Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
File: H7XBu67UTItq4_K1ZtAcwljfws4.mft (raw, json)
Hash identifier: 7ROD6uXdkBpguDlMUvP1jMpu/HXqgwew9coTxmXds9I=
Subject key identifier: FC:94:EB:2F:B5:E2:12:8C:5B:64:A3:40:B4:0A:A3:98:5E:E2:90:A7
Authority key identifier: 1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
Certificate issuer: /CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Certificate serial: 019D378959340B42066D10D0FEBBA27CC206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
Manifest number: 1416
Signing time: Sun 29 Mar 2026 03:00:41 +0000
Manifest this update: Sun 29 Mar 2026 03:00:41 +0000
Manifest next update: Mon 30 Mar 2026 03:00:41 +0000
Files and hashes: 1: H7XBu67UTItq4_K1ZtAcwljfws4.crl (hash: G9rXrKWQd5UA4d2rcwIrFAOX2TE4HjfoZ2+AoPDu4/Q=)
2: SljFkDXNsq7mf2JKVKtWNfaMHYI.roa (hash: UQDsXFS6OQOvy/ZzRN024zvrl2KSRwaHGDpLX5AP3Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:59:34:0b:42:06:6d:10:d0:fe:bb:a2:7c:c2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Validity
Not Before: Mar 29 03:00:41 2026 GMT
Not After : Mar 30 03:00:41 2026 GMT
Subject: CN=fc94eb2fb5e2128c5b64a340b40aa3985ee290a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:6e:48:0c:b0:92:2d:4b:1f:a0:0f:c0:c7:
29:1c:4f:b8:f0:67:e6:36:1a:b5:6c:96:a2:06:bd:
72:37:62:46:62:5e:87:1f:70:6c:dd:3f:d7:84:51:
8d:f2:63:a1:3a:a4:20:d8:3b:b0:37:8c:12:54:fe:
5b:c5:24:37:27:4c:8f:0a:fb:b6:3a:7f:20:b8:a1:
66:8d:b0:73:b4:01:47:89:31:99:f5:a8:d1:e6:39:
6b:61:33:1c:b0:b8:29:b1:3e:b0:90:cc:4b:5f:52:
f0:80:63:c4:32:af:20:c2:36:86:41:64:77:bf:87:
58:6f:15:3c:fe:38:b0:69:9e:a6:21:ea:d1:c6:eb:
9c:41:3a:4d:7d:dd:25:03:80:ea:51:c3:5b:94:c9:
fc:47:38:55:94:44:58:94:4c:c2:b5:ce:de:77:19:
c1:7f:79:dd:18:b7:02:80:5c:d3:47:2b:45:32:5d:
1d:2f:bd:2b:f2:8d:10:51:d9:98:41:42:e4:11:56:
1d:52:59:a6:64:20:1c:31:9a:e4:db:7a:a4:c9:e6:
57:00:cb:f0:e1:1c:4c:b8:41:98:18:09:34:5d:c9:
4f:ea:52:92:73:35:01:4c:22:2f:32:e3:51:0a:e4:
f8:a9:19:16:bf:39:68:4d:29:34:c2:7d:b0:ea:90:
ea:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:94:EB:2F:B5:E2:12:8C:5B:64:A3:40:B4:0A:A3:98:5E:E2:90:A7
X509v3 Authority Key Identifier:
keyid:1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:58:28:dc:22:d8:49:22:6c:5c:1c:ce:36:08:d3:59:e6:e8:
bd:75:44:3a:a9:b4:5f:89:0d:bc:0a:b1:72:89:44:16:35:99:
