Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: IHw1WDqLdkwKnUMXh+eoxGXmD8m7O93NOXJNGhkV+F0=
Subject key identifier: F4:45:21:1F:00:29:49:07:A8:8E:1F:38:34:AB:76:63:08:C7:E5:6E
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 019D37C07C7393991139743C53F5636860D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 1823
Signing time: Sun 29 Mar 2026 04:00:54 +0000
Manifest this update: Sun 29 Mar 2026 04:00:54 +0000
Manifest next update: Mon 30 Mar 2026 04:00:54 +0000
Files and hashes: 1: HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa (hash: cUV79+nq1UfEgnpECvrj1jXV8gIvKA75fQt4Y8wK7Xg=)
2: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: CNEwTUjnnUeSQ9//PttCe+zjWRjwvkQAz5PFt7OzdUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:7c:73:93:99:11:39:74:3c:53:f5:63:68:60:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Mar 29 04:00:54 2026 GMT
Not After : Mar 30 04:00:54 2026 GMT
Subject: CN=f445211f00294907a88e1f3834ab766308c7e56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:65:17:e7:dc:a1:b2:30:bf:cb:89:b7:84:9c:
38:34:63:21:43:a4:bc:90:62:b0:15:d0:7b:9a:71:
43:2d:0b:62:da:96:57:54:86:0e:8d:81:f6:6b:82:
d6:c5:a7:e6:77:05:a6:32:9e:8f:bb:0a:8b:25:ae:
35:ad:36:d1:c8:60:9e:8f:f5:6f:ff:58:04:50:a8:
c8:b3:41:a6:23:be:a8:e8:77:fc:c8:c8:33:71:da:
26:12:83:59:9f:0c:c6:4c:78:e8:e5:35:9c:24:5a:
ee:3a:56:c0:91:5d:3f:c2:72:5f:46:30:b2:fb:04:
27:aa:ba:b8:7f:e4:fc:4c:fd:42:c6:48:22:c6:f7:
be:86:bc:df:49:2c:12:bb:59:58:a6:cd:75:c2:b7:
9a:39:42:77:9b:7e:60:9e:58:09:a8:e2:b3:7d:23:
2b:7e:6c:86:54:ac:c9:21:ea:34:8d:fc:63:a7:70:
c1:8b:5d:89:5e:f7:84:ac:ad:f2:1a:86:3b:b7:bb:
cc:15:1d:fb:9d:13:35:c3:3e:4a:8a:27:d4:56:51:
02:d1:02:c7:da:81:09:3f:ef:72:3d:1b:60:fe:58:
80:70:29:a6:3f:64:63:16:c5:b5:8d:ad:68:06:35:
3a:0e:17:9f:87:c7:5e:d2:d4:cf:af:9a:09:7a:c0:
9f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:45:21:1F:00:29:49:07:A8:8E:1F:38:34:AB:76:63:08:C7:E5:6E
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a2:9a:4f:cb:93:66:d9:63:5b:d9:1c:ce:9b:8a:09:94:45:
66:33:be:db:36:81:60:f0:59:c0:a4:b7:ac:9b:de:23:67:f2:
53:85:80:38:22:e1:9b:a1:a3:d5:da:15:2f:30:35:33:f0:6b:
73:a7:c5:60:59:8f:96:f7:27:4d:8a:f8:32:dc:10:0c:e4:89:
ee:8a:72:16:0c:ea:55:d7:75:c3:6e:57:6f:1c:e7:6d:e8:f1:
42:00:b5:0c:e3:b3:cb:6c:c4:c1:fe:7a:46:68:3a:55:a9:ab:
da:b5:ea:1f:01:d7:15:4c:1f:15:3b:51:ba:83:1c:27:d3:28:
7c:ee:83:12:12:5f:34:a1:4b:21:11:36:a1:ad:08:7d:f0:6f:
39:09:a8:c6:51:4f:50:fa:21:05:18:c8:fa:d4:98:47:b5:e6:
53:70:3d:f7:2b:82:59:58:30:ce:cc:d6:2e:0c:62:db:42:50:
db:eb:f9:2d:68:35:4c:c6:6c:35:14:04:88:35:b4:40:7d:29:
06:28:c1:42:7a:93:d1:e6:77:f7:24:09:4c:5b:43:a5:00:73:
70:41:4d:e2:19:1d:2f:b2:95:10:45:1a:77:e2:23:e3:7b:e7:
fd:80:ef:a6:e2:5e:4f:06:21:44:5f:d9:32:13:89:bb:47:70:
7c:ee:5f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:46 2026 by rpki-client