Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
File: HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft (raw, json)
Hash identifier: fxD3AjHXt7LFJD+fCPhxqOFDBSofp9ucoqz9YYWOXYo=
Subject key identifier: E0:7F:90:DC:AE:75:2D:9B:E3:B2:69:1C:1A:A6:16:4F:23:48:8D:AD
Authority key identifier: 1C:8F:BA:99:36:50:34:8A:13:51:52:EE:C3:48:A1:19:43:0E:63:40
Certificate issuer: /CN=1c8fba993650348a135152eec348a119430e6340
Certificate serial: 019D3977C314E91B7F2CD66A43FDF758B72C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
Manifest number: 0355
Signing time: Sun 29 Mar 2026 12:00:43 +0000
Manifest this update: Sun 29 Mar 2026 12:00:43 +0000
Manifest next update: Mon 30 Mar 2026 12:00:43 +0000
Files and hashes: 1: HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl (hash: Iu4abfsAcAyQXZI3pa64Dwl1mfGMqXCoUsGHELd0kfA=)
2: dnhblZcylCcbRj12R5ofCpHt7LU.roa (hash: oRIsfhmT16Rl0vK9L5ENWVnifqieHto224vdnp4iUt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:c3:14:e9:1b:7f:2c:d6:6a:43:fd:f7:58:b7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c8fba993650348a135152eec348a119430e6340
Validity
Not Before: Mar 29 12:00:43 2026 GMT
Not After : Mar 30 12:00:43 2026 GMT
Subject: CN=e07f90dcae752d9be3b2691c1aa6164f23488dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0b:e2:1a:d6:3d:1f:4a:64:cc:d9:82:6a:c1:
ef:fb:5d:eb:c5:b7:75:22:d6:1b:22:b1:58:03:8f:
5c:7c:3d:8d:e8:53:d6:ac:b4:2b:0f:85:90:81:f6:
e2:23:ea:38:ca:25:0f:d6:42:41:c5:df:43:b5:d3:
7d:95:3a:d6:f0:b1:f3:6d:ca:35:3a:ab:00:cb:be:
d0:93:17:ad:85:52:ff:89:bb:31:1d:a5:3c:73:ee:
12:32:dd:1b:30:f5:2a:be:35:93:67:59:46:37:72:
ac:dc:2d:ac:3a:2b:02:b2:ba:14:78:c1:dc:1e:fa:
94:81:55:d7:bf:5f:c4:02:cb:cc:91:18:5d:a8:1d:
ae:4a:b8:2e:60:ae:2e:b7:3b:15:0d:53:a9:5f:53:
f8:6a:d3:99:9f:82:a8:9d:fe:27:99:9d:f7:fd:bf:
32:60:70:8f:8c:c8:e5:fd:23:74:4b:e8:59:94:98:
7e:d7:f7:71:d5:09:e2:11:fd:02:77:ed:5b:fa:be:
eb:70:ad:c4:0f:28:2e:9f:83:1c:57:71:f2:47:ba:
45:4f:04:bb:de:70:11:5d:74:09:5c:1e:8d:c6:12:
21:25:93:4e:86:58:7f:52:68:88:ea:11:08:3f:ad:
19:58:75:3e:63:ff:b1:d9:bd:7a:22:d9:a0:a1:9c:
bd:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:7F:90:DC:AE:75:2D:9B:E3:B2:69:1C:1A:A6:16:4F:23:48:8D:AD
X509v3 Authority Key Identifier:
keyid:1C:8F:BA:99:36:50:34:8A:13:51:52:EE:C3:48:A1:19:43:0E:63:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:02:a9:7f:67:12:a8:7b:5b:ad:df:0e:e9:5c:76:02:2a:ee:
33:2c:e2:38:20:8f:30:60:8e:9e:ef:ec:ee:b7:7b:b0:f5:0c:
5c:ba:1b:b9:b0:f5:e2:d5:6f:20:38:3a:6b:9f:4f:8b:84:7b:
6a:91:57:78:72:96:1e:23:a4:f1:4b:07:7d:57:28:97:4b:df:
03:19:a5:80:57:78:6a:af:a7:be:43:41:84:b2:b9:99:86:2f:
cc:b6:e9:0a:1f:9b:b3:19:0e:33:36:c4:f4:77:fb:a8:50:36:
6a:24:83:fa:84:87:a7:82:0d:79:84:52:5f:10:06:52:b6:89:
b0:aa:8d:95:60:9a:12:cf:1e:a5:90:4c:88:d7:43:d7:0c:0a:
52:9a:51:6a:28:77:41:7b:d9:94:99:cb:15:a4:9c:ba:32:7c:
5f:9b:62:20:3d:31:8e:c6:2d:24:fe:27:53:b3:08:28:9c:ac:
5f:7b:75:1e:4c:d5:5b:07:7c:d2:2d:81:6f:75:d5:a5:65:34:
e3:18:30:e3:8a:dd:1c:1c:4c:f2:63:06:89:e0:23:45:25:ad:
f3:6b:e7:df:04:aa:76:57:0c:2f:f4:26:ea:76:0e:26:33:a9:
5d:ff:dc:db:92:c2:30:14:59:14:18:44:f5:ea:b2:b0:ed:13:
7c:18:88:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:50:41 2026 by rpki-client