Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
File: HLjjf1E93Cn_15HDjJZjI2nKVFE.mft (raw, json)
Hash identifier: ExNRvOW9kVQ6Juyf+awA+tLe44f0Z9m7GbZvf7MwMQo=
Subject key identifier: 54:E9:A4:CF:72:8A:CA:42:3F:1C:9E:61:27:FB:30:54:28:16:4C:A1
Authority key identifier: 1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
Certificate issuer: /CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Certificate serial: 019CF53B6CC2D456CAFD9695DA6F51357D65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
Manifest number: 141B
Signing time: Mon 16 Mar 2026 06:00:38 +0000
Manifest this update: Mon 16 Mar 2026 06:00:38 +0000
Manifest next update: Tue 17 Mar 2026 06:00:38 +0000
Files and hashes: 1: 5bhy7eDbTF3iSMoLKUHBCIILj4E.roa (hash: 9YusEuoHgRDwFpuJ1B9xJzYQFifXAqM0fNdh2jgcmr0=)
2: D-r3D7TjflJW1amM5h7I8MR0oUk.asa (hash: z5fDIV8YawnmcSoSc/AVZ5e/iduZ1ZCGdbI+J/9nY3A=)
3: HLjjf1E93Cn_15HDjJZjI2nKVFE.crl (hash: 642gft2kbN912ZyHAMc2gAsjJRqIE3uAPgLEi3S5PKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f5:3b:6c:c2:d4:56:ca:fd:96:95:da:6f:51:35:7d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb8e37f513ddc29ffd791c38c96632369ca5451
Validity
Not Before: Mar 16 06:00:38 2026 GMT
Not After : Mar 17 06:00:38 2026 GMT
Subject: CN=54e9a4cf728aca423f1c9e6127fb305428164ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:18:53:26:5e:09:29:2c:76:c7:8e:a7:d2:75:
82:6c:19:4d:ae:cd:a6:95:66:13:7d:e8:64:bb:be:
92:33:fb:0b:eb:6d:40:11:be:c5:11:ba:37:72:2b:
c4:65:c6:a8:c1:f6:ee:69:92:4d:bf:18:88:65:b3:
72:1a:d0:d9:78:57:78:f7:f4:34:e2:b1:5f:3d:70:
21:51:19:4b:dc:ef:ad:29:6a:d0:8f:16:b1:25:a1:
35:6a:f7:50:36:11:a5:77:7f:5a:ed:49:69:6c:8d:
8e:e7:be:05:23:ad:42:fc:eb:7d:ce:9e:a9:12:9e:
ae:1c:60:8a:90:3e:f3:00:06:3f:dd:d4:c2:31:d9:
c1:6f:80:f0:aa:1f:5e:f5:86:e3:53:4b:1e:62:8f:
7f:42:bd:31:29:b9:37:43:07:fa:d1:3c:cb:12:56:
5f:08:7f:34:3d:19:e7:b2:ec:f9:da:71:92:eb:97:
7e:0e:07:8e:7a:11:dd:c5:ee:88:98:b5:83:a1:f9:
11:ba:31:c3:ce:7b:3d:8d:df:62:87:3e:25:6c:f7:
0c:79:34:cf:fd:b8:b6:53:d4:93:bd:2b:26:9e:34:
1a:dc:d6:02:ae:2f:fb:a8:79:4c:a2:c2:7a:dd:56:
7d:e6:c3:24:b7:b9:e2:c2:f7:44:75:59:ba:c3:56:
8f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E9:A4:CF:72:8A:CA:42:3F:1C:9E:61:27:FB:30:54:28:16:4C:A1
X509v3 Authority Key Identifier:
keyid:1C:B8:E3:7F:51:3D:DC:29:FF:D7:91:C3:8C:96:63:23:69:CA:54:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLjjf1E93Cn_15HDjJZjI2nKVFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bddfd6-76db-4331-afd3-e1cdb24c180b/1/HLjjf1E93Cn_15HDjJZjI2nKVFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:91:fb:56:12:be:7b:c0:b6:11:0a:46:02:f8:3b:20:8e:ed:
db:75:c7:6c:9e:4e:02:33:59:0f:5e:77:c3:ef:3b:a8:25:3b:
29:2b:94:d4:8c:32:86:07:f1:4c:a4:7b:c5:3a:be:0b:5a:2d:
76:08:69:cb:2d:ad:d1:1f:5d:64:d0:8b:ac:5c:c1:e4:54:50:
0d:0b:45:85:28:b3:de:6a:7b:d1:c3:74:37:2c:bf:ae:08:e2:
72:7e:28:c7:c9:18:48:34:33:09:5f:79:90:6e:37:1e:0f:9f:
f8:3e:c2:70:f8:4f:42:6f:65:a4:42:28:71:c1:36:85:a7:13:
9b:fa:f8:23:a3:20:9c:29:3b:2a:bf:9d:9b:6b:b2:6a:8c:03:
1e:80:4c:dd:0d:01:e9:34:d0:2d:94:07:92:20:9b:d0:fc:ae:
5b:9f:0c:77:f3:30:1e:c4:93:d6:d3:3e:28:b2:d4:b7:b4:f3:
7a:c7:3b:25:4a:5e:20:f9:f0:3d:11:ce:65:28:ee:f1:da:80:
b0:01:e3:31:54:ff:25:93:eb:ac:83:8f:86:6c:88:25:0c:6f:
e8:35:6e:6e:ba:14:f7:ca:08:09:60:15:8b:3b:e7:00:97:8c:
34:17:c6:1e:7e:08:15:92:65:7b:7d:24:55:da:56:93:48:aa:
ad:3e:0f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 08:19:11 2026 by rpki-client