Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
File: H0qus-K3pD3wHzHVGiDvIlXOr-M.mft (raw, json)
Hash identifier: aXJxKZom86cNsVVY3M0Ug6ftiVlM6QEmVlLR9tZaxK0=
Subject key identifier: 63:ED:2C:11:ED:3D:63:3F:40:7D:ED:CE:35:5D:EF:BB:B2:51:86:78
Authority key identifier: 1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3
Certificate issuer: /CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
Certificate serial: 019D270481D6941ED94C68D9A0E9DF7029BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
Manifest number: 0727
Signing time: Wed 25 Mar 2026 22:01:39 +0000
Manifest this update: Wed 25 Mar 2026 22:01:39 +0000
Manifest next update: Thu 26 Mar 2026 22:01:39 +0000
Files and hashes: 1: H0qus-K3pD3wHzHVGiDvIlXOr-M.crl (hash: tMVO73pKTJSa1ONgQdHAgnZV96s7yb0M7BESI+k644o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:81:d6:94:1e:d9:4c:68:d9:a0:e9:df:70:29:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
Validity
Not Before: Mar 25 22:01:39 2026 GMT
Not After : Mar 26 22:01:39 2026 GMT
Subject: CN=63ed2c11ed3d633f407dedce355defbbb2518678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5e:32:f2:a8:70:64:ee:14:77:75:eb:fa:3f:
14:13:6e:d9:40:2a:93:9a:2a:97:fe:ee:a7:19:fe:
24:61:f3:58:fc:25:b7:d0:3b:1f:b9:20:4d:65:e1:
aa:ca:30:a7:3c:a9:2c:55:64:f4:33:f6:4c:63:db:
dd:8f:bb:c6:81:d9:be:c7:1f:83:f4:3e:32:92:f0:
d2:5b:dd:9c:62:6a:f3:2d:af:2b:78:13:23:27:14:
6b:7f:8e:f9:b1:fc:cf:dd:19:f6:fe:4c:40:4b:81:
57:b9:e1:29:68:17:34:d5:a8:44:53:74:25:1d:8c:
c0:a0:c6:9f:6b:4e:b0:cf:30:45:a1:9b:54:2a:1d:
d5:aa:c0:e9:b1:15:b3:2e:88:9e:08:0f:91:39:5f:
5c:cd:8a:03:2a:b3:fe:77:95:3f:d4:89:f7:5d:d3:
98:56:91:c8:0b:8b:72:a0:40:b1:32:48:de:20:3c:
c7:7e:85:81:db:30:40:39:91:c1:cc:dc:34:d6:d8:
74:ec:82:14:63:63:c7:26:81:29:ea:49:1c:38:8d:
7e:8d:59:a6:af:89:19:4a:44:03:49:96:0f:53:0b:
15:10:ae:f2:e8:52:6f:5f:02:ea:9c:80:16:ac:a2:
38:b3:f2:fc:1f:ca:4f:70:20:d7:63:e3:9d:32:ef:
b8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:ED:2C:11:ED:3D:63:3F:40:7D:ED:CE:35:5D:EF:BB:B2:51:86:78
X509v3 Authority Key Identifier:
keyid:1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:46:a0:ee:49:1c:0d:96:d8:73:6b:88:df:dc:b3:e9:1f:7b:
e0:ff:eb:1f:b0:ed:fc:ab:16:85:df:3b:da:c1:38:3a:0d:05:
0e:e2:a4:65:32:11:7d:f6:e6:dd:6f:b4:9f:8d:eb:ca:ec:2b:
55:01:fa:70:d7:87:00:d0:97:0b:91:c2:45:a1:15:3c:58:eb:
16:05:c0:71:05:e1:6b:49:4f:0d:55:ad:7c:88:23:31:b3:00:
6b:66:e9:34:3d:18:c1:9e:ca:9e:3d:98:44:fe:9f:79:00:00:
d8:dc:87:3d:43:8d:01:5a:45:ab:14:98:ce:b4:e2:b7:dd:1a:
8d:11:b7:69:41:da:34:68:de:1f:e3:22:83:7a:1b:d5:72:32:
ba:cd:e8:46:d4:db:37:74:1c:8e:2f:88:3e:8c:76:fc:cd:74:
32:e5:9c:a6:96:7b:88:29:af:a4:1a:9b:f2:51:f5:d8:91:14:
94:9d:5a:79:a9:ea:fa:39:56:14:3f:29:c1:e2:cd:b5:2e:b5:
9f:43:5a:0b:64:8c:bd:67:8c:76:cf:a3:40:e9:84:c7:f1:3d:
4f:59:8d:e8:78:ba:17:b8:c8:80:b1:9d:ef:d8:8d:ae:27:95:
0e:0f:b0:19:38:63:a4:82:94:d4:95:47:e3:ce:26:59:12:a8:
2d:25:b2:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBIHWlB7ZTGjZoOnfcCm/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNGFhZWIzZTJiN2E0M2RmMDFmMzFkNTFhMjBlZjIyNTVj
ZWFmZTMwHhcNMjYwMzI1MjIwMTM5WhcNMjYwMzI2MjIwMTM5WjAzMTEwLwYDVQQD
Eyg2M2VkMmMxMWVkM2Q2MzNmNDA3ZGVkY2UzNTVkZWZiYmIyNTE4Njc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuV4y8qhwZO4Ud3Xr+j8UE27ZQCqT
miqX/u6nGf4kYfNY/CW30DsfuSBNZeGqyjCnPKksVWT0M/ZMY9vdj7vGgdm+xx+D
9D4ykvDSW92cYmrzLa8reBMjJxRrf475sfzP3Rn2/kxAS4FXueEpaBc01ahEU3Ql
HYzAoMafa06wzzBFoZtUKh3VqsDpsRWzLoieCA+ROV9czYoDKrP+d5U/1In3XdOY
VpHIC4tyoECxMkjeIDzHfoWB2zBAOZHBzNw01th07IIUY2PHJoEp6kkcOI1+jVmm
r4kZSkQDSZYPUwsVEK7y6FJvXwLqnIAWrKI4s/L8H8pPcCDXY+OdMu+4IQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGPtLBHtPWM/QH3tzjVd77uyUYZ4MB8GA1UdIwQY
MBaAFB9KrrPit6Q98B8x1Rog7yJVzq/jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDBxdXMtSzNwRDN3SHpIVkdpRHZJbFhPci1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8zZjNmNTAtMmYzNS00MDdlLWI5OWMt
ZTE4NDJiZTQxMmQxLzEvSDBxdXMtSzNwRDN3SHpIVkdpRHZJbFhPci1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8zZjNmNTAtMmYzNS00MDdlLWI5OWMtZTE4NDJiZTQxMmQx
LzEvSDBxdXMtSzNwRDN3SHpIVkdpRHZJbFhPci1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUUag7kkc
DZbYc2uI39yz6R974P/rH7Dt/KsWhd872sE4Og0FDuKkZTIRffbm3W+0n43ryuwr
VQH6cNeHANCXC5HCRaEVPFjrFgXAcQXha0lPDVWtfIgjMbMAa2bpND0YwZ7Knj2Y
RP6feQAA2NyHPUONAVpFqxSYzrTit90ajRG3aUHaNGjeH+Mig3ob1XIyus3oRtTb
N3Qcji+IPox2/M10MuWcppZ7iCmvpBqb8lH12JEUlJ1aeanq+jlWFD8pweLNtS61
n0NaC2SMvWeMds+jQOmEx/E9T1mN6Hi6F7jIgLGd79iNrieVDg+wGThjpIKU1JVH
484mWRKoLSWyEg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:24 2026 by rpki-client