Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json)
Hash identifier: tNnE1eAF671CO3AOZXhgyrL2hASpTcDH9ZM9W2QOxUQ=
Subject key identifier: AD:D6:51:03:57:71:28:C0:A6:AE:4E:8A:01:1F:47:97:60:87:A9:59
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 019CE4ECD0E615205E914FE4D939F1B94982
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
Manifest number: 111E
Signing time: Fri 13 Mar 2026 02:00:50 +0000
Manifest this update: Fri 13 Mar 2026 02:00:50 +0000
Manifest next update: Sat 14 Mar 2026 02:00:50 +0000
Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: sZ1EuwNps4tmK/CCdfmY9XLUs06jxIfxQ7MclSgdtCQ=)
2: Vf77xukhBIpUTcfDdQGILMMSa4Q.roa (hash: tmWyKSyKboTPLB52PoBpJE8efgve3egkhQ+0cqtz0+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 02:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:ec:d0:e6:15:20:5e:91:4f:e4:d9:39:f1:b9:49:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: Mar 13 02:00:50 2026 GMT
Not After : Mar 14 02:00:50 2026 GMT
Subject: CN=add65103577128c0a6ae4e8a011f47976087a959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:23:17:87:ed:ad:4a:5e:99:65:e5:04:76:
e9:5d:b0:c1:ff:ca:27:a5:90:1a:61:1e:df:52:24:
62:d2:68:38:3a:c8:bc:5a:dd:bb:64:b4:b4:fa:c3:
2b:c6:f5:32:16:d7:5c:c4:95:fd:77:41:69:91:e5:
03:af:6a:b4:da:88:19:a7:43:14:06:8f:c3:20:45:
6c:d2:d9:43:75:56:fe:4e:64:1d:9d:f0:5f:40:f0:
a6:83:3a:f3:be:48:61:a6:2c:c7:fb:6c:6b:f4:16:
3c:35:7b:4b:4d:74:1d:29:0d:4c:51:01:9b:39:eb:
49:4e:88:88:4c:2f:2c:d8:db:37:50:22:89:7f:80:
a1:0c:c0:fb:b1:32:21:be:2a:81:83:08:36:d5:d3:
8a:38:c3:a2:3e:f2:52:92:dc:c9:ee:58:f2:44:81:
73:74:a2:36:6b:74:9f:c1:69:e8:09:8a:95:2d:45:
74:b5:77:45:a7:0c:71:1a:96:0c:94:36:2b:19:c7:
5e:8c:8d:8d:58:47:59:93:0c:fd:5c:62:ae:3c:ad:
d5:e8:08:35:ef:79:8e:c1:b9:b4:b5:19:79:0a:9e:
28:df:c0:4b:8e:8d:20:88:ad:dd:64:44:fc:a0:30:
48:13:1e:f5:86:a0:af:e5:34:9c:da:34:fb:3f:51:
26:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D6:51:03:57:71:28:C0:A6:AE:4E:8A:01:1F:47:97:60:87:A9:59
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:fd:a8:2a:86:c0:a6:56:0f:98:bf:e4:8b:a2:0b:d6:a4:61:
2a:46:21:cf:55:bc:c0:66:9c:1c:c2:c0:85:cb:f9:f2:96:24:
ae:08:0d:42:6a:6f:e8:d5:ec:60:a1:a5:4f:02:3f:30:be:68:
08:3e:c2:ff:62:c2:ac:9d:17:92:01:76:9f:b4:af:8e:a3:92:
6f:96:da:5b:db:29:bb:21:04:5d:60:0d:d2:83:c9:ee:df:98:
dc:19:ac:bf:48:4a:d5:dd:9a:5b:a8:86:a2:94:c6:af:eb:2a:
63:d3:c6:ea:5f:e3:10:50:99:81:d7:d5:d8:ae:74:7c:8a:80:
a3:63:77:c1:46:71:32:43:4a:c9:9d:19:36:96:c1:59:e2:68:
fe:c6:78:75:94:72:81:1e:05:5d:f6:d8:c7:bd:c3:b6:e2:e8:
f7:bc:dc:e9:7e:18:97:f0:ef:ce:ed:6c:5e:b6:eb:e5:6c:64:
a5:5e:7c:05:46:7f:55:10:7a:d1:3b:1f:05:0c:52:7a:5d:f2:
c0:19:2e:70:be:af:c4:ed:70:b5:65:8d:01:e2:6c:48:c2:77:
f4:ae:ca:d3:1d:cd:a4:c8:54:17:32:b3:f4:87:64:2e:08:c5:
7f:e2:c0:44:2c:0e:34:23:1b:c1:e8:6e:d4:be:ba:3b:1c:7e:
a1:23:14:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzk7NDmFSBekU/k2TnxuUmCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNGFmMmI0Nzk4MTVmMDdjZDgyZTlmODJiYWIyZmVhMTNm
YjIxYjEwHhcNMjYwMzEzMDIwMDUwWhcNMjYwMzE0MDIwMDUwWjAzMTEwLwYDVQQD
EyhhZGQ2NTEwMzU3NzEyOGMwYTZhZTRlOGEwMTFmNDc5NzYwODdhOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspojF4ftrUpemWXlBHbpXbDB/8on
pZAaYR7fUiRi0mg4Osi8Wt27ZLS0+sMrxvUyFtdcxJX9d0FpkeUDr2q02ogZp0MU
Bo/DIEVs0tlDdVb+TmQdnfBfQPCmgzrzvkhhpizH+2xr9BY8NXtLTXQdKQ1MUQGb
OetJToiITC8s2Ns3UCKJf4ChDMD7sTIhviqBgwg21dOKOMOiPvJSktzJ7ljyRIFz
dKI2a3SfwWnoCYqVLUV0tXdFpwxxGpYMlDYrGcdejI2NWEdZkwz9XGKuPK3V6Ag1
73mOwbm0tRl5Cp4o38BLjo0giK3dZET8oDBIEx71hqCv5TSc2jT7P1EmgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK3WUQNXcSjApq5OigEfR5dgh6lZMB8GA1UdIwQY
MBaAFB9K8rR5gV8HzYLp+CurL+oT+yGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjIt
MDg2YzE2ZjczNmIxLzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjItMDg2YzE2ZjczNmIx
LzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR/2oKobA
plYPmL/ki6IL1qRhKkYhz1W8wGacHMLAhcv58pYkrggNQmpv6NXsYKGlTwI/ML5o
CD7C/2LCrJ0XkgF2n7SvjqOSb5baW9spuyEEXWAN0oPJ7t+Y3Bmsv0hK1d2aW6iG
opTGr+sqY9PG6l/jEFCZgdfV2K50fIqAo2N3wUZxMkNKyZ0ZNpbBWeJo/sZ4dZRy
gR4FXfbYx73DtuLo97zc6X4Yl/Dvzu1sXrbr5WxkpV58BUZ/VRB60TsfBQxSel3y
wBkucL6vxO1wtWWNAeJsSMJ39K7K0x3NpMhUFzKz9IdkLgjFf+LARCwONCMbwehu
1L66Oxx+oSMUXw==
-----END CERTIFICATE-----
Generated at Fri Mar 13 11:36:14 2026 by rpki-client