f0:84:6e:49:73:3c:d0:ac:8e:f7:d6:66:bf:c8:d6:80:ac:86:
3b:c9:fd:18:26:2f:d1:1f:39:89:f1:35:44:7b:88:2d:cb:9b:
b3:a6:6e:8d:b6:71:5f:a8:e8:a5:ff:2d:1f:bf:76:3f:d5:72:
94:d7:64:4b:1b:62:99:ef:60:f5:f5:18:9d:2b:db:7e:d1:3e:
4c:14:aa:2c:35:b5:cc:22:78:72:c3:67:a7:28:b8:66:c7:e0:
ae:2e:e8:69:81:76:dc:cd:6a:bc:e7:63:78:c3:9b:9e:f7:b2:
39:17:aa:67:ca:0c:72:67:3d:09:94:e5:2a:56:9f:0c:17:b6:
bf:47:a2:14:ef:67:81:4d:52:cd:2b:fa:55:63:74:7e:ac:fa:
ba:88:25:01:71:4c:36:f9:6f:d9:58:4f:20:cb:95:27:7a:db:
a6:6a:c8:0c:97:2e:a8:65:d8:eb:89:43:90:6e:77:ba:84:d0:
f1:72:9f:c6:41:bb:8c:c3:80:e8:38:af:af:29:ff:a8:28:53:
4f:5b:c8:3f:77:c3:ff:18:4c:62:35:1c:94:0c:40:e8:f9:ed:
06:6e:c0:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03iVk0C0IGbRDQ/ruifMIGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmYjVjMWJiYWVkNDRjOGI2YWUzZjJiNTY2ZDAxY2MyNThk
ZmMyY2UwHhcNMjYwMzI5MDMwMDQxWhcNMjYwMzMwMDMwMDQxWjAzMTEwLwYDVQQD
EyhmYzk0ZWIyZmI1ZTIxMjhjNWI2NGEzNDBiNDBhYTM5ODVlZTI5MGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojNuSAywki1LH6APwMcpHE+48Gfm
Nhq1bJaiBr1yN2JGYl6HH3Bs3T/XhFGN8mOhOqQg2DuwN4wSVP5bxSQ3J0yPCvu2
On8guKFmjbBztAFHiTGZ9ajR5jlrYTMcsLgpsT6wkMxLX1LwgGPEMq8gwjaGQWR3
v4dYbxU8/jiwaZ6mIerRxuucQTpNfd0lA4DqUcNblMn8RzhVlERYlEzCtc7edxnB
f3ndGLcCgFzTRytFMl0dL70r8o0QUdmYQULkEVYdUlmmZCAcMZrk23qkyeZXAMvw
4RxMuEGYGAk0XclP6lKSczUBTCIvMuNRCuT4qRkWvzloTSk0wn2w6pDqCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPyU6y+14hKMW2SjQLQKo5he4pCnMB8GA1UdIwQY
MBaAFB+1wbuu1EyLauPytWbQHMJY38LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDdYQnU2N1VUSXRxNF9LMVp0QWN3bGpmd3M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8zYzRiNTMtZWNhMy00NTk5LTlkOTQt
ZDcxZmM5MGM3YjE2LzEvSDdYQnU2N1VUSXRxNF9LMVp0QWN3bGpmd3M0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8zYzRiNTMtZWNhMy00NTk5LTlkOTQtZDcxZmM5MGM3YjE2
LzEvSDdYQnU2N1VUSXRxNF9LMVp0QWN3bGpmd3M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfVgo3CLY
SSJsXBzONgjTWebovXVEOqm0X4kNvAqxcolEFjWZ8IRuSXM80KyO99Zmv8jWgKyG
O8n9GCYv0R85ifE1RHuILcubs6ZujbZxX6jopf8tH792P9VylNdkSxtime9g9fUY
nSvbftE+TBSqLDW1zCJ4csNnpyi4Zsfgri7oaYF23M1qvOdjeMObnveyOReqZ8oM
cmc9CZTlKlafDBe2v0eiFO9ngU1SzSv6VWN0fqz6uoglAXFMNvlv2VhPIMuVJ3rb
pmrIDJcuqGXY64lDkG53uoTQ8XKfxkG7jMOA6Divryn/qChTT1vIP3fD/xhMYjUc
lAxA6PntBm7A8A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:39 2026 by rpki-client