:44:F1:CE:9C:96:1E:34:9E:C0
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 019D375246F4980D809EC37A992B92E2F6AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
Manifest number: 096F
Signing time: Sun 29 Mar 2026 02:00:32 +0000
Manifest this update: Sun 29 Mar 2026 02:00:32 +0000
Manifest next update: Mon 30 Mar 2026 02:00:32 +0000
Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: cjoBl+lizCTmbiH1ul8fb+kOewyLXY96PtlTD7R/Kxk=)
2: qW7GPOXUB2kOz17G8MW05EGL-qI.roa (hash: 23gVv5PC4uk3d5shuh+rzrrM1ECcEw5rTuYmm2m+M2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:46:f4:98:0d:80:9e:c3:7a:99:2b:92:e2:f6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: Mar 29 02:00:32 2026 GMT
Not After : Mar 30 02:00:32 2026 GMT
Subject: CN=18743da847d90036b0c0e244f1ce9c961e349ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ea:94:55:98:cd:32:d7:ea:37:52:cd:26:f4:
b9:26:99:bf:32:fe:37:f3:e5:3c:e7:00:89:57:55:
08:69:20:bd:7d:3c:13:72:a6:0f:b2:e0:3d:a9:15:
78:43:20:79:77:af:54:dc:0b:ff:6d:a5:c7:28:9f:
c5:68:58:4a:f6:fb:f0:0e:fc:02:cc:98:e5:cf:f7:
0a:c5:40:0c:3f:98:56:5a:7c:57:c4:29:25:3c:12:
56:5d:ff:b9:bc:4f:93:25:d1:c1:10:8d:98:80:e1:
22:d1:d2:0f:c5:07:f1:24:b7:db:47:7e:37:65:91:
73:7c:39:f6:73:34:d7:73:dc:9d:07:c0:50:21:36:
ee:e0:9f:44:35:0b:14:73:29:11:f4:f7:52:ec:70:
15:98:cc:5f:a2:4b:b3:29:8f:12:01:48:92:4c:d8:
d8:4f:bc:07:95:63:80:cc:f1:13:d5:fe:0f:8b:88:
e3:69:f1:3d:57:1c:16:5e:21:fb:05:66:f5:9a:99:
a2:01:24:f6:3c:de:d5:7c:3e:84:b4:7a:7e:52:15:
50:c4:1a:01:28:2b:f6:af:08:ff:22:82:ad:c5:bd:
8a:34:a0:ad:56:3f:6c:dc:d4:72:ef:3c:55:3c:bd:
3d:b1:ae:d1:8e:7a:b3:cd:9f:ff:d3:82:0c:fb:f0:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:74:3D:A8:47:D9:00:36:B0:C0:E2:44:F1:CE:9C:96:1E:34:9E:C0
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:04:ce:5c:87:ac:a9:28:b5:ad:48:3f:fd:01:e2:dc:70:fd:
d4:5f:af:7d:ee:62:c1:57:3c:34:30:6f:03:1e:46:b3:35:dc:
ae:78:8d:61:2a:ad:3e:5a:17:f7:f6:81:5e:cc:a7:03:64:ef:
2f:7e:bc:ec:42:43:7e:15:85:51:00:20:f1:69:a2:04:0d:e6:
67:f8:13:ec:3c:f4:54:4f:16:77:79:a1:be:42:2c:07:ff:44:
a5:77:2d:01:ad:ff:e6:6f:52:ba:bd:6c:79:03:cd:28:9a:a7:
7f:b1:7c:f2:80:67:4d:f1:42:53:33:22:0c:49:c3:fa:5c:15:
72:69:97:8a:80:59:d1:a3:83:56:f3:2e:68:d8:bf:c9:8e:90:
c6:51:63:99:fa:7f:79:71:3f:2f:7a:2a:b2:0f:aa:0d:24:00:
60:7f:09:05:5a:2f:f9:d8:ea:d1:95:d4:92:a3:2a:6a:09:b8:
8f:05:44:b3:5f:02:97:b1:c4:c8:97:e3:37:af:cc:b6:b2:2a:
8c:30:a2:5b:8d:1d:ce:e1:4d:ff:38:52:69:de:ce:5b:55:67:
33:3e:a0:b2:a7:fc:6a:e4:bf:3e:96:7d:de:57:78:8d:72:86:
cf:0c:1e:b9:e6:03:b5:40:e1:29:bc:35:40:45:45:13:ee:5c:
1e:07:bb:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03Ukb0mA2AnsN6mSuS4vavMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwNzA5NjBlZDlhMGRhMWM5YjdlMjQ1N2VhYmNiNjYwNDc4
ZDA4YWUwHhcNMjYwMzI5MDIwMDMyWhcNMjYwMzMwMDIwMDMyWjAzMTEwLwYDVQQD
EygxODc0M2RhODQ3ZDkwMDM2YjBjMGUyNDRmMWNlOWM5NjFlMzQ5ZWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuqUVZjNMtfqN1LNJvS5Jpm/Mv43
8+U85wCJV1UIaSC9fTwTcqYPsuA9qRV4QyB5d69U3Av/baXHKJ/FaFhK9vvwDvwC
zJjlz/cKxUAMP5hWWnxXxCklPBJWXf+5vE+TJdHBEI2YgOEi0dIPxQfxJLfbR343
ZZFzfDn2czTXc9ydB8BQITbu4J9ENQsUcykR9PdS7HAVmMxfokuzKY8SAUiSTNjY
T7wHlWOAzPET1f4Pi4jjafE9VxwWXiH7BWb1mpmiAST2PN7VfD6EtHp+UhVQxBoB
KCv2rwj/IoKtxb2KNKCtVj9s3NRy7zxVPL09sa7RjnqzzZ//04IM+/AkBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBh0PahH2QA2sMDiRPHOnJYeNJ7AMB8GA1UdIwQY
MBaAFNBwlg7ZoNocm34kV+q8tmBHjQiuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEhDV0R0bWcyaHliZmlSWDZyeTJZRWVOQ0s0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8wMzU1OGUtNjg4Zi00ZTFjLWE2NmYt
NmVlZmRhMTEwOGFkLzEvMEhDV0R0bWcyaHliZmlSWDZyeTJZRWVOQ0s0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi8wMzU1OGUtNjg4Zi00ZTFjLWE2NmYtNmVlZmRhMTEwOGFk
LzEvMEhDV0R0bWcyaHliZmlSWDZyeTJZRWVOQ0s0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALQTOXIes
qSi1rUg//QHi3HD91F+vfe5iwVc8NDBvAx5GszXcrniNYSqtPloX9/aBXsynA2Tv
L3687EJDfhWFUQAg8WmiBA3mZ/gT7Dz0VE8Wd3mhvkIsB/9EpXctAa3/5m9Sur1s
eQPNKJqnf7F88oBnTfFCUzMiDEnD+lwVcmmXioBZ0aODVvMuaNi/yY6QxlFjmfp/
eXE/L3oqsg+qDSQAYH8JBVov+djq0ZXUkqMqagm4jwVEs18Cl7HEyJfjN6/MtrIq
jDCiW40dzuFN/zhSad7OW1VnMz6gsqf8auS/PpZ93ld4jXKGzwweueYDtUDhKbw1
QEVFE+5cHge7Gw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:50 2026 by rpki-client