Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: BFeZLfYU4cjb68DQAjkeyk/FpMU5Lp5YjzLWsAvj/s0=
Subject key identifier: 37:67:B5:7F:A8:00:FB:E7:C8:B5:9D:BF:19:F8:13:F8:58:3B:9C:B5
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 019D38D352D5F1E6E11BA175359F998830E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 1895
Signing time: Sun 29 Mar 2026 09:01:06 +0000
Manifest this update: Sun 29 Mar 2026 09:01:06 +0000
Manifest next update: Mon 30 Mar 2026 09:01:06 +0000
Files and hashes: 1: 1aorfBEtrS5GmOfmJCAhL86Ev9o.roa (hash: nVeN0o0LJkNxID8TEKJoSJ7nvDwzMLsmkaxY6SDeSaE=)
2: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: 1ui5qcnI9jF0/VCn4f4qGId8ps2VdhUUw+2tz5T+Kso=)
3: iuImAg4mIu7cmFaP-tCFJQiPIK4.roa (hash: wW1K/UcoLMZnuH4bQB2tjq8tIUvTcVi7eaR2lcNxUuM=)
4: yc6fB0dTyEp0nOMNxIt14wYewvg.roa (hash: q9oC20lhVIuMqPVEpkCEXpIKxa5TMW49W8VfYHcjYb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:52:d5:f1:e6:e1:1b:a1:75:35:9f:99:88:30:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Mar 29 09:01:06 2026 GMT
Not After : Mar 30 09:01:06 2026 GMT
Subject: CN=3767b57fa800fbe7c8b59dbf19f813f8583b9cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:2d:a6:50:ee:48:af:bd:7f:0d:47:d7:4a:b7:
0a:34:d8:1c:2c:01:09:e7:d2:cf:d7:5b:1c:d3:6a:
63:69:f3:6d:ab:0f:cd:8c:24:99:96:ad:52:1a:a8:
f7:d6:44:f5:4f:84:c4:b6:65:9c:0a:f8:02:fb:3d:
d9:4c:24:f3:db:4c:9b:36:c5:cd:26:98:6b:cb:49:
43:6a:76:c5:d5:f1:a0:8c:e9:b7:04:df:f0:cd:f0:
f6:c5:08:b2:9b:59:14:d4:5c:7f:43:fa:03:63:2e:
2e:2a:6b:4e:55:69:f0:4e:e2:6b:c5:73:94:46:3b:
3e:6e:2a:9b:14:e0:06:04:d2:d0:e8:d3:a8:bd:5c:
7a:b8:0a:b2:48:70:b9:4f:4d:6e:58:65:10:a5:95:
1a:78:21:48:b8:79:ca:34:25:49:fa:3a:79:c4:76:
90:af:d3:08:7a:be:0a:9f:1d:00:7d:a4:52:1f:10:
62:35:9b:85:2e:92:a0:93:5c:64:7f:2c:ae:9d:d8:
e6:80:bb:6a:44:aa:12:13:92:f8:5f:b1:18:77:1b:
88:a3:9a:9d:5a:03:e1:96:7a:b6:dc:96:22:bc:1a:
01:fa:1b:5e:74:d5:18:e4:30:6c:3a:d6:8c:f4:42:
ac:31:b6:0b:16:9b:af:8c:3d:c8:46:c6:29:79:c3:
e4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:67:B5:7F:A8:00:FB:E7:C8:B5:9D:BF:19:F8:13:F8:58:3B:9C:B5
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:5b:0c:ec:1b:92:2e:47:5b:3b:1d:ea:8b:fb:9f:27:5a:38:
e2:58:2a:1b:66:5e:b6:05:ff:51:6c:69:25:1d:a5:a4:7a:27:
25:28:aa:46:f1:78:56:90:bc:a2:8b:c0:3c:15:f4:13:03:1a:
ce:03:33:7e:64:81:42:03:78:06:35:fe:30:ae:ef:c5:f0:80:
7c:5a:ea:53:c5:d2:62:79:3e:24:8e:e9:f0:f2:ae:78:69:0e:
d6:66:70:7a:1f:bd:e3:e1:20:21:36:cb:7f:9c:cd:41:74:a3:
f4:e9:b4:87:7b:08:16:b7:5f:d2:f4:eb:9f:de:37:a4:0d:cf:
58:da:23:cd:67:2e:a7:99:28:52:6b:79:63:84:a5:ac:b8:8c:
66:74:ba:3e:93:2c:c8:81:22:9b:6a:dd:14:35:17:72:da:3b:
2a:3e:59:14:87:5a:ac:22:31:b1:48:d5:b8:a2:cf:36:6c:44:
df:16:fe:3b:62:c0:bd:9c:e3:b4:01:26:3e:ee:57:8d:74:b3:
15:31:0a:54:3c:59:ea:79:49:8e:54:0f:f3:ab:3d:c3:cc:81:
59:7b:76:e9:ed:86:d9:54:74:c1:47:94:60:90:24:22:3b:a6:
32:95:00:a2:28:b7:03:54:cd:3e:4e:a4:62:46:9b:64:80:1e:
c4:b2:73:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:47:26 2026 by rpki-client