Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
File: hGlcglEp42VKUIs7xSn-Ols4ObE.mft (raw, json)
Hash identifier: 39tY1ytV7xsTTFIDBmPauTPsyZy+HlNrZvq65vmPsjs=
Subject key identifier: 76:EC:78:DF:86:DB:23:19:62:2A:55:43:68:38:92:5E:4E:EE:34:04
Authority key identifier: 84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
Certificate issuer: /CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Certificate serial: 019D27DFBF4140D4D8FCA0C1116596497E1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
Manifest number: 13D8
Signing time: Thu 26 Mar 2026 02:01:07 +0000
Manifest this update: Thu 26 Mar 2026 02:01:07 +0000
Manifest next update: Fri 27 Mar 2026 02:01:07 +0000
Files and hashes: 1: WJgbjZB87tJLoahMumVDjucLblI.roa (hash: YviU04V4NEhTzYiRRcQuelFb9gp3nZ2OardyM6DZLlI=)
2: hGlcglEp42VKUIs7xSn-Ols4ObE.crl (hash: VAnTtRr3ITXqXNj9MKfsnfmYpYrHt/909H1uyuAP3K4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:bf:41:40:d4:d8:fc:a0:c1:11:65:96:49:7e:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Validity
Not Before: Mar 26 02:01:07 2026 GMT
Not After : Mar 27 02:01:07 2026 GMT
Subject: CN=76ec78df86db2319622a55436838925e4eee3404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c8:3c:98:1a:fc:fa:7a:dc:c6:b2:02:bb:fe:
47:9c:3b:08:d8:8b:4f:81:74:df:32:8a:9d:d0:80:
19:9f:6d:df:dd:d3:e4:d4:3e:5b:64:88:aa:c7:14:
5e:21:0d:e2:b3:81:43:6e:c8:61:59:97:e1:e7:40:
2e:36:15:7c:d8:19:8b:e7:9d:1d:1d:9d:1e:47:42:
86:82:46:e5:d5:ec:18:d9:07:82:99:8d:f1:0a:6f:
a3:f5:8c:f2:9f:fa:00:a5:00:2a:dd:83:35:8a:b9:
63:fd:66:76:0a:9b:af:81:a1:00:76:e6:26:45:a3:
15:d7:c9:73:43:d6:28:dc:40:b3:00:8f:b6:72:5b:
d2:75:b0:54:99:73:2a:10:2a:9e:f5:5c:c2:49:cb:
86:46:14:f1:67:d9:58:4e:6d:0a:70:ac:15:c3:b6:
cc:12:c5:95:86:50:32:00:f7:7e:22:3e:f4:45:c5:
38:b0:46:bb:75:67:77:7e:9b:ad:d9:73:e0:84:cc:
e5:cf:96:1e:56:3e:fc:e7:80:2f:e5:8e:23:f6:f9:
f4:b7:ce:c2:1b:d2:4c:db:9f:35:fb:4e:67:de:34:
aa:4f:60:1e:0e:d5:a1:ac:b6:a2:4f:d2:a2:7a:bf:
d2:d2:b2:2b:a5:95:30:80:05:13:8b:e5:62:f4:d9:
95:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EC:78:DF:86:DB:23:19:62:2A:55:43:68:38:92:5E:4E:EE:34:04
X509v3 Authority Key Identifier:
keyid:84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:a5:e9:d4:db:17:30:23:8b:47:7d:cf:b1:68:5d:3c:77:37:
96:11:b2:6a:67:36:8c:a2:95:6d:80:4f:c1:e8:20:66:85:34:
b6:b1:6a:11:bc:1a:ab:fd:33:29:9b:12:c8:21:ad:4e:f9:a9:
29:b8:c6:42:f1:2e:0d:ad:a6:17:af:aa:86:12:de:aa:6b:5e:
38:b4:19:4c:e7:e1:46:a9:57:c1:f8:48:74:80:58:8d:14:9a:
76:6f:30:61:80:a5:fc:64:ec:01:88:7b:fe:bc:0c:f3:1e:d9:
