Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
File: HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json)
Hash identifier: ulEr/R9dJ6ESS+bRms8wrI3k857N/kh4kT9wgRqNxE0=
Subject key identifier: 03:F9:68:19:98:95:94:FD:F2:A0:8F:79:2A:50:34:14:6B:30:19:2F
Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
Certificate issuer: /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Certificate serial: 019D26CD480C34DEEEED11E57AF564186B57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
Manifest number: 0BB8
Signing time: Wed 25 Mar 2026 21:01:20 +0000
Manifest this update: Wed 25 Mar 2026 21:01:20 +0000
Manifest next update: Thu 26 Mar 2026 21:01:20 +0000
Files and hashes: 1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: rt3bFEJ4e0m35UPePmrITWuLG9YIC51m8vrYEkfWYPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:48:0c:34:de:ee:ed:11:e5:7a:f5:64:18:6b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Validity
Not Before: Mar 25 21:01:20 2026 GMT
Not After : Mar 26 21:01:20 2026 GMT
Subject: CN=03f96819989594fdf2a08f792a5034146b30192f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c4:9e:a3:98:ed:63:b4:2e:08:e5:5d:71:41:
72:0a:8e:18:a2:d2:93:09:80:6b:d8:74:04:3a:d2:
48:5a:6b:16:88:ea:ef:d2:9a:2a:cb:8f:35:4a:65:
cb:17:ec:ee:4d:b5:94:93:b0:24:d2:c5:e1:67:ac:
0f:1d:82:63:96:68:d0:e7:1a:04:6e:2f:85:4d:15:
eb:23:cf:68:57:81:70:47:c9:c9:47:f5:9f:1a:17:
9c:d2:34:b9:71:af:e4:44:29:7e:41:6f:c4:64:42:
e1:9f:0f:06:f7:a4:fb:49:cb:ea:b2:a1:87:82:d0:
d7:55:bd:96:2b:5d:fd:bb:71:db:8a:bb:b2:32:2c:
c7:71:68:6d:82:e8:9a:18:37:da:f3:ba:2c:61:09:
1a:ef:24:82:1f:4c:88:2d:73:e9:ef:8d:9d:76:b4:
02:21:28:dd:78:81:9f:a3:9f:bd:2d:98:78:8d:1d:
57:91:f1:3c:46:6e:a0:d5:ef:dc:bc:f1:b5:e7:a7:
34:92:55:ff:db:ae:ad:b5:e8:c3:91:fd:a1:ed:cf:
51:70:d9:a7:75:e3:42:46:c9:d5:54:aa:60:5b:aa:
c3:74:ee:a2:d1:af:60:da:55:ae:16:48:12:98:8e:
23:d7:20:89:c7:64:f4:6e:a9:d6:9f:5a:98:8e:da:
79:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F9:68:19:98:95:94:FD:F2:A0:8F:79:2A:50:34:14:6B:30:19:2F
X509v3 Authority Key Identifier:
keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:e8:66:f0:de:59:27:5d:72:fb:ea:a7:39:a9:21:5c:d8:be:
48:0c:22:fe:b9:9b:7c:0c:3f:c4:37:5e:46:9c:da:a5:b0:db:
f5:1b:65:fc:a9:90:6b:2f:fc:18:eb:28:f7:e4:1f:76:8d:be:
5e:e6:d1:67:c4:55:ec:04:8a:08:c7:db:fe:38:29:49:20:93:
45:3e:b0:0b:3d:b2:1e:2f:83:ea:14:a4:1a:67:56:26:a0:28:
ad:91:ec:07:c2:0a:eb:df:0b:a5:2e:94:0c:6c:fd:9c:a5:b9:
ae:5d:22:d9:1d:e3:5e:97:f4:bf:a2:3a:24:26:19:d4:58:07:
a2:ec:80:ac:2f:7f:a5:bd:26:75:ce:8b:9f:8b:16:bb:e2:41:
79:b9:8c:c4:d4:74:fb:0d:dd:08:42:68:78:04:6e:cd:ca:39:
bb:9b:37:84:26:41:44:ac:af:16:ed:0c:5f:ac:61:bf:99:ec:
9b:9b:66:e7:7e:1f:d3:bb:b9:fe:51:7e:31:80:06:bd:2f:da:
eb:55:a8:20:59:ca:b0:01:f0:62:69:f3:0f:e9:94:e2:35:b2:
23:2f:25:ee:e5:c7:ba:a6:08:f0:7e:a8:d0:c2:7a:bd:9d:49:
f9:1c:10:c9:03:3f:f3:7c:8d:b5:5b:9d:b3:64:58:58:6e:42:
9b:14:2f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:23 2026 by rpki-client