Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
File: hXosdK9aRNmq5HoLiUJfpPf8fBk.mft (raw, json)
Hash identifier: Dq8tBIoSWgG0qV6FKYUqykalpSA9AGo9rfm1PBMXFDI=
Subject key identifier: 32:D5:55:26:17:C1:CA:FE:C0:70:11:67:01:46:4A:EB:0B:6D:35:07
Authority key identifier: 85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
Certificate issuer: /CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Certificate serial: 019D389BF87238C6ED0B76FAADD22387EB87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 08:00:38 +0000
Manifest this update: Sun 29 Mar 2026 08:00:38 +0000
Manifest next update: Mon 30 Mar 2026 08:00:38 +0000
Files and hashes: 1: Bonx83HF76BE61ZX0VoIun52A94.roa (hash: TlHLw/pT6swl2899e/7+GOFr0kLi3ZqUiDKK8FJwmx4=)
2: KhO94NLVmWuXMsiCxf4jrKbJ5Po.roa (hash: qEss2pgdXS0c4u8wwfxj/bMSNCRROZUmP3NoiQOGa5M=)
3: hXosdK9aRNmq5HoLiUJfpPf8fBk.crl (hash: PQ/wUz/9iL3QKbRh88pVRBWnuzQaBvS3YQv61Z5Tsok=)
4: ku1P8o5rq2UWzSBP5BqJGle8jJY.roa (hash: og9Xi90Vpv7B2cA94MtmnptXF8svnEEvwmcGsCW9qAg=)
5: ssADW3_Hs4QeRpZLpNq6K6vfQ3Y.roa (hash: aeb9BpkvqDq2X7UVYrDEmcbZhKgrzz3R1D68l+yOj6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:f8:72:38:c6:ed:0b:76:fa:ad:d2:23:87:eb:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Validity
Not Before: Mar 29 08:00:38 2026 GMT
Not After : Mar 30 08:00:38 2026 GMT
Subject: CN=32d5552617c1cafec070116701464aeb0b6d3507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4c:c4:97:44:ca:91:6f:c5:22:f0:ff:ef:30:
8e:92:fd:0b:90:1d:9c:ea:c9:40:7d:42:36:17:c7:
84:76:fb:a6:34:7b:ae:d7:73:5a:1b:d5:1d:c1:c2:
97:b3:ae:d2:4c:78:95:c2:fa:e3:1b:8a:5f:ec:9c:
0e:01:d7:44:d9:3d:58:96:52:61:b8:09:0e:c2:be:
cb:85:a1:61:81:40:aa:53:a0:50:7e:1a:2a:8c:c1:
e2:41:b7:08:d0:3b:a6:92:c1:c2:04:e8:3e:37:d6:
26:d1:f6:f1:2c:5c:02:40:39:66:99:5f:b1:85:07:
e0:cb:8f:f5:92:f7:ce:05:21:c2:0f:b9:42:ab:75:
8e:f9:68:dc:c0:22:75:af:68:de:b1:7b:25:0a:bc:
d3:82:c1:e8:cb:bc:ad:b1:26:82:23:21:21:c1:c4:
f5:80:db:c3:2d:64:c9:73:d6:19:95:b9:5f:71:0e:
1b:ae:8d:ac:c6:d6:80:8d:34:1b:29:50:6e:e4:d0:
fd:87:02:82:af:a5:d4:0b:40:b7:2f:69:b8:d9:45:
9f:a2:a4:ca:be:2a:70:c9:04:61:42:43:98:5d:29:
d2:cd:62:c9:e1:90:63:a6:8d:6e:3d:c2:7e:fb:1e:
80:b3:fe:61:bd:17:cc:c2:a6:a8:7a:54:0d:7b:db:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D5:55:26:17:C1:CA:FE:C0:70:11:67:01:46:4A:EB:0B:6D:35:07
X509v3 Authority Key Identifier:
keyid:85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:54:a7:cb:f7:23:3f:0c:ea:98:ba:e6:c6:2c:73:77:d9:ef:
ae:38:b9:10:73:93:95:f0:01:e5:a8:0e:cc:24:b1:2f:05:54:
74:ae:c9:2c:1b:af:62:d6:26:fc:5e:2c:6f:cc:bf:a7:c4:49:
8f:76:a3:84:11:af:5a:d4:33:3d:13:18:03:e8:7a:c2:8b:8b:
00:41:97:fe:80:75:6a:4c:0e:0e:b9:ed:2f:de:db:c9:19:19:
d3:b3:90:d4:6b:40:83:e7:20:e7:9f:13:7a:f8:0d:bc:22:b0:
e0:1e:d5:ba:7f:38:02:5c:f1:ad:45:ab:49:c0:29:3b:75:1c:
4e:44:dc:47:34:c0:69:fe:3f:7c:b9:be:e3:0b:5a:03:fa:c6:
cc:cf:a9:c1:6c:a4:21:f8:9c:36:c8:2f:63:a4:b8:be:5b:d1:
f9:d9:82:f5:bf:e3:fc:9b:4a:85:dd:e8:9a:41:ac:62:4f:5e:
fe:6c:73:3b:69:02:f5:77:cc:a0:0f:ec:ff:16:4b:0a:f8:d0:
da:c4:4a:15:67:d5:d2:c8:43:90:fe:73:e7:77:e0:67:e8:8a:
2a:04:dc:3c:0c:1a:0a:de:90:32:70:91:b8:3e:78:28:a3:fc:
cf:84:78:cb:22:6e:20:e2:36:12:7d:38:0b:5f:74:3a:fe:ba:
0a:4c:e3:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:21 2026 by rpki-client