Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
File: 1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft (raw, json)
Hash identifier: hwv/9vF+pMuCokp+WDSSyt8DP1tIp3nWIh+z7/AlW1E=
Subject key identifier: 00:3A:A8:57:81:05:3C:25:50:74:3E:8C:67:EF:9A:0C:87:5B:7B:03
Authority key identifier: FA:1D:54:E1:58:5A:C0:97:C3:F9:1D:EF:C0:33:DD:A5:72:2E:A1:E6
Certificate issuer: /CN=fa1d54e1585ac097c3f91defc033dda5722ea1e6
Certificate serial: 019D390A3BD07C5E47AE99CB42D8CF3B0F58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-h1U4VhawJfD-R3vwDPdpXIuoeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
Manifest number: 0345
Signing time: Sun 29 Mar 2026 10:01:05 +0000
Manifest this update: Sun 29 Mar 2026 10:01:05 +0000
Manifest next update: Mon 30 Mar 2026 10:01:05 +0000
Files and hashes: 1: 1-h1U4VhawJfD-R3vwDPdpXIuoeY.crl (hash: RgQlXd1YjxX3hmGxUHc4rERD68r6IxL4P3a481fhQyU=)
2: _9jmpjcQFwSsKwZDpKMfAdoAfAc.roa (hash: 6IYluVGKVckZ7UbNb6EnuuXW6bdpQGvWpLycJHrQ2uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-h1U4VhawJfD-R3vwDPdpXIuoeY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:3b:d0:7c:5e:47:ae:99:cb:42:d8:cf:3b:0f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1d54e1585ac097c3f91defc033dda5722ea1e6
Validity
Not Before: Mar 29 10:01:05 2026 GMT
Not After : Mar 30 10:01:05 2026 GMT
Subject: CN=003aa85781053c2550743e8c67ef9a0c875b7b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8b:98:b5:e3:90:8d:2a:08:13:d4:79:25:96:
d9:c4:99:8f:55:98:c2:11:7e:86:e4:51:72:e3:df:
96:b7:98:6c:86:c2:ce:a7:dd:8e:1d:f2:6b:a0:a1:
2a:60:e5:79:f6:68:01:56:4d:ad:17:42:ff:d9:ba:
2e:fc:6e:29:fd:44:c6:85:63:d3:42:06:f6:72:27:
0c:2f:1c:92:0d:0b:14:ab:4a:81:13:91:99:e4:62:
a5:38:50:c6:5f:e2:7e:cc:48:29:75:9b:85:aa:3a:
2f:7b:2a:1e:aa:18:9c:96:0f:9e:44:41:69:88:c7:
a4:d8:d7:29:0c:ce:23:f4:0f:9a:12:f8:f4:3b:7a:
e6:6f:34:9d:1a:b5:a7:c3:52:cc:88:b1:ff:91:92:
83:0b:13:1a:df:e3:50:b6:9f:b5:51:7b:50:65:af:
94:b1:f0:5c:0f:a1:9d:5d:92:57:0c:f2:7e:fe:15:
78:c4:f2:99:bd:a3:e1:b1:38:73:eb:9b:55:a9:51:
fd:2c:02:3a:0a:78:26:54:e4:b6:a8:50:6f:e3:dd:
3d:33:19:7e:10:ab:4b:4f:1c:b7:2f:3a:78:93:fc:
fb:8e:96:21:94:b5:51:9f:92:f2:28:8a:af:d1:20:
dc:ad:78:42:dd:4c:3f:39:39:0f:c1:a9:30:f6:51:
43:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:3A:A8:57:81:05:3C:25:50:74:3E:8C:67:EF:9A:0C:87:5B:7B:03
X509v3 Authority Key Identifier:
keyid:FA:1D:54:E1:58:5A:C0:97:C3:F9:1D:EF:C0:33:DD:A5:72:2E:A1:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-h1U4VhawJfD-R3vwDPdpXIuoeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/4d700e-9f1e-4959-9cfd-b2b572e25afd/1/1-h1U4VhawJfD-R3vwDPdpXIuoeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:7b:db:41:85:11:9c:c3:1e:a2:73:01:08:65:7c:64:4f:6b:
ed:36:41:58:2b:b6:57:f5:49:51:d3:6c:1e:10:fb:63:21:96:
0a:91:b4:ff:e9:35:a2:f5:7d:fa:5a:13:91:5f:9b:85:72:c2:
69:84:91:b8:a2:5f:9d:f0:c1:07:05:b5:29:78:f0:1c:6b:d9:
84:18:55:a5:a9:65:14:16:fc:6e:91:f6:38:bc:e3:2a:20:7f:
86:eb:20:50:c9:57:cc:82:c6:5a:e5:54:18:a8:e3:45:7b:4a:
64:4e:f7:2a:fb:d9:30:91:7d:08:82:09:5b:78:de:44:ca:31:
5c:fa:60:23:8a:ad:e3:3b:70:7e:9f:59:a7:85:47:b4:50:af:
f0:dc:78:a9:52:91:38:d6:3f:2b:3c:db:8e:f2:22:cc:c7:ee:
4b:52:ad:03:89:06:2c:2b:d8:04:5b:2e:88:65:57:b3:1b:42:
d1:24:82:9f:fa:a3:e1:65:30:0a:7c:71:20:ad:94:fa:52:90:
16:07:ba:9b:ef:9b:07:88:87:1a:cd:f8:74:0a:04:72:87:98:
24:54:ca:b0:00:f2:9b:ec:11:ab:17:b6:95:86:02:99:a6:4a:
34:82:ec:0e:6b:b7:7b:2f:b1:6a:ce:4f:79:87:9f:cc:b7:ba:
82:4e:55:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:53:44 2026 by rpki-client