Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: 5eTmfCTbj6ynVKOc8+7bzQFy6mOl1Mfc2K7EAGh2Xss=
Subject key identifier: 42:C7:AD:C4:C4:A4:0A:18:D1:ED:DA:D6:3E:23:96:A8:61:C5:35:1D
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 019D3A8A9181FD49A37886C47446CB645F2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 17:00:52 +0000
Manifest this update: Sun 29 Mar 2026 17:00:52 +0000
Manifest next update: Mon 30 Mar 2026 17:00:52 +0000
Files and hashes: 1: RRtvAei28-EijoPUYUDN7514nwo.roa (hash: D/rcxbsVh++CM30mNeuIG2vWOtaiLF/fHXsAMj0/18k=)
2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: quBeTaEY7Wxq11vEnHVqfDXnxrO3IRkoSnTsP/QNBis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:8a:91:81:fd:49:a3:78:86:c4:74:46:cb:64:5f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Mar 29 17:00:52 2026 GMT
Not After : Mar 30 17:00:52 2026 GMT
Subject: CN=42c7adc4c4a40a18d1eddad63e2396a861c5351d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ef:3a:b1:68:87:cc:12:e1:87:ca:4d:73:57:
56:31:47:0b:af:09:3f:26:c8:16:87:b4:a7:71:b1:
07:c5:59:a3:9d:e1:3c:ac:2c:09:e6:72:fb:7c:16:
ed:ca:6b:6d:16:18:23:a8:fa:11:84:3b:43:8f:99:
ce:73:9a:02:6c:36:b4:fc:a6:20:6f:dd:e8:e6:73:
a4:d4:fd:89:09:8e:90:22:da:a5:10:13:9f:bf:08:
37:a8:ac:49:35:3f:8d:e1:60:64:eb:3f:ba:a9:fa:
1e:7d:c4:45:ca:15:3e:cd:cb:c1:72:9b:be:f1:4d:
e8:9e:03:63:2c:c2:de:f9:db:49:65:fb:25:84:89:
ea:22:7f:41:b2:43:15:37:df:d6:44:72:9d:93:5a:
d6:55:7d:aa:56:59:6b:44:67:45:9b:f3:9c:e3:40:
f3:db:36:0c:17:19:e4:3e:0d:8d:83:aa:91:8a:45:
3e:f9:2b:fe:45:f6:96:93:4f:a3:e8:c9:8f:04:38:
98:59:8d:68:ba:fe:78:1e:5b:25:c0:d7:c0:f1:ab:
6e:21:14:cc:12:30:8a:c7:a5:cf:a0:75:ee:af:9a:
17:51:36:d7:fe:b1:aa:e7:46:44:0a:62:48:c5:7c:
29:92:b0:73:ca:01:8d:86:2d:ba:ce:8c:e9:26:b2:
4f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C7:AD:C4:C4:A4:0A:18:D1:ED:DA:D6:3E:23:96:A8:61:C5:35:1D
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:f6:d7:e6:13:b0:7a:3e:03:ad:45:fc:ba:e4:15:6d:30:12:
77:a4:67:39:53:2b:68:a0:60:b5:c3:db:31:7a:51:2e:99:c2:
c1:b9:be:72:2d:b3:4f:6e:39:31:82:83:0c:92:df:4a:c7:67:
ec:d7:6c:43:66:8f:cd:58:19:32:77:5f:6c:51:b2:50:98:e4:
51:80:53:a0:d8:1d:da:84:c1:26:63:49:01:73:9f:12:03:63:
85:23:64:48:54:36:96:29:00:19:32:1d:7f:c6:7a:5b:a5:91:
52:a4:69:e3:fa:5d:00:a3:62:5e:49:85:6e:3c:79:92:37:33:
27:fa:7b:6f:6c:ae:98:c6:61:91:b0:40:cd:65:40:49:f4:51:
c8:e1:ee:8c:32:28:bd:58:fb:2a:3b:d8:4a:87:e7:5f:89:83:
b3:84:b1:c4:53:3c:54:72:37:5b:3f:87:15:78:8f:83:59:2b:
ae:ea:2f:04:10:7e:b2:14:74:e6:14:76:6c:54:b9:fc:a7:ab:
14:c8:70:80:b2:67:4f:09:7f:f8:74:cd:11:b7:bb:3a:bb:3f:
0a:cb:ba:e5:98:97:78:24:e4:31:30:86:2c:2d:fa:49:61:91:
00:5e:04:2b:b9:bb:c4:2b:22:80:52:f7:8d:07:ea:5a:ad:ab:
e4:f9:cc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:51:50 2026 by rpki-client