Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
File: HQrO6hf1PecI-ac6vAyHFk0gfQg.mft (raw, json)
Hash identifier: dy5dKYxeOz+JKBJvsXLGEYhJoTKqjcQZH0WEUo6GRdI=
Subject key identifier: 4C:74:6A:B5:99:31:5F:20:D8:33:7A:5C:9B:D2:E5:02:98:0C:C3:E1
Authority key identifier: 1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
Certificate issuer: /CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Certificate serial: 019D28F21ABCBFE10A629B4A12310FEEA499
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
Manifest number: 15AB
Signing time: Thu 26 Mar 2026 07:00:48 +0000
Manifest this update: Thu 26 Mar 2026 07:00:48 +0000
Manifest next update: Fri 27 Mar 2026 07:00:48 +0000
Files and hashes: 1: HQrO6hf1PecI-ac6vAyHFk0gfQg.crl (hash: jNAWEVqCOxgE3Xrhx/hAxKZZ+Lt9tPehfxPo4xSHlNw=)
2: jYlsueQe6bTuxJo3Pao6U7_lbjM.roa (hash: xljjWi7Hj8DkN9QHcryj+ylFV/KQmtfdUgA8aZcK8mQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:1a:bc:bf:e1:0a:62:9b:4a:12:31:0f:ee:a4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Validity
Not Before: Mar 26 07:00:48 2026 GMT
Not After : Mar 27 07:00:48 2026 GMT
Subject: CN=4c746ab599315f20d8337a5c9bd2e502980cc3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:e4:54:22:ec:6e:94:01:0d:e4:02:b3:cb:
e1:26:88:69:de:ef:35:fe:59:2a:70:10:96:92:3d:
01:d9:23:58:05:ba:aa:d4:f2:a5:da:28:c9:5c:11:
f4:14:b4:cd:2c:8c:38:9d:f8:0b:57:47:7f:62:58:
b8:f0:8d:87:43:9e:5e:0f:d2:18:31:00:67:d9:31:
d1:7a:18:30:48:96:f3:23:77:84:a8:1e:95:cb:bb:
81:c0:25:5e:70:78:f2:0b:08:ba:a1:e7:b7:ba:89:
ba:67:63:8c:ff:6a:dd:c7:06:36:98:f3:e3:ad:5e:
99:e6:67:c0:d4:98:f0:b2:cc:1d:3b:97:20:fb:da:
78:3d:0b:25:6b:86:64:c9:33:42:dd:cb:e5:21:ed:
bf:5d:44:36:7b:db:99:54:f9:b6:71:df:fc:18:47:
ac:fd:5a:17:b9:33:81:a7:39:6a:2d:bb:f5:8b:4c:
ff:f4:3a:5b:1c:76:ad:f5:f6:19:0c:43:b6:65:f2:
31:86:9d:aa:47:c9:81:45:cb:92:4a:3a:9a:5a:10:
9f:31:bc:3b:d8:3d:f0:f1:27:af:07:a9:7e:46:99:
74:e7:aa:85:56:d5:ee:8d:18:92:5e:b8:79:9c:36:
fa:c2:31:19:fa:0d:ff:2a:ee:2e:03:6c:df:94:b1:
dd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:74:6A:B5:99:31:5F:20:D8:33:7A:5C:9B:D2:E5:02:98:0C:C3:E1
X509v3 Authority Key Identifier:
keyid:1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:ea:c5:67:66:b9:0e:03:60:9b:11:a5:62:c5:23:cb:fa:80:
80:06:9d:57:b7:4c:45:32:8b:3c:24:a2:38:47:a5:29:b6:e0:
11:15:1c:2b:c9:b3:6f:77:6a:ef:e0:2a:2a:fb:2c:7c:be:23:
99:d3:be:ab:80:f5:cf:48:8d:0b:c4:a7:97:37:57:a4:72:fe:
1b:b6:ed:a6:13:e9:2c:ab:23:18:8d:c1:40:ca:b6:f7:90:d1:
f7:8f:81:10:4b:a8:f6:39:d0:f9:d2:c8:5c:17:c9:af:bf:93:
3a:32:72:01:df:4d:cf:48:3d:81:1f:a7:7d:2e:5e:47:7c:36:
75:bf:62:df:64:d7:e8:bd:92:18:97:15:72:4e:8d:9a:6f:25:
66:c8:6a:28:4b:e0:fc:2d:b2:d8:d4:32:ca:46:37:41:c3:bb:
83:6e:92:0e:be:6a:e8:af:4b:25:cf:95:60:e1:a9:3e:04:cd:
1a:30:18:65:79:fc:d9:ff:1c:f8:05:98:08:d3:8f:17:b7:45:
b4:54:4d:44:1c:8d:00:60:a5:ac:59:09:7b:52:7f:bd:21:d7:
41:53:cf:e5:e4:f6:58:96:38:74:2a:49:37:b3:6c:a8:6e:57:
f3:ff:3b:99:e1:6a:a2:f8:12:d5:b5:4d:39:1a:ae:b0:e6:64:
55:bc:21:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:55:36 2026 by rpki-client