Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: e8Pw7kc3rHfQdvt7Np+uJgDzCQvWFFpmXxuaI+7WfjA=
Subject key identifier: F6:AB:DA:A6:48:6D:FA:8A:F8:43:4E:B6:17:EB:98:B7:87:5B:7C:71
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019CE44851CEC887568328E8F0F67A8165BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1865
Signing time: Thu 12 Mar 2026 23:01:10 +0000
Manifest this update: Thu 12 Mar 2026 23:01:10 +0000
Manifest next update: Fri 13 Mar 2026 23:01:10 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: c33XDCcWGp+8Z/ZZe28ZMcnyZfN3uYdKx0KiXecLD7c=)
2: _SW-efIyZk8frPlLE8yBxAElkiU.roa (hash: iv2POwrNLwDCvtWPf5ONex0CqcvwAdFHiaQ1/D120FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:48:51:ce:c8:87:56:83:28:e8:f0:f6:7a:81:65:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Mar 12 23:01:10 2026 GMT
Not After : Mar 13 23:01:10 2026 GMT
Subject: CN=f6abdaa6486dfa8af8434eb617eb98b7875b7c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f9:a2:31:9d:5e:60:99:ff:d2:17:d5:55:d4:
83:d3:be:01:4e:3a:fb:fd:cf:19:df:ed:a1:e7:36:
8d:a5:c7:5c:d8:64:46:55:d2:a3:4a:5b:43:c8:13:
57:d9:b3:a1:32:e8:83:9e:b8:79:b1:be:79:2d:e3:
eb:4e:cd:1e:1d:5e:87:1f:62:04:3d:80:06:fd:42:
7b:83:95:f4:d3:84:1e:07:d0:88:4a:f2:b1:bb:1f:
29:68:65:a8:77:76:c9:db:ef:72:ba:46:b0:11:e2:
54:88:f7:e2:a9:03:e4:e6:01:29:05:0c:26:a6:15:
c6:a9:33:0d:d5:4e:74:06:23:e7:80:51:62:3e:95:
63:9c:72:bc:f5:1d:a3:80:19:1e:a9:64:f2:ca:95:
33:64:cf:bc:a7:ac:92:59:72:1d:dd:57:8b:dd:5b:
80:a3:bf:42:78:36:b4:16:0b:e9:91:af:e5:53:76:
63:b2:ae:63:3a:ef:81:02:a2:9c:b7:aa:f4:68:73:
c2:b1:35:6b:7a:22:89:0e:b1:23:77:15:f2:15:85:
54:30:1a:40:6b:24:de:d6:51:58:f1:a5:df:28:6a:
d9:ab:b5:e0:b8:aa:1b:eb:94:1e:e0:3b:11:7e:b3:
4c:72:bd:c3:3d:97:a6:df:6d:98:45:3d:22:04:6a:
0b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AB:DA:A6:48:6D:FA:8A:F8:43:4E:B6:17:EB:98:B7:87:5B:7C:71
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:06:58:b9:1e:48:91:5e:75:da:d3:63:8a:36:90:28:c1:51:
9b:b6:75:5c:c0:25:62:90:7c:32:53:9b:b9:cc:e4:23:eb:51:
a6:07:e7:7c:4a:5d:49:56:1c:96:a3:d2:7a:37:d4:6c:6c:c0:
7a:09:90:a4:32:85:1d:b2:23:e0:55:02:a6:98:4a:d7:80:9f:
40:bd:e2:9d:14:a0:ae:6a:1a:40:89:bd:61:23:e9:9d:af:c8:
fc:c2:f0:31:be:32:8e:17:60:9f:6a:2a:eb:cb:18:26:c3:21:
64:6f:bb:c2:50:95:4c:ae:c6:43:95:65:53:9b:54:c0:95:67:
de:a2:c8:89:3f:b0:b5:88:0d:12:c8:c8:e8:ee:2d:34:6a:af:
6a:f2:a6:d3:f7:c0:39:eb:56:75:45:f1:02:8d:7e:1a:b3:be:
5e:2f:47:12:16:64:50:41:20:0c:f7:60:5d:74:25:36:d8:25:
c1:f5:21:4b:ac:fb:9e:13:56:9e:0b:65:2b:84:90:ea:a9:f3:
b9:46:ff:aa:38:7f:bb:e1:50:3e:3d:2d:58:a8:56:90:c5:74:
96:7c:c2:9d:40:bc:b7:f3:c5:f0:4f:47:78:0a:8c:08:ad:08:
81:c9:e5:a0:e0:7d:4b:4c:8f:40:81:89:15:9a:30:b6:2a:b3:
de:a8:a6:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 05:50:46 2026 by rpki-client