Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: F3sITVR7E3OGg+ZYBYizeOLjztDsjsEdBvz10lQ+VKc=
Subject key identifier: F3:57:9D:FD:D2:BF:09:CA:12:15:DC:B2:2B:55:D0:4C:EE:BC:AD:64
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 019D25BA3872D7E696891B8A09B95C780546
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 15F9
Signing time: Wed 25 Mar 2026 16:00:54 +0000
Manifest this update: Wed 25 Mar 2026 16:00:54 +0000
Manifest next update: Thu 26 Mar 2026 16:00:54 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: azZSVNPoI1Q70vYAONbsPea8Z07hi0c2pRFB902BgDE=)
2: IMhrDeS7pt6POgdqkwhQn8NXjdQ.roa (hash: 8Co4GdnGTbaplfNAIs0VU0evrLpH3iNJkhwVpK6YVsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:38:72:d7:e6:96:89:1b:8a:09:b9:5c:78:05:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Mar 25 16:00:54 2026 GMT
Not After : Mar 26 16:00:54 2026 GMT
Subject: CN=f3579dfdd2bf09ca1215dcb22b55d04ceebcad64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2b:e7:98:be:8c:96:15:24:39:b3:2d:c5:6c:
cb:ab:f2:d6:85:6e:9c:71:8a:ac:cb:04:8b:3a:95:
83:39:31:48:a8:e5:3d:07:fa:4a:12:b7:68:67:d0:
31:21:3e:56:21:19:94:eb:14:83:af:89:f8:fb:e4:
25:af:ef:4f:54:ba:dc:cc:e7:6e:dd:9d:cf:f5:8e:
2e:c3:c3:17:1e:19:f2:2a:f6:16:95:c2:02:d0:f3:
17:a5:d4:a5:0f:09:17:81:c4:84:a7:ae:c9:d9:ff:
bc:a2:16:2c:b8:39:5a:47:9a:b6:b7:3b:02:01:10:
d0:31:6c:d6:30:a7:66:bd:c6:70:c0:d5:71:55:2b:
1d:1b:6e:da:f3:c7:44:b6:80:6b:af:f1:23:8d:63:
a4:92:b2:eb:26:48:1b:7c:f0:ec:de:ec:32:9b:5d:
5a:53:16:4f:e3:e0:6f:6b:6f:d8:53:95:12:91:fb:
ac:38:02:b5:28:fd:6c:a3:e4:e5:fe:44:2f:fd:ad:
31:55:13:01:af:50:4e:c1:0c:c0:b2:5e:f7:bb:82:
aa:ab:2c:85:76:d4:7c:a9:0e:b0:41:e1:9c:23:3c:
72:fe:ca:fc:91:59:42:ec:4b:fe:0d:45:3f:69:dc:
6a:1a:f8:23:30:58:39:00:3b:1c:9a:cf:d1:ec:5b:
29:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:57:9D:FD:D2:BF:09:CA:12:15:DC:B2:2B:55:D0:4C:EE:BC:AD:64
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:8e:fb:ef:d4:1f:23:84:b8:66:d1:02:e3:31:4a:85:1d:46:
f0:ef:c3:45:ca:18:3d:a0:09:ea:27:3a:f1:46:e6:fd:6e:f6:
3f:ce:97:38:32:7c:98:55:73:d7:31:71:63:89:6c:58:6c:8d:
87:40:60:86:03:5a:f8:c0:5c:43:49:7e:21:16:e3:d9:c0:75:
5b:0e:60:ec:e3:51:88:54:2f:2c:67:8f:93:11:16:a2:a3:00:
0e:4b:9d:19:84:1d:7b:c2:37:28:6d:e0:91:0c:6e:a1:14:e9:
e9:76:b7:db:0d:89:08:a3:9e:65:84:c0:37:f9:81:93:16:49:
d0:95:97:f1:a9:e0:4c:2f:1e:3c:ed:e3:28:8a:f8:53:a6:c9:
be:bd:27:55:da:eb:b6:c6:f1:8b:65:6c:43:c6:1d:ae:79:3e:
b4:e9:f8:9a:d2:e2:ae:9f:22:1f:7c:67:14:c9:8f:6f:3e:c9:
45:a7:c8:5a:a9:44:b3:b4:38:14:81:68:9d:34:bf:97:f0:00:
08:09:b6:32:9c:37:61:60:30:95:bf:f3:ca:f5:3a:e4:d4:14:
23:48:db:0a:8c:74:96:81:16:6e:31:be:ab:8b:cb:d4:88:d2:
e4:3f:e5:d9:58:7e:23:bf:80:90:f1:69:9e:88:20:f0:26:b5:
3e:56:70:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:41 2026 by rpki-client