Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
File: HrwURUFHAQyh700E0hASXh7X0ho.mft (raw, json)
Hash identifier: kU6ER9ncrl5VJeVcWfXZCNRHA4lXdZtoth5oXzOFgGs=
Subject key identifier: 2C:60:FB:09:1D:D2:68:59:11:CA:94:B1:59:1D:14:9D:C8:B0:CF:C6
Authority key identifier: 1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
Certificate issuer: /CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Certificate serial: 019D265ED2C43A453FDF5C66B44D5F0A586D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
Manifest number: 0A45
Signing time: Wed 25 Mar 2026 19:00:41 +0000
Manifest this update: Wed 25 Mar 2026 19:00:41 +0000
Manifest next update: Thu 26 Mar 2026 19:00:41 +0000
Files and hashes: 1: HrwURUFHAQyh700E0hASXh7X0ho.crl (hash: 5BY1TgspQqrORM49ba3J+rsfzWsCAnsXFzdaSPf0+WY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:d2:c4:3a:45:3f:df:5c:66:b4:4d:5f:0a:58:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Validity
Not Before: Mar 25 19:00:41 2026 GMT
Not After : Mar 26 19:00:41 2026 GMT
Subject: CN=2c60fb091dd2685911ca94b1591d149dc8b0cfc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:19:33:cb:15:7f:aa:19:c2:ad:02:62:2e:3c:
ac:ac:c3:0b:b4:c9:83:89:3e:f8:14:59:d7:d7:b9:
5e:4e:a3:7e:48:b2:f6:d7:35:69:74:45:35:72:bf:
57:19:d1:e8:4f:5c:00:1e:33:50:e1:24:1d:59:ba:
21:b3:31:1c:61:c5:63:5f:8a:9e:93:a3:ec:d8:cc:
c4:f4:5d:96:77:ae:53:e6:e3:35:59:6a:60:9c:85:
35:70:aa:22:8e:b1:53:48:a9:93:18:13:ce:de:83:
4b:dc:06:67:93:cb:28:7d:c2:93:0e:ee:7e:97:a6:
a2:d2:24:5b:f9:7c:e1:9d:28:58:3b:97:a9:f8:99:
d6:ea:f6:56:fc:0b:16:6c:39:2e:51:8f:43:e7:7a:
89:19:20:ac:e9:a6:a7:15:d8:73:ae:aa:08:85:2c:
17:78:dd:a9:af:37:2b:d5:4f:3d:74:4f:cb:18:b2:
56:05:0d:f2:b0:df:ee:61:cd:d0:2a:16:31:49:06:
44:99:ed:81:d2:4a:a4:cf:6d:0b:c3:6e:26:e8:18:
70:a7:6e:7e:67:93:11:a4:8c:1e:4b:91:97:ed:62:
71:e4:9d:95:aa:17:b8:0f:17:dc:ae:86:ca:d3:62:
e8:53:ba:16:9f:4f:04:57:15:60:07:0e:13:8e:55:
cf:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:60:FB:09:1D:D2:68:59:11:CA:94:B1:59:1D:14:9D:C8:B0:CF:C6
X509v3 Authority Key Identifier:
keyid:1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d4:c9:e2:7f:7b:7b:26:b2:9f:ff:b0:cc:f1:a8:1d:06:b8:
e2:ed:be:40:80:13:af:4a:b2:a9:d8:d0:ae:af:3d:2c:36:7a:
7b:40:e9:c9:b4:2d:08:1f:96:0c:25:6d:9f:61:61:f6:47:3b:
1c:67:00:55:e1:84:74:c7:e5:e1:47:93:01:cc:de:94:84:8d:
8a:68:11:8a:7c:a1:14:08:7e:3c:e9:bc:83:32:cd:36:a5:18:
f3:d8:76:15:0c:58:b1:47:90:da:bc:39:2b:26:a8:e3:ae:2e:
fa:f2:32:b1:8e:de:a7:2f:42:20:cd:e4:03:72:68:c0:2b:f8:
08:b4:d9:24:39:76:23:4b:2e:81:6c:40:df:7c:cf:e5:28:b1:
68:27:0b:72:e7:e7:c5:d1:8a:be:95:71:23:89:d9:3b:7d:f4:
97:1b:9a:25:3d:a4:5e:60:41:8e:f7:7d:2d:35:3f:03:fb:2e:
a4:93:0b:8f:29:5d:94:a6:02:ef:83:1e:16:65:09:b4:ed:68:
e5:ad:d8:88:1e:5b:23:20:53:6f:ac:55:2f:fd:c7:63:63:34:
75:e2:c2:d9:4d:d5:91:5e:49:ef:57:bc:f3:c8:b2:fa:d0:19:
f6:ce:7f:ca:ae:d6:b7:e5:1d:fc:55:98:26:1c:d8:6a:73:b3:
3b:9c:f6:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mXtLEOkU/31xmtE1fClhtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYmMxNDQ1NDE0NzAxMGNhMWVmNGQwNGQyMTAxMjVlMWVk
N2QyMWEwHhcNMjYwMzI1MTkwMDQxWhcNMjYwMzI2MTkwMDQxWjAzMTEwLwYDVQQD
EygyYzYwZmIwOTFkZDI2ODU5MTFjYTk0YjE1OTFkMTQ5ZGM4YjBjZmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhkzyxV/qhnCrQJiLjysrMMLtMmD
iT74FFnX17leTqN+SLL21zVpdEU1cr9XGdHoT1wAHjNQ4SQdWbohszEcYcVjX4qe
k6Ps2MzE9F2Wd65T5uM1WWpgnIU1cKoijrFTSKmTGBPO3oNL3AZnk8sofcKTDu5+
l6ai0iRb+XzhnShYO5ep+JnW6vZW/AsWbDkuUY9D53qJGSCs6aanFdhzrqoIhSwX
eN2przcr1U89dE/LGLJWBQ3ysN/uYc3QKhYxSQZEme2B0kqkz20Lw24m6Bhwp25+
Z5MRpIweS5GX7WJx5J2Vqhe4DxfcrobK02LoU7oWn08EVxVgBw4TjlXPWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCxg+wkd0mhZEcqUsVkdFJ3IsM/GMB8GA1UdIwQY
MBaAFB68FEVBRwEMoe9NBNIQEl4e19IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy80OGJmOTgtN2UxNS00NWJlLWJkMzkt
MjA1MDc5ZTUxYzEzLzEvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy80OGJmOTgtN2UxNS00NWJlLWJkMzktMjA1MDc5ZTUxYzEz
LzEvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAotTJ4n97
eyayn/+wzPGoHQa44u2+QIATr0qyqdjQrq89LDZ6e0DpybQtCB+WDCVtn2Fh9kc7
HGcAVeGEdMfl4UeTAczelISNimgRinyhFAh+POm8gzLNNqUY89h2FQxYsUeQ2rw5
Kyao464u+vIysY7epy9CIM3kA3JowCv4CLTZJDl2I0sugWxA33zP5SixaCcLcufn
xdGKvpVxI4nZO330lxuaJT2kXmBBjvd9LTU/A/supJMLjyldlKYC74MeFmUJtO1o
5a3YiB5bIyBTb6xVL/3HY2M0deLC2U3VkV5J71e888iy+tAZ9s5/yq7Wt+Ud/FWY
JhzYanOzO5z27g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:46:31 2026 by rpki-client