Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
File: hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft (raw, json)
Hash identifier: 8DuN9Ym9vQUEQSM7X3nex3ozUw4bEaIpIHUsxRMBlNs=
Subject key identifier: DC:14:96:65:83:35:AB:01:18:DD:3F:EE:CB:56:D6:EF:07:01:3A:66
Authority key identifier: 85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
Certificate issuer: /CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Certificate serial: 019CC03BD6BCC408EF8E4D43F5893A1AFAF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
Manifest number: 1854
Signing time: Thu 05 Mar 2026 23:01:12 +0000
Manifest this update: Thu 05 Mar 2026 23:01:12 +0000
Manifest next update: Fri 06 Mar 2026 23:01:12 +0000
Files and hashes: 1: Bgb4R3FK8PY34Yz-lvynRT-9XWQ.roa (hash: St6uFsBRyQsJnyTTYPZwyzlv1Byj/hyZ5kqADUUKKnM=)
2: hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl (hash: 4aecud3x5B9u0i11eXWrimoS19WoDJuxsRiYQp1B0ro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c0:3b:d6:bc:c4:08:ef:8e:4d:43:f5:89:3a:1a:fa:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Validity
Not Before: Mar 5 23:01:12 2026 GMT
Not After : Mar 6 23:01:12 2026 GMT
Subject: CN=dc1496658335ab0118dd3feecb56d6ef07013a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:75:8d:83:ab:23:6f:1d:93:3c:ab:8a:42:ec:
a7:af:39:81:51:a8:f4:00:52:6c:f3:41:48:e8:ea:
50:ee:1b:86:0b:63:b9:3b:e8:3f:bc:90:eb:62:8a:
81:2e:8a:1a:93:a3:70:47:25:dc:ad:6b:40:7d:77:
69:3a:5e:fb:19:a4:63:5b:99:26:33:12:97:18:42:
78:7e:59:39:f8:b5:b8:a4:f7:81:05:a8:1d:c3:c5:
93:6b:e8:ee:af:a0:f9:60:f3:8f:4f:4c:c1:b5:fd:
9d:b8:bd:ba:1f:1e:3d:b6:c8:19:05:ff:b3:96:32:
0f:12:1a:1d:70:9b:eb:e9:61:4a:a5:34:8c:42:59:
75:a2:f4:8f:c7:79:0c:e5:bf:e3:21:2b:52:d1:7d:
c5:ab:0b:4b:bf:c1:a1:54:46:9f:43:3b:76:90:cf:
17:94:e1:52:4c:11:a2:62:74:1e:45:4d:c4:91:aa:
b0:92:06:29:48:cd:19:4f:13:b7:7e:1c:22:24:db:
21:b0:3f:55:74:0d:37:79:77:ec:da:ce:15:f9:79:
ce:ce:99:a6:33:d1:55:28:da:9a:36:32:ee:aa:c5:
a2:d9:ac:96:e1:b1:43:2a:82:53:b7:bd:6f:d1:b5:
aa:29:b1:a5:a4:ec:6d:fc:14:20:55:ec:a2:54:83:
27:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:14:96:65:83:35:AB:01:18:DD:3F:EE:CB:56:D6:EF:07:01:3A:66
X509v3 Authority Key Identifier:
keyid:85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:d6:2c:55:09:15:ea:ab:5f:ab:fb:7c:18:b0:f6:7d:7a:65:
6f:d1:4b:48:19:1d:0f:9e:00:2d:bd:d5:95:68:b8:a9:df:f5:
f2:22:10:bd:10:93:73:e2:ca:ce:95:58:6d:17:6d:35:33:45:
00:60:fc:70:22:3e:e6:a7:ef:da:87:fc:20:64:15:e2:21:95:
7a:1f:31:34:ae:fb:2b:e9:5e:df:b7:f5:19:db:76:61:c0:ee:
0a:bc:27:8f:d2:6e:4e:8f:e1:ef:03:0f:c5:81:60:de:e3:da:
41:8c:1c:ca:14:ac:4a:d3:05:91:60:66:46:b3:ce:03:90:60:
0e:46:dc:be:12:85:4c:46:95:d8:b7:01:77:f1:89:1d:9f:66:
cb:f6:19:e2:45:ad:a2:2e:6d:be:4d:30:9f:c2:ec:d0:65:90:
09:d7:3e:0e:26:fe:fd:66:1a:9d:e2:9a:f2:77:46:35:66:77:
d5:6a:a9:45:6c:01:2b:e3:eb:df:8b:8d:2c:c3:61:32:a9:bb:
5d:5b:99:21:1e:f6:c5:4c:30:97:ed:c3:fd:c4:c2:62:61:b1:
66:bc:f2:66:6d:47:8d:06:6d:fb:9e:1b:87:a3:3c:ab:e0:cf:
65:4c:95:65:7a:38:e6:98:2a:cb:59:83:eb:14:33:37:26:2c:
9b:d5:cb:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 04:00:49 2026 by rpki-client