Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
File: mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft (raw, json)
Hash identifier: jK0zaLgkRZqEjpBCC+bBYBMyrpzm5TWehh6ZV3rrie0=
Subject key identifier: C6:F3:B5:0E:EB:EC:AA:B2:03:7D:03:E5:58:C5:E5:DC:F8:94:EB:07
Authority key identifier: 98:75:2D:18:66:7D:BF:F8:42:2F:97:E1:E3:89:0E:99:38:1D:09:D4
Certificate issuer: /CN=98752d18667dbff8422f97e1e3890e99381d09d4
Certificate serial: 019D3789182E935699ACBEE7ABC8FD7C058C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
Manifest number: 0925
Signing time: Sun 29 Mar 2026 03:00:24 +0000
Manifest this update: Sun 29 Mar 2026 03:00:24 +0000
Manifest next update: Mon 30 Mar 2026 03:00:24 +0000
Files and hashes: 1: b5dBtRyuxV_76XQT5zCb2IptxQg.roa (hash: ZIiiQL589xbOcUnaVnMrAVTBKomhOu2PlrOUGtP7qkY=)
2: mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl (hash: 0CUm+XkySs/OWJFoYv3Adu+TZNg0k9y9vcDcGVa/owU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:18:2e:93:56:99:ac:be:e7:ab:c8:fd:7c:05:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98752d18667dbff8422f97e1e3890e99381d09d4
Validity
Not Before: Mar 29 03:00:24 2026 GMT
Not After : Mar 30 03:00:24 2026 GMT
Subject: CN=c6f3b50eebecaab2037d03e558c5e5dcf894eb07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f9:9f:f2:78:6f:74:15:d0:53:bd:e9:dd:88:
82:7d:77:18:89:e9:33:c9:4b:d1:d6:28:37:00:83:
6c:f1:63:5d:85:25:d6:6c:46:8d:be:86:98:89:04:
f8:dd:0d:ce:c9:f9:03:5a:76:41:f4:47:c7:5f:36:
ef:57:51:ae:84:8e:63:8a:53:4d:98:0e:2f:e9:2c:
ca:73:25:1c:f2:c8:7a:ca:2a:ab:06:bb:89:16:3a:
15:96:e7:92:83:49:a3:e7:96:1d:75:2c:15:47:af:
9d:0a:6a:ef:71:ea:0e:4a:19:c8:86:01:79:38:1f:
33:90:db:a3:87:e0:16:17:cb:7a:3b:9a:81:5c:a4:
71:14:e0:0b:39:f5:8d:9f:be:e1:6a:3f:20:83:2b:
58:b8:64:9b:1c:dc:34:d1:51:91:eb:d7:f4:30:a9:
f3:bf:e8:8c:ca:37:e1:33:5d:e0:20:91:6c:75:82:
59:f6:95:8f:a1:7b:6d:89:65:23:e5:8b:a6:dd:c8:
6c:93:b3:34:df:6e:1c:1e:74:0e:1a:36:3a:79:e7:
ea:78:1d:b7:f6:ed:67:9b:f3:cb:97:ae:c5:2e:01:
fa:dc:88:01:43:51:b2:f1:f9:7d:cd:65:95:c9:8b:
e3:56:d6:fb:9c:97:76:35:5c:d0:23:8e:e3:29:b9:
af:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F3:B5:0E:EB:EC:AA:B2:03:7D:03:E5:58:C5:E5:DC:F8:94:EB:07
X509v3 Authority Key Identifier:
keyid:98:75:2D:18:66:7D:BF:F8:42:2F:97:E1:E3:89:0E:99:38:1D:09:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:a1:f8:1a:c8:df:72:24:20:0e:e9:50:b9:52:91:fc:04:48:
ab:51:4f:1e:83:51:90:ff:ef:8a:e0:fc:2e:3f:25:9c:7b:b5:
07:87:f2:2c:8c:8c:3c:e3:42:3f:d7:46:54:27:2f:b9:98:5e:
22:04:e8:79:1e:af:e7:61:df:e6:31:6b:b2:54:39:74:f4:17:
ea:b1:f1:f7:3b:4a:7c:6a:42:51:5d:5f:8c:3b:d5:98:cd:1f:
d9:09:3e:70:e4:b7:72:d0:43:b7:36:32:27:e6:35:01:c9:26:
9c:e1:3c:cf:2a:89:22:bb:a8:1c:89:d9:55:df:cb:d5:0f:92:
26:3f:df:59:72:3b:66:9d:c1:6f:c0:01:5b:50:a8:10:eb:9a:
48:a6:58:b8:3a:a7:cf:b9:2c:38:a3:2c:37:e7:fa:d9:41:5a:
8a:82:e0:29:ce:a6:c9:e9:66:a7:d3:be:7c:96:d4:23:be:7b:
0d:8f:51:4d:1e:4d:a4:b3:50:7c:3c:2b:70:19:59:89:30:d0:
a6:2b:60:df:5c:41:c5:a8:be:77:63:2e:cc:85:d9:e1:0b:c8:
bf:b8:0f:d6:29:de:07:82:2c:d4:8d:31:77:b7:41:a0:d4:02:
5d:25:3a:bd:50:cf:9d:1a:23:28:94:69:e3:4f:06:a0:bd:36:
89:20:a5:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:04 2026 by rpki-client