Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
File: htqvTmjTIiSCMFRM2NspVo5s8AM.mft (raw, json)
Hash identifier: MwBQ8d7qDZjFlEjyKkDwwlZkKlz0OwiHqhmL9SnXIs8=
Subject key identifier: 42:8A:90:3F:A5:51:39:2E:EF:48:7E:5E:38:9B:29:09:C4:C8:FA:D4
Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003
Certificate serial: 019D382E8653FF67B4679CF9619EC3F9D766
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 06:01:06 +0000
Manifest this update: Sun 29 Mar 2026 06:01:06 +0000
Manifest next update: Mon 30 Mar 2026 06:01:06 +0000
Files and hashes: 1: LyQJZOiJBFj_CkncEm0AMCx8VkA.roa (hash: 0nBIH73/4Jum7OxlljaMAAXDP5B7wTyLZnA+y+yJXE4=)
2: htqvTmjTIiSCMFRM2NspVo5s8AM.crl (hash: B+Rh72YYJq88QzdP7J9Ju/JzFgB3u4whZSSasUjPWRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:86:53:ff:67:b4:67:9c:f9:61:9e:c3:f9:d7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003
Validity
Not Before: Mar 29 06:01:06 2026 GMT
Not After : Mar 30 06:01:06 2026 GMT
Subject: CN=428a903fa551392eef487e5e389b2909c4c8fad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:72:bf:e8:b1:4d:8a:8e:f7:14:c7:26:8b:e1:
bd:0d:bb:8e:4f:1e:23:61:f3:f6:8c:ef:37:a5:0d:
ff:20:b8:e0:8e:c2:60:e5:03:1c:2f:e5:59:b1:86:
4b:32:63:53:a6:4b:ba:67:e4:c0:8d:1a:b7:ab:39:
ee:2f:30:ee:ad:fc:32:ea:f7:16:27:3a:b4:15:ef:
70:eb:04:85:2b:7d:46:a6:74:55:ad:42:a3:ac:71:
55:c9:18:2e:36:67:66:4d:a0:d3:1a:11:be:e7:09:
86:a8:72:9a:c9:78:a6:ed:4f:8c:fb:d0:c0:9a:23:
b5:e9:a7:30:85:5b:5e:f4:94:83:ea:61:3c:85:25:
06:59:a5:88:53:a9:07:6d:8f:70:59:0f:93:69:b4:
ae:2d:36:91:2a:2a:ea:f9:c7:87:b8:2d:18:1d:6e:
30:5f:20:ce:f6:9c:01:d8:1f:ca:df:94:32:53:5c:
54:64:5d:a6:10:22:4f:b6:2b:26:f0:f8:5c:26:4c:
7e:ac:9c:69:6d:de:05:bb:77:53:98:e7:8f:76:72:
00:d3:b8:62:1b:4a:3e:55:d9:66:24:8c:49:bb:6c:
58:f3:10:14:9d:1f:e9:5b:66:7d:7b:5a:d1:5d:30:
4c:c2:84:ab:80:f0:8e:59:96:d5:da:bc:5e:eb:85:
35:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8A:90:3F:A5:51:39:2E:EF:48:7E:5E:38:9B:29:09:C4:C8:FA:D4
X509v3 Authority Key Identifier:
keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:f1:5e:b8:a2:20:ac:4c:1d:f9:34:54:00:b1:2c:9a:8a:fe:
c5:13:f3:3b:f0:1f:2e:a1:e8:ae:4c:c5:df:fe:ca:8b:82:be:
8f:fd:6d:c3:e6:82:a2:9c:4b:28:db:ca:cf:46:af:a1:5e:4d:
fc:07:1c:ef:00:3b:be:6f:63:5f:72:80:fa:a9:96:c4:35:59:
60:5b:96:f1:21:fb:ca:b2:95:29:b8:2b:a3:26:d2:c4:db:45:
37:8a:a0:d0:99:8a:1b:11:15:8b:6f:eb:cb:62:6f:ba:76:b5:
35:08:9f:09:09:74:86:54:d3:af:64:aa:f7:90:92:5d:ca:7d:
81:5f:1b:f5:1b:09:f0:2b:78:0b:3a:e3:f0:e1:15:2e:07:16:
20:7f:99:b3:d4:8b:59:6e:6b:b6:db:2a:be:80:25:39:03:92:
79:de:90:d6:86:25:ae:8a:3b:bf:97:ee:f4:30:84:b7:cd:ef:
7c:56:15:84:66:03:70:47:e3:19:fe:3c:03:d1:e9:83:a1:2a:
a2:7d:01:43:db:f4:e8:14:a9:6c:e1:7c:26:80:72:e7:fb:00:
87:8b:3f:af:57:a0:86:3b:a8:c7:95:10:8a:a7:4a:84:79:90:
fe:52:13:33:78:94:0a:bd:7b:47:f9:d4:dd:b7:ad:d4:2b:bd:
08:35:f8:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LoZT/2e0Z5z5YZ7D+ddmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZGFhZjRlNjhkMzIyMjQ4MjMwNTQ0Y2Q4ZGIyOTU2OGU2
Y2YwMDMwHhcNMjYwMzI5MDYwMTA2WhcNMjYwMzMwMDYwMTA2WjAzMTEwLwYDVQQD
Eyg0MjhhOTAzZmE1NTEzOTJlZWY0ODdlNWUzODliMjkwOWM0YzhmYWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3K/6LFNio73FMcmi+G9DbuOTx4j
YfP2jO83pQ3/ILjgjsJg5QMcL+VZsYZLMmNTpku6Z+TAjRq3qznuLzDurfwy6vcW
Jzq0Fe9w6wSFK31GpnRVrUKjrHFVyRguNmdmTaDTGhG+5wmGqHKayXim7U+M+9DA
miO16acwhVte9JSD6mE8hSUGWaWIU6kHbY9wWQ+TabSuLTaRKirq+ceHuC0YHW4w
XyDO9pwB2B/K35QyU1xUZF2mECJPtism8PhcJkx+rJxpbd4Fu3dTmOePdnIA07hi
G0o+VdlmJIxJu2xY8xAUnR/pW2Z9e1rRXTBMwoSrgPCOWZbV2rxe64U1NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEKKkD+lUTku70h+XjibKQnEyPrUMB8GA1UdIwQY
MBaAFIbar05o0yIkgjBUTNjbKVaObPADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81N2QxZGItZDhlYi00OWUwLTgxMzMt
NWJjOTA1MDVkOGNhLzEvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS81N2QxZGItZDhlYi00OWUwLTgxMzMtNWJjOTA1MDVkOGNh
LzEvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfPFeuKIg
rEwd+TRUALEsmor+xRPzO/AfLqHorkzF3/7Ki4K+j/1tw+aCopxLKNvKz0avoV5N
/Acc7wA7vm9jX3KA+qmWxDVZYFuW8SH7yrKVKbgroybSxNtFN4qg0JmKGxEVi2/r
y2Jvuna1NQifCQl0hlTTr2Sq95CSXcp9gV8b9RsJ8Ct4Czrj8OEVLgcWIH+Zs9SL
WW5rttsqvoAlOQOSed6Q1oYlroo7v5fu9DCEt83vfFYVhGYDcEfjGf48A9Hpg6Eq
on0BQ9v06BSpbOF8JoBy5/sAh4s/r1eghjuox5UQiqdKhHmQ/lITM3iUCr17R/nU
3bet1Cu9CDX4fQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:10 2026 by rpki-client