Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: gzvjf1bs2Lcrda82AyYw3cCyWo6n2i5Gpmt4/32e+sw=
Subject key identifier: DB:31:CF:02:3E:37:5F:3A:7D:F8:52:A4:A6:D6:71:1C:4F:2C:79:FD
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 019CCAF61E327BC7571F63C7D61A039854CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 185D
Signing time: Sun 08 Mar 2026 01:00:52 +0000
Manifest this update: Sun 08 Mar 2026 01:00:52 +0000
Manifest next update: Mon 09 Mar 2026 01:00:52 +0000
Files and hashes: 1: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: O9tH1ym3ZWO9h4f8z+WokTVQY+H1asI33tKt7jo3vFE=)
2: LPjmn9PolMemZlvU3gzZjHmr9fw.roa (hash: hJNmZuxOH01P3sPwMJ+PO3mkfbGrlehVtU6QgCrjEhc=)
3: POj4_0IjkoRQHzWCydUSaXOI1sk.roa (hash: OXXoe1i5VmrRsJ4ZrhX2i51+dmFyvJThd+6tYO7luGY=)
4: bQ_2KAYZ-ANxN_du74fXu-azyig.roa (hash: 4w2fzmyJ/czolT16Qgh2AOzEmL6aZtIDVZ+0IIo1Sjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 20:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ca:f6:1e:32:7b:c7:57:1f:63:c7:d6:1a:03:98:54:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Mar 8 01:00:52 2026 GMT
Not After : Mar 9 01:00:52 2026 GMT
Subject: CN=db31cf023e375f3a7df852a4a6d6711c4f2c79fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c1:6b:36:ce:2a:8d:2e:a2:a4:43:e6:0a:bd:
d3:38:9d:b2:f6:89:58:7f:0e:a5:9b:0f:1a:8f:74:
83:7b:bb:e2:d5:04:cd:b3:7c:ea:96:50:31:38:9c:
ed:e2:a8:4e:2a:a5:2d:39:54:4a:0b:b6:2d:6b:08:
1c:f9:06:03:53:8b:31:6d:f7:e5:5e:54:0f:9c:4c:
40:0d:ed:f1:5c:70:d3:5d:fd:c4:d4:51:55:10:72:
d0:b9:73:6f:eb:41:c6:37:b0:fd:72:6d:a0:49:bb:
d3:2a:0d:31:1b:2f:0f:ed:c5:f7:71:fc:1b:7e:33:
c6:05:8c:7a:9f:ce:32:d0:c1:af:eb:e5:8d:0e:48:
cf:01:3f:5b:3a:05:5d:84:bd:4c:23:c7:50:aa:1a:
c2:14:83:97:ac:fa:76:44:c3:50:03:10:b5:bd:d3:
d2:96:8f:52:34:f7:9f:3b:7e:e3:83:8d:99:84:e6:
04:7a:31:d6:25:f8:c8:4b:e0:b3:82:8e:df:33:c8:
f9:b1:14:50:93:60:3f:9d:a0:bb:3a:fe:53:b1:0e:
d4:c8:37:1e:44:4b:ff:52:90:98:ad:ea:e1:ad:63:
61:97:82:51:d0:2b:f6:ac:34:66:62:10:0e:b1:98:
fb:fe:79:69:b4:be:9f:87:4f:8b:20:f8:cf:bf:a5:
44:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:31:CF:02:3E:37:5F:3A:7D:F8:52:A4:A6:D6:71:1C:4F:2C:79:FD
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:b3:30:db:55:da:86:25:25:70:e4:de:7d:c3:cb:41:9e:ef:
a8:40:d2:45:e2:a8:81:55:ca:48:18:e9:36:37:24:86:dc:7e:
2d:1b:c8:8a:e6:f2:5a:a2:b7:64:7e:5c:6b:1d:d8:ca:ce:47:
3e:c1:9b:c5:ff:f0:1d:8a:59:46:6c:d8:33:cd:f9:bc:03:24:
89:7f:d3:a4:15:2c:00:b2:30:7b:d3:3d:7a:33:40:af:0c:42:
7a:a1:e2:e8:38:e8:1d:b8:88:0f:ce:b1:fe:0b:15:c3:8a:c3:
83:be:9e:89:b9:8a:3e:06:ba:1f:80:3e:94:0d:e5:06:9b:80:
3f:9c:b6:5b:55:55:ff:c1:b6:65:96:39:05:17:ec:30:b1:46:
29:02:ba:b6:89:2a:08:22:be:06:3b:2a:49:d9:5b:4a:24:eb:
7e:f8:3c:18:f7:e0:ed:07:d3:2b:1a:98:fd:89:24:da:86:34:
5d:2c:77:c3:97:98:28:f2:60:79:b4:4c:19:65:f6:e2:02:9d:
b0:1c:5a:d8:95:b7:8c:24:4d:74:36:08:e8:b7:e0:a8:02:b9:
e3:d5:36:40:1a:0b:17:65:78:d0:bc:68:1c:e6:f0:5f:4c:0b:
03:1e:cf:3d:c0:55:1b:c0:a6:04:fc:c8:18:c0:01:fc:05:25:
a0:88:37:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 07:06:28 2026 by rpki-client