Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
File: _H1Kt3YauiTzPVtt-8J8q3OLte4.mft (raw, json)
Hash identifier: 4zHfsS7/tKxcBbewfRU1iB9fwacx8Ie+ogKzit/7q0A=
Subject key identifier: 96:C2:BA:91:00:21:83:BC:B8:A0:C5:71:1B:05:A9:A8:43:56:90:03
Authority key identifier: FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE
Certificate issuer: /CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
Certificate serial: 019D389C25AE58F53D5D17630B2F1B5C3652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
Manifest number: 152E
Signing time: Sun 29 Mar 2026 08:00:50 +0000
Manifest this update: Sun 29 Mar 2026 08:00:50 +0000
Manifest next update: Mon 30 Mar 2026 08:00:50 +0000
Files and hashes: 1: _H1Kt3YauiTzPVtt-8J8q3OLte4.crl (hash: Vd+U6MKtXe6aprqflNNerK31mWkdl+1Cz9xq+PxAa3w=)
2: pIzu0UPpsP8clP4GJvMQ5mOsgdU.roa (hash: cY4H2iigWEWrWAaGXnc1Tjbm637H9ISvb9VWaDHjJoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:25:ae:58:f5:3d:5d:17:63:0b:2f:1b:5c:36:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
Validity
Not Before: Mar 29 08:00:50 2026 GMT
Not After : Mar 30 08:00:50 2026 GMT
Subject: CN=96c2ba91002183bcb8a0c5711b05a9a843569003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:dd:5e:24:10:0b:74:b8:ee:bf:da:2f:46:8f:
bb:11:41:42:bc:ca:cd:62:ed:23:0c:9c:c6:66:99:
d7:26:ae:d1:bb:45:f0:22:b6:19:a1:cb:fa:06:56:
f1:18:e4:c3:e8:a3:f3:19:18:12:c5:d4:1c:57:39:
f7:b9:54:54:7b:b2:b7:71:ac:93:fb:e6:b5:cd:00:
ba:5e:cd:a3:ca:b9:6d:bf:0b:7e:cd:08:1f:bc:48:
07:29:3b:96:76:49:88:a4:67:6f:06:fa:82:92:52:
45:3b:b5:69:62:ec:a7:3e:db:a5:a2:dc:7d:b6:43:
77:78:57:cb:e8:5f:a7:e2:22:4c:75:79:e6:04:f5:
36:f1:3d:a2:b2:c0:89:bc:f9:27:51:e0:1c:b6:3b:
b6:b2:69:f2:41:b4:ac:04:63:eb:42:a1:aa:3f:cf:
6c:ae:20:0c:18:5c:b9:29:81:50:70:02:c6:1d:8e:
34:08:47:af:90:8d:31:1f:82:c8:46:99:a8:08:0c:
3c:43:8b:54:1d:cf:ae:05:8f:d2:3e:2a:53:9f:96:
76:54:8f:0f:53:8d:7b:74:76:1a:71:de:66:a5:a9:
7b:d6:19:1f:a9:0f:c9:27:08:06:89:00:22:32:ae:
1a:9f:ca:04:e0:81:03:b6:c3:28:96:7d:37:15:8a:
1d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C2:BA:91:00:21:83:BC:B8:A0:C5:71:1B:05:A9:A8:43:56:90:03
X509v3 Authority Key Identifier:
keyid:FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:f5:55:ae:5f:99:28:52:fd:c7:8e:b7:40:e4:82:17:68:e4:
e2:9d:42:b8:52:c5:82:46:42:32:0a:3f:d1:6a:d5:52:74:a6:
dd:66:8e:b5:ca:a8:47:1b:e8:90:bb:3f:7e:da:b0:43:30:a8:
f6:30:e2:44:04:1e:d1:7d:0d:26:22:f3:2f:c7:7c:4b:46:c8:
eb:4e:a4:74:47:4d:25:20:5e:d5:d3:46:26:ab:f2:71:29:39:
f5:78:b5:39:5a:fa:bc:11:ae:b8:1f:48:b8:23:30:7f:01:f6:
20:ca:25:e9:5c:f0:80:81:7f:06:6e:0c:88:08:08:d1:5d:86:
cb:0e:42:ae:d4:80:53:b1:5b:8e:4a:c0:8d:1c:f2:bd:1d:d7:
03:fe:7a:15:1a:8a:63:7e:80:55:e1:eb:27:93:ca:d8:f8:cd:
68:43:c4:4d:8c:e0:fe:b4:56:01:d4:77:c3:36:0f:1b:78:c4:
1e:e5:8d:21:11:a9:2b:da:a4:8f:29:b7:cd:87:04:2c:30:4f:
d4:87:bb:ff:d1:ed:f2:1f:f2:2c:18:ed:8b:b5:53:1a:6a:63:
59:84:0e:58:30:4d:7d:3f:5c:02:08:87:19:53:a3:a1:00:c1:
f3:a4:33:a6:ef:17:5d:37:e8:4d:44:4f:df:3f:ec:b7:8b:a9:
33:94:44:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:09 2026 by rpki-client