Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json)
Hash identifier: +xoBQYXkOoTBCu3VS/MM/lpcUp8mvvXrOHO2JEedUJw=
Subject key identifier: FC:90:E1:0F:AF:BB:0A:A0:A9:BD:77:45:77:DE:FD:E1:51:90:93:A8
Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Certificate serial: 019D394153E541EAC8CB41B5048A5B3B8388
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:01:15 +0000
Manifest this update: Sun 29 Mar 2026 11:01:15 +0000
Manifest next update: Mon 30 Mar 2026 11:01:15 +0000
Files and hashes: 1: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: acwzlQVtNRb4ysaqh6UEKNgFACj4ZHI49UuDDDRi0+I=)
2: kLUM1YAOMcHfG5kPB5ctMeQ6zO4.roa (hash: wZEOFTFIMct/33jsnIoNoec+GVySts9zmn8n8Vg4eB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:53:e5:41:ea:c8:cb:41:b5:04:8a:5b:3b:83:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Validity
Not Before: Mar 29 11:01:15 2026 GMT
Not After : Mar 30 11:01:15 2026 GMT
Subject: CN=fc90e10fafbb0aa0a9bd774577defde1519093a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:af:37:ff:b8:21:eb:11:88:e1:d9:ec:c1:b6:
35:b7:b8:e0:11:6f:a8:9b:5e:85:11:b1:98:5b:33:
d4:24:5c:bb:c7:4c:7b:98:ca:47:4b:17:97:ca:91:
fe:7e:be:26:05:81:bc:2f:41:ac:d1:25:a3:8e:08:
12:4b:b1:67:6d:ec:a8:eb:7d:d9:78:74:60:54:60:
76:1c:72:ab:0e:64:be:5c:23:b2:a6:3a:77:62:61:
36:d1:c6:62:d3:47:b5:97:dc:aa:8d:8f:38:c0:48:
4f:f7:51:f0:33:f6:79:30:93:af:b9:c2:e9:b7:60:
cb:00:56:0e:d8:00:ae:d9:5b:c1:ff:88:fb:93:ac:
5e:28:c3:32:5d:80:c2:d4:1f:48:73:7f:a6:5a:57:
b3:b7:43:45:fb:ba:ed:39:b4:aa:4a:59:cf:60:78:
ff:a6:ae:ee:3e:c8:e2:fe:58:f8:01:92:9d:39:17:
52:a0:77:ec:73:f6:e8:33:e4:32:6e:36:e8:80:29:
3b:79:96:72:91:63:98:d2:0c:ae:1f:fd:3f:84:55:
ef:63:b4:3a:f9:33:56:c5:32:17:01:31:95:e3:79:
49:c5:f7:16:39:91:a9:17:f9:2c:23:8b:b2:88:e5:
c4:18:75:e7:8e:1b:fb:df:0b:90:ba:c1:9c:d9:42:
af:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:90:E1:0F:AF:BB:0A:A0:A9:BD:77:45:77:DE:FD:E1:51:90:93:A8
X509v3 Authority Key Identifier:
keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:79:7a:fc:78:c9:dc:4c:3f:d3:77:de:80:2f:79:a3:f5:f1:
a2:72:55:ca:12:50:61:47:84:6f:c0:04:34:05:c4:97:87:71:
30:d9:a4:dc:c9:54:3e:b2:15:91:23:75:2e:99:d1:29:4e:92:
4b:d0:8d:50:1a:ac:d6:f6:db:22:fa:59:3f:f0:b1:55:79:fa:
84:ef:5a:ef:c8:72:4c:a4:ad:0c:6c:b6:8e:03:8f:28:be:be:
bd:f0:0f:25:af:b8:e6:ac:a6:9b:6d:0b:3d:e6:09:5e:e0:3d:
14:21:07:51:95:d8:87:9d:a2:31:f9:ae:75:3a:42:3e:70:3c:
21:c5:38:41:f6:2a:4c:58:53:c1:74:05:13:5c:f4:a4:47:8f:
49:7b:e3:88:cd:d6:a4:80:4e:56:17:fa:67:d6:05:9a:da:92:
17:b3:d5:df:bd:d4:70:bc:27:84:24:fa:83:30:e8:5e:84:5c:
de:63:37:f4:78:72:0b:e5:9f:94:6e:7c:4d:cc:a5:e7:4c:1f:
8b:66:d3:10:2c:6e:f9:42:6d:c2:7a:5a:b3:72:81:a1:42:74:
c6:23:38:1f:27:82:fd:ed:62:1b:fe:be:1c:21:e7:43:03:76:
d1:00:77:55:da:8d:d6:ae:f8:be:b3:47:a5:4d:ea:0d:21:33:
8c:dd:d6:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QVPlQerIy0G1BIpbO4OIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2MjFiMGI3ZGZhMGE3ODg4Zjc1ZWZmMjBmMzIxNDVhMGIz
ZjBkZDUwHhcNMjYwMzI5MTEwMTE1WhcNMjYwMzMwMTEwMTE1WjAzMTEwLwYDVQQD
EyhmYzkwZTEwZmFmYmIwYWEwYTliZDc3NDU3N2RlZmRlMTUxOTA5M2E4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs683/7gh6xGI4dnswbY1t7jgEW+o
m16FEbGYWzPUJFy7x0x7mMpHSxeXypH+fr4mBYG8L0Gs0SWjjggSS7Fnbeyo633Z
eHRgVGB2HHKrDmS+XCOypjp3YmE20cZi00e1l9yqjY84wEhP91HwM/Z5MJOvucLp
t2DLAFYO2ACu2VvB/4j7k6xeKMMyXYDC1B9Ic3+mWlezt0NF+7rtObSqSlnPYHj/
pq7uPsji/lj4AZKdORdSoHfsc/boM+QybjbogCk7eZZykWOY0gyuH/0/hFXvY7Q6
+TNWxTIXATGV43lJxfcWOZGpF/ksI4uyiOXEGHXnjhv73wuQusGc2UKvtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPyQ4Q+vuwqgqb13RXfe/eFRkJOoMB8GA1UdIwQY
MBaAFIYhsLffoKeIj3Xv8g8yFFoLPw3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMt
NmIzZTBhYTJjYmIyLzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMtNmIzZTBhYTJjYmIy
LzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvHl6/HjJ
3Ew/03fegC95o/XxonJVyhJQYUeEb8AENAXEl4dxMNmk3MlUPrIVkSN1LpnRKU6S
S9CNUBqs1vbbIvpZP/CxVXn6hO9a78hyTKStDGy2jgOPKL6+vfAPJa+45qymm20L
PeYJXuA9FCEHUZXYh52iMfmudTpCPnA8IcU4QfYqTFhTwXQFE1z0pEePSXvjiM3W
pIBOVhf6Z9YFmtqSF7PV373UcLwnhCT6gzDoXoRc3mM39HhyC+WflG58Tcyl50wf
i2bTECxu+UJtwnpas3KBoUJ0xiM4HyeC/e1iG/6+HCHnQwN20QB3VdqN1q74vrNH
pU3qDSEzjN3WVg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:59:55 2026 by rpki-client