Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
File: hUu3qjkIyZjePEL34YSVOLBZJhc.mft (raw, json)
Hash identifier: RiEtYmgPkPevXojjPod4EUILMMYkdfKu0Q1r2D2N0CY=
Subject key identifier: 84:D6:D0:FC:58:99:6A:92:DF:38:88:C7:7B:EF:18:3F:E9:32:4B:6A
Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617
Certificate serial: 019D37898D75D073F998B19EB1D7F047A028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
Manifest number: 1111
Signing time: Sun 29 Mar 2026 03:00:54 +0000
Manifest this update: Sun 29 Mar 2026 03:00:54 +0000
Manifest next update: Mon 30 Mar 2026 03:00:54 +0000
Files and hashes: 1: 7MqIqmbLOZCvYlEMG9u9KyE6Ytk.roa (hash: zRxcr077zFRaZAIgIWm+iYU3FdaVL/l6dLqFNAGhIKM=)
2: hUu3qjkIyZjePEL34YSVOLBZJhc.crl (hash: /pDOfJrp530UjWrAvsLdta+V4z4P6yT+VaVUO1pxA6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:8d:75:d0:73:f9:98:b1:9e:b1:d7:f0:47:a0:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617
Validity
Not Before: Mar 29 03:00:54 2026 GMT
Not After : Mar 30 03:00:54 2026 GMT
Subject: CN=84d6d0fc58996a92df3888c77bef183fe9324b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:a0:5c:ac:1c:62:4a:bd:62:af:96:c3:02:
be:c9:a9:c5:4b:5b:1e:f4:8d:ca:5d:d1:a5:85:3b:
6a:6c:47:14:8b:35:c4:3e:0f:32:bc:45:85:57:4e:
63:c7:25:1c:3a:ec:32:70:63:b8:58:aa:48:39:ca:
3b:88:3b:69:94:71:c7:ba:7f:a3:74:e2:a1:07:02:
b1:c4:85:0f:45:15:4a:a7:6a:9f:df:07:2d:4d:cc:
bd:4e:cf:7a:8f:69:97:6d:99:02:3e:db:76:52:47:
b5:ee:1c:a1:d7:1d:58:cd:15:5e:c3:8e:68:a5:f1:
10:eb:4c:c3:02:98:35:e7:de:62:d3:75:a1:d9:25:
7d:36:56:70:b0:3a:c6:b3:86:77:59:09:fd:63:a0:
3c:98:33:73:60:8c:dd:02:5e:f9:94:1c:2b:b0:39:
ed:23:14:a6:d9:e1:a5:bc:f5:62:c7:69:7c:3f:d2:
1a:8b:ec:c1:4b:33:d2:5c:2f:b6:46:7a:65:cc:3f:
38:37:44:b6:ce:08:d1:c9:49:81:2a:14:ef:49:35:
31:b8:af:01:73:73:e6:bf:b3:7e:4e:ba:43:49:4d:
d4:70:81:31:02:6c:89:b1:9a:f0:64:d8:a6:08:55:
22:f5:da:d1:71:a8:91:8b:a6:a5:95:aa:74:ab:be:
04:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D6:D0:FC:58:99:6A:92:DF:38:88:C7:7B:EF:18:3F:E9:32:4B:6A
X509v3 Authority Key Identifier:
keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:be:e4:8c:22:93:c8:f2:d7:a9:9f:b1:f2:76:4b:34:72:66:
18:7c:7f:c4:cb:05:d8:e5:e3:91:b6:59:ee:4b:fc:5c:a0:67:
f2:82:9f:25:0e:98:dc:88:2c:11:d3:63:14:01:cf:01:2e:f8:
a9:50:34:5b:b9:40:b9:8c:89:3e:fb:d1:3a:f0:bb:48:72:9a:
eb:fb:35:cc:78:3a:b6:79:2c:3e:12:01:7f:f7:7d:5c:00:9b:
2f:cf:18:36:50:b1:46:fc:82:5d:b6:f5:87:5e:9e:c8:0e:40:
42:fe:e3:7a:de:d1:07:dd:33:91:2d:de:18:29:07:24:95:48:
64:96:6f:8f:0c:c0:15:e8:17:69:98:5c:93:d6:1f:29:6d:26:
b4:5e:4f:42:3e:c3:46:0f:4c:16:b8:46:f7:6e:f9:2d:74:07:
ec:7e:2d:4d:20:24:4f:de:27:3f:28:bc:e1:27:26:71:f3:32:
01:2f:d3:57:fa:b5:88:f1:35:83:39:1e:8d:a3:b1:8b:a7:75:
04:b4:8d:ee:f5:7b:0e:70:50:23:b1:e0:64:ad:27:23:b4:4c:
e9:f6:7e:bd:d1:1d:fd:88:48:6b:27:a4:0d:f8:1d:36:51:e6:
ee:2b:08:ac:c4:68:77:ec:6f:68:84:e1:04:1e:64:33:c6:bc:
84:21:27:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:27 2026 by rpki-client