Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: JyX8D+s2A+VNLLLLavmucM5t5dYDAVbWReZU9HEZvNA=
Subject key identifier: 8B:4A:2D:93:34:15:5F:9E:1E:43:10:C3:47:D3:61:A9:A1:BE:7A:5E
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 019D37F731393933F035BD0E252567D9753F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 16B1
Signing time: Sun 29 Mar 2026 05:00:39 +0000
Manifest this update: Sun 29 Mar 2026 05:00:39 +0000
Manifest next update: Mon 30 Mar 2026 05:00:39 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: biyFI8iVrkV/2U+E9aXYtqhFV6SrlAAZ2WO8EDv2m4g=)
2: vBEDZky1DrDyLEUWSCcKSfFchsA.roa (hash: K1r/2AFcY8elhH0ckxTVORnjb/4FnfMG0iSbfTKXjq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:31:39:39:33:f0:35:bd:0e:25:25:67:d9:75:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Mar 29 05:00:39 2026 GMT
Not After : Mar 30 05:00:39 2026 GMT
Subject: CN=8b4a2d9334155f9e1e4310c347d361a9a1be7a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:46:72:c5:a8:de:37:4e:c9:b8:5f:c5:ec:e0:
8f:14:3b:c7:ed:01:49:f5:d4:ab:ad:65:91:74:3f:
d5:bb:3e:d9:32:99:6c:9a:f1:09:d5:92:58:b2:8f:
24:6f:04:76:85:a4:34:72:89:27:85:af:55:7f:0f:
cb:d5:1a:00:d8:d3:de:f3:16:f8:33:97:30:93:8c:
e1:2a:3a:8b:34:13:bf:36:f1:f5:0d:ac:29:3a:76:
f0:61:87:15:f3:54:15:17:0f:e2:1e:30:73:90:c0:
f0:64:d2:fc:f9:90:76:7f:d1:90:db:f5:f3:ed:7b:
69:34:63:eb:86:62:79:e7:76:f4:c5:78:48:68:ea:
e7:e8:13:37:41:89:bd:df:34:dc:14:ae:a9:0a:fb:
4c:d6:13:7b:32:c5:cc:6d:24:e3:4d:4c:e2:b9:21:
d3:9c:21:3c:ea:05:35:e4:29:34:11:a7:4b:a7:a7:
94:cf:6f:01:42:26:59:17:58:d2:27:af:28:3c:d8:
7b:56:da:ad:9b:59:4c:9f:71:71:6c:f8:79:cc:81:
8b:9f:0f:cc:d0:c6:ac:9b:9a:68:01:32:75:41:69:
c6:4b:de:01:e9:04:58:85:c8:16:1c:3a:52:1b:5b:
f4:17:e2:15:23:8f:a4:d4:6b:92:d9:74:24:25:19:
78:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4A:2D:93:34:15:5F:9E:1E:43:10:C3:47:D3:61:A9:A1:BE:7A:5E
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:46:2b:cb:28:57:9b:48:5d:63:26:e8:f2:48:fe:20:71:6e:
55:0d:f9:12:14:75:22:64:54:5c:2f:98:c1:77:6d:af:1c:8b:
7e:a1:d5:5f:fb:3b:a8:02:00:58:ed:bc:1d:fc:a2:34:bd:2e:
df:ad:84:32:f4:7e:d1:cc:16:24:6a:fd:bc:05:98:dd:2f:5f:
db:f5:92:af:fd:22:8b:82:5c:3a:20:1a:bd:83:b7:db:73:f3:
d9:53:89:e7:ed:c7:a6:9c:39:37:d7:92:12:49:f3:31:2d:ed:
d6:e7:65:62:26:ed:57:f6:57:e3:a6:e9:8c:f4:01:55:22:f3:
24:11:75:96:10:26:51:2b:d5:a5:20:7c:00:f6:1b:21:25:08:
31:e2:4f:6c:a9:c7:6e:eb:5d:b7:a4:ee:cc:fa:3d:d6:e5:f0:
aa:18:a8:2a:01:8e:3b:d4:9e:48:58:6c:2f:d9:e6:6d:03:e4:
7a:8d:9d:91:5b:65:59:80:e0:87:87:85:60:5f:bc:3d:d3:f9:
f9:25:c4:3f:be:c4:79:db:94:7e:08:c1:f6:27:c7:44:e7:4a:
07:33:95:bd:88:19:b6:72:c6:c8:b4:b6:23:a9:85:59:05:bb:
05:1c:7f:a7:23:da:f8:e6:f6:66:fb:ac:3c:65:ac:23:ac:d1:
fa:3f:cf:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039zE5OTPwNb0OJSVn2XU/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMDFlZDIzNjRlYzgyMjY1YzY4ODY5ZmU3MmJlNzU3MzE5
YTMxZWIwHhcNMjYwMzI5MDUwMDM5WhcNMjYwMzMwMDUwMDM5WjAzMTEwLwYDVQQD
Eyg4YjRhMmQ5MzM0MTU1ZjllMWU0MzEwYzM0N2QzNjFhOWExYmU3YTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEZyxajeN07JuF/F7OCPFDvH7QFJ
9dSrrWWRdD/Vuz7ZMplsmvEJ1ZJYso8kbwR2haQ0coknha9Vfw/L1RoA2NPe8xb4
M5cwk4zhKjqLNBO/NvH1DawpOnbwYYcV81QVFw/iHjBzkMDwZNL8+ZB2f9GQ2/Xz
7XtpNGPrhmJ553b0xXhIaOrn6BM3QYm93zTcFK6pCvtM1hN7MsXMbSTjTUziuSHT
nCE86gU15Ck0EadLp6eUz28BQiZZF1jSJ68oPNh7Vtqtm1lMn3FxbPh5zIGLnw/M
0Masm5poATJ1QWnGS94B6QRYhcgWHDpSG1v0F+IVI4+k1GuS2XQkJRl4eQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFItKLZM0FV+eHkMQw0fTYamhvnpeMB8GA1UdIwQY
MBaAFB0B7SNk7IImXGiGn+cr51cxmjHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS85OWQ2ODMtNDNkYy00ODRhLTkwNDct
YjQzY2FlNmUyMzE5LzEvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS85OWQ2ODMtNDNkYy00ODRhLTkwNDctYjQzY2FlNmUyMzE5
LzEvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk0YryyhX
m0hdYybo8kj+IHFuVQ35EhR1ImRUXC+YwXdtrxyLfqHVX/s7qAIAWO28HfyiNL0u
362EMvR+0cwWJGr9vAWY3S9f2/WSr/0ii4JcOiAavYO323Pz2VOJ5+3Hppw5N9eS
EknzMS3t1udlYibtV/ZX46bpjPQBVSLzJBF1lhAmUSvVpSB8APYbISUIMeJPbKnH
butdt6TuzPo91uXwqhioKgGOO9SeSFhsL9nmbQPkeo2dkVtlWYDgh4eFYF+8PdP5
+SXEP77EeduUfgjB9ifHROdKBzOVvYgZtnLGyLS2I6mFWQW7BRx/pyPa+Ob2Zvus
PGWsI6zR+j/P3Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:45 2026 by rpki-client