Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
File: hLWkCydKlj5e0-8C6DmcubG7DHs.mft (raw, json)
Hash identifier: CQXuLndyI+40XTAeVP/WuRXBBHvvZeqpG9GIzBAqFwA=
Subject key identifier: 7F:84:90:94:71:0C:A9:92:17:5C:B4:3A:20:EC:6A:29:78:5D:63:60
Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Certificate serial: 019D37C0669F16C45E8F5E2AE3532BC5885B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:00:49 +0000
Manifest this update: Sun 29 Mar 2026 04:00:49 +0000
Manifest next update: Mon 30 Mar 2026 04:00:49 +0000
Files and hashes: 1: hLWkCydKlj5e0-8C6DmcubG7DHs.crl (hash: fqSN3SegKOp9Md+CznK8/lgmR4eMGmNI1BmUqrQslMo=)
2: heDWIjAtV4Dfu6bhg1J9nZcl5qo.roa (hash: zW/+lZ7RfSWqiEzqmlzW/11hnbmw6v/qc+vi/mY5ysc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:66:9f:16:c4:5e:8f:5e:2a:e3:53:2b:c5:88:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Validity
Not Before: Mar 29 04:00:49 2026 GMT
Not After : Mar 30 04:00:49 2026 GMT
Subject: CN=7f849094710ca992175cb43a20ec6a29785d6360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c0:69:bd:28:1b:dc:4a:4b:19:74:d4:5d:3c:
07:51:26:cc:f6:06:92:cd:ee:b4:e7:78:09:b8:91:
a7:ba:27:49:7d:2a:63:8a:8d:28:59:18:dd:12:f9:
f7:26:6c:41:5c:b2:be:79:74:c5:29:66:86:f4:fd:
1b:2c:02:75:99:26:26:90:bc:b4:1d:a3:46:7a:42:
d9:49:07:91:44:c1:46:45:34:a7:bf:a9:12:f1:91:
3e:f7:84:28:5f:e7:fd:8a:78:90:be:5b:54:ef:b6:
93:1a:53:69:31:c9:6d:bf:7e:b5:18:87:28:d6:5f:
5b:de:de:9d:50:ce:a3:db:06:fb:57:93:71:2a:e3:
23:1a:db:ff:34:66:ae:ef:2e:f8:97:b7:3d:e9:58:
49:03:80:bd:03:31:43:ea:96:da:85:04:0a:0a:26:
d3:80:2b:8d:ea:ce:12:fb:14:a5:74:e4:7f:8d:d8:
04:68:3a:24:38:35:81:9f:eb:d7:3d:08:35:f0:ad:
4d:a7:9f:ee:d1:ff:98:30:e1:25:75:88:79:9a:39:
53:a4:12:37:47:c3:19:82:31:8c:67:c1:7c:82:48:
2e:fd:ad:4d:89:bf:7d:7c:ee:25:26:e8:12:e4:6b:
34:bb:94:cb:37:2b:f6:47:5e:b1:b0:b9:8d:96:17:
24:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:84:90:94:71:0C:A9:92:17:5C:B4:3A:20:EC:6A:29:78:5D:63:60
X509v3 Authority Key Identifier:
keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:14:81:1e:b2:51:39:26:1a:71:af:d6:d6:dd:f9:42:05:c1:
8f:8f:b9:7b:3e:33:5e:f3:09:14:0d:ca:b2:f4:75:43:1d:24:
92:8e:4e:7f:1b:4f:fb:59:b3:06:20:48:74:45:d5:eb:35:78:
fb:4f:74:ff:e6:a1:ac:e2:2c:db:04:01:d7:90:11:cb:37:f6:
0a:06:c2:13:99:38:e9:b0:a3:26:5e:d2:1d:46:08:ab:5a:67:
99:28:e4:37:8a:a3:2b:28:4b:99:ae:ed:e1:4e:f6:85:d6:3a:
9f:99:d8:52:49:b4:9f:7e:84:b0:01:01:e2:ce:21:af:80:fa:
f1:64:93:9d:13:03:9a:d0:74:82:d7:22:6c:f6:7b:a6:29:44:
96:24:4c:7e:67:8b:45:6a:95:e4:bd:f7:c2:7e:80:9e:70:23:
4a:a9:e7:cf:66:4e:e9:24:40:1e:99:8f:53:96:83:1c:03:8f:
ec:cc:66:6d:fd:4e:38:3f:ba:00:8f:d1:b7:92:b8:62:38:c5:
57:7f:bc:bd:d0:8c:fe:9a:80:6a:e5:2f:18:e3:0f:88:bc:69:
0e:3f:a2:8c:06:40:b7:9c:47:66:9f:ac:dd:61:50:34:24:40:
54:b0:03:a1:d6:fd:57:f2:91:9c:e0:4a:15:0c:51:ad:4c:8c:
10:f6:d0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:56 2026 by rpki-client