Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json)
Hash identifier: 3diWmPvsg3ZhHIK9mn21ad3E14jA/s6tveh7jco7gjI=
Subject key identifier: E8:82:D2:AF:B4:77:71:37:C5:C8:DC:18:88:C2:4B:5C:AE:84:86:15
Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Certificate serial: 019D3A1C2A9799412373A67BCEDEFE91BE0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 15:00:17 +0000
Manifest this update: Sun 29 Mar 2026 15:00:17 +0000
Manifest next update: Mon 30 Mar 2026 15:00:17 +0000
Files and hashes: 1: EFGLC8SL84p1q1K-j3Uf3V3IW44.roa (hash: 4PnC9POkZ3ZS5ZMz+CxTTugtS6AWFe8U3aLCVUVr204=)
2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: DFLgrHJofF8c2Va3+9VSdKPGjt+BjpNOyleLt4qpKUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:2a:97:99:41:23:73:a6:7b:ce:de:fe:91:be:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Validity
Not Before: Mar 29 15:00:17 2026 GMT
Not After : Mar 30 15:00:17 2026 GMT
Subject: CN=e882d2afb4777137c5c8dc1888c24b5cae848615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a1:65:ce:77:8d:7a:0b:f7:66:8a:e8:74:2c:
b0:71:ac:c9:9b:01:0a:44:fe:0e:5c:df:0c:ef:7b:
4f:b9:3f:ef:3b:6f:e1:60:9e:d3:1c:a9:13:4c:ad:
07:32:97:03:25:b2:75:55:a3:c5:36:ea:ad:f9:d1:
7a:08:7e:5f:fa:e6:cd:31:fc:49:f6:67:05:8e:8e:
aa:32:ba:be:1b:f9:b7:0e:d8:2f:28:2c:64:44:c1:
6b:f4:32:ce:02:9e:97:df:93:6e:e1:d1:8e:8d:f2:
fd:3e:4c:d2:af:55:05:bb:7c:11:e5:19:c7:59:fb:
1c:79:e1:39:bd:cf:6b:5e:16:92:21:4b:61:5f:90:
e6:6e:15:52:a9:2f:24:cd:a1:c5:43:da:2f:77:18:
55:e5:b6:3c:83:f7:4f:4c:c5:d1:8d:7b:f3:ff:0e:
71:2f:c3:da:43:28:7e:d4:0b:9c:03:5b:02:85:4b:
b1:35:21:ac:15:d2:12:c5:75:1a:34:b7:a1:04:f7:
b0:37:60:f0:12:0d:4b:b1:15:10:63:a5:5d:7e:f3:
82:e5:82:fd:eb:07:b0:17:e2:ec:ff:07:c4:40:47:
20:0f:c3:0a:ff:37:4d:4d:61:02:41:5c:8d:6b:dd:
0c:d3:ed:2c:f5:0a:2e:29:7c:ed:d7:de:59:5a:c6:
11:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:82:D2:AF:B4:77:71:37:C5:C8:DC:18:88:C2:4B:5C:AE:84:86:15
X509v3 Authority Key Identifier:
keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:e8:be:25:90:ac:ce:dc:f7:12:62:64:05:d5:86:ec:ab:c9:
2c:d4:59:af:3a:6f:62:01:69:4a:27:66:1c:ec:81:91:ec:4a:
57:e2:18:2a:f6:1e:39:93:fa:61:c6:d4:5b:47:dd:5a:48:86:
b3:ff:18:92:0f:2f:66:a5:62:87:ef:5f:ea:22:63:4f:93:f2:
be:60:17:2c:d1:87:39:72:43:da:21:a6:74:ee:95:3d:84:57:
99:8a:ed:ef:b1:ce:c4:5c:0f:8f:8b:45:5b:60:6b:cc:9e:28:
66:02:12:c3:5e:8c:1b:bc:f7:58:25:48:7c:cb:85:c5:54:a9:
88:3e:b5:84:cb:f1:14:30:03:63:60:d9:ec:b8:bb:b1:45:8f:
19:49:d5:97:04:95:a9:2b:8f:e9:55:36:d9:9c:28:5d:2d:dc:
44:5a:02:d7:87:79:5e:c4:6c:be:a0:30:99:bf:17:76:4c:25:
c7:6d:1b:e8:06:f6:2c:1a:ed:10:0f:df:ee:24:53:7b:77:7c:
24:1e:c7:aa:f7:e9:06:d8:e6:0f:f5:0c:e4:35:99:df:e9:0d:
61:2c:8e:77:21:d7:75:28:7b:ed:11:47:7f:f7:ce:39:86:2e:
05:a9:14:ec:7f:e3:9f:a2:3f:c2:cf:b8:0f:21:20:b9:6b:5e:
bb:43:8d:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HCqXmUEjc6Z7zt7+kb4NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwNzRkNjUxZGZlYzRiMGQzNzFlMDI1MDViMWY4NjkzZWQx
ZDhlMDIwHhcNMjYwMzI5MTUwMDE3WhcNMjYwMzMwMTUwMDE3WjAzMTEwLwYDVQQD
EyhlODgyZDJhZmI0Nzc3MTM3YzVjOGRjMTg4OGMyNGI1Y2FlODQ4NjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqFlzneNegv3ZorodCywcazJmwEK
RP4OXN8M73tPuT/vO2/hYJ7THKkTTK0HMpcDJbJ1VaPFNuqt+dF6CH5f+ubNMfxJ
9mcFjo6qMrq+G/m3DtgvKCxkRMFr9DLOAp6X35Nu4dGOjfL9PkzSr1UFu3wR5RnH
WfsceeE5vc9rXhaSIUthX5DmbhVSqS8kzaHFQ9ovdxhV5bY8g/dPTMXRjXvz/w5x
L8PaQyh+1AucA1sChUuxNSGsFdISxXUaNLehBPewN2DwEg1LsRUQY6VdfvOC5YL9
6wewF+Ls/wfEQEcgD8MK/zdNTWECQVyNa90M0+0s9QouKXzt195ZWsYRYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOiC0q+0d3E3xcjcGIjCS1yuhIYVMB8GA1UdIwQY
MBaAFDB01lHf7EsNNx4CUFsfhpPtHY4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAt
OTJiYTJkNTA3N2MzLzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAtOTJiYTJkNTA3N2Mz
LzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm+i+JZCs
ztz3EmJkBdWG7KvJLNRZrzpvYgFpSidmHOyBkexKV+IYKvYeOZP6YcbUW0fdWkiG
s/8Ykg8vZqVih+9f6iJjT5PyvmAXLNGHOXJD2iGmdO6VPYRXmYrt77HOxFwPj4tF
W2BrzJ4oZgISw16MG7z3WCVIfMuFxVSpiD61hMvxFDADY2DZ7Li7sUWPGUnVlwSV
qSuP6VU22ZwoXS3cRFoC14d5XsRsvqAwmb8Xdkwlx20b6Ab2LBrtEA/f7iRTe3d8
JB7HqvfpBtjmD/UM5DWZ3+kNYSyOdyHXdSh77RFHf/fOOYYuBakU7H/jn6I/ws+4
DyEguWteu0ONOA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:41 2026 by rpki-client