Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json)
Hash identifier: A2DFhRRGkg+mw4QwPb5LG6+dAb/P7z0DKW5QrFG6Cu0=
Subject key identifier: 28:DE:04:B6:5F:15:F3:C4:62:9B:E4:C1:20:16:40:83:E0:03:C7:04
Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Certificate serial: 019D375295D0904A210E2548BBEE58D880DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
Manifest number: 038F
Signing time: Sun 29 Mar 2026 02:00:52 +0000
Manifest this update: Sun 29 Mar 2026 02:00:52 +0000
Manifest next update: Mon 30 Mar 2026 02:00:52 +0000
Files and hashes: 1: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: ak9CUs3mFE2KUfiFREc4Gn2Tbppvll5zOxG2Pu6QyQ0=)
2: qjlzVUCaFQUZ4gX30tzeHb6m2Vc.roa (hash: O0FkDLh7vK3dEH2T/ZCf0yS5Z/Mux8DWSQvw+qcaVik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:95:d0:90:4a:21:0e:25:48:bb:ee:58:d8:80:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Validity
Not Before: Mar 29 02:00:52 2026 GMT
Not After : Mar 30 02:00:52 2026 GMT
Subject: CN=28de04b65f15f3c4629be4c120164083e003c704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:26:b7:29:4a:01:21:5b:a5:96:9a:1e:ce:c0:
ca:17:d3:84:07:8c:4d:61:12:b0:55:61:2f:ef:37:
09:f3:19:0c:da:14:06:f0:63:95:1e:ac:2c:41:5b:
64:e2:62:82:c4:3f:d4:ec:9b:f4:02:c5:90:7e:47:
90:ba:42:d4:a1:66:b5:ef:a6:38:34:36:d3:8b:63:
0a:8a:d9:5f:1d:6e:4f:25:26:91:46:9c:56:54:15:
42:76:0c:7f:68:41:53:0c:ee:39:bb:e8:be:66:eb:
a6:40:a9:b6:aa:01:63:7d:28:92:a0:eb:f5:9b:f4:
58:10:2f:97:87:d6:7a:02:83:ff:ed:95:fb:8a:9a:
44:9a:3e:1f:0e:ca:54:ea:18:66:dc:79:c6:fd:e6:
36:b1:cb:04:93:a3:d0:4c:f7:34:2a:b6:46:c9:3f:
84:33:0d:c8:8f:e1:97:f4:1f:fd:30:55:fc:bc:37:
35:f5:46:60:7f:95:17:ae:5e:69:db:85:6b:11:ff:
fd:4e:12:b7:0f:79:f7:b6:0f:9f:88:80:74:fc:b9:
54:f6:14:95:24:1b:2e:ea:83:a0:05:6f:57:bc:0e:
9b:7b:83:53:d6:41:9f:c0:26:c0:aa:4c:ca:21:d1:
77:7a:3e:59:be:47:e9:83:eb:29:bd:c4:b5:15:ee:
6a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:DE:04:B6:5F:15:F3:C4:62:9B:E4:C1:20:16:40:83:E0:03:C7:04
X509v3 Authority Key Identifier:
keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:17:e0:95:6b:c9:4c:4e:ab:07:8b:1d:3f:d2:dc:7f:9e:29:
78:9c:c8:c1:1e:90:49:11:b6:c1:26:77:0e:e9:62:c2:18:da:
11:94:e0:af:03:90:1b:0d:84:2a:83:65:46:d2:af:6d:4d:c8:
42:16:00:07:c8:9b:2c:67:fe:90:e9:93:b2:b1:79:04:aa:2a:
e7:b4:62:90:6b:3e:01:c3:dd:b6:fe:9f:5a:db:31:e2:37:5f:
ee:db:65:30:a9:b0:db:e2:18:50:e2:6a:40:d4:7a:96:69:72:
cf:98:6a:21:30:aa:89:9f:9b:be:f4:1c:7c:81:79:c4:de:47:
d5:e2:d4:cb:2c:5e:cc:a8:4c:4a:b5:f9:32:75:45:c9:34:9f:
5e:40:1d:a1:e8:a4:75:ad:8a:d1:d7:fd:86:08:fe:86:3c:3a:
14:74:38:f2:d3:c2:74:d8:8e:88:c3:94:41:36:00:e5:ee:c4:
1d:da:82:a1:e8:f4:a6:b4:0e:c1:26:a4:45:90:5b:b1:e2:c6:
28:94:78:fb:99:b4:18:47:75:ac:c3:6d:b4:f2:b8:2e:35:be:
04:49:00:b1:73:09:d2:63:3b:42:75:0a:22:4b:fc:7d:9a:1e:
f6:88:4a:97:fc:73:db:20:fb:74:d1:0c:95:fc:5c:6f:b9:07:
3b:0f:4f:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03UpXQkEohDiVIu+5Y2IDaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0OGIxMjk0ZDI3NjlmYTM3YjM0OGFjYzVkYWJmY2I4ZmU2
Zjk5OTgwHhcNMjYwMzI5MDIwMDUyWhcNMjYwMzMwMDIwMDUyWjAzMTEwLwYDVQQD
EygyOGRlMDRiNjVmMTVmM2M0NjI5YmU0YzEyMDE2NDA4M2UwMDNjNzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxia3KUoBIVullpoezsDKF9OEB4xN
YRKwVWEv7zcJ8xkM2hQG8GOVHqwsQVtk4mKCxD/U7Jv0AsWQfkeQukLUoWa176Y4
NDbTi2MKitlfHW5PJSaRRpxWVBVCdgx/aEFTDO45u+i+ZuumQKm2qgFjfSiSoOv1
m/RYEC+Xh9Z6AoP/7ZX7ippEmj4fDspU6hhm3HnG/eY2scsEk6PQTPc0KrZGyT+E
Mw3Ij+GX9B/9MFX8vDc19UZgf5UXrl5p24VrEf/9ThK3D3n3tg+fiIB0/LlU9hSV
JBsu6oOgBW9XvA6be4NT1kGfwCbAqkzKIdF3ej5Zvkfpg+spvcS1Fe5q4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCjeBLZfFfPEYpvkwSAWQIPgA8cEMB8GA1UdIwQY
MBaAFISLEpTSdp+jezSKzF2r/Lj+b5mYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2Mt
MGRiNzI1OWYyMGI4LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2MtMGRiNzI1OWYyMGI4
LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAohfglWvJ
TE6rB4sdP9Lcf54peJzIwR6QSRG2wSZ3DuliwhjaEZTgrwOQGw2EKoNlRtKvbU3I
QhYAB8ibLGf+kOmTsrF5BKoq57RikGs+AcPdtv6fWtsx4jdf7ttlMKmw2+IYUOJq
QNR6lmlyz5hqITCqiZ+bvvQcfIF5xN5H1eLUyyxezKhMSrX5MnVFyTSfXkAdoeik
da2K0df9hgj+hjw6FHQ48tPCdNiOiMOUQTYA5e7EHdqCoej0prQOwSakRZBbseLG
KJR4+5m0GEd1rMNttPK4LjW+BEkAsXMJ0mM7QnUKIkv8fZoe9ohKl/xz2yD7dNEM
lfxcb7kHOw9P8g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:23 2026 by rpki-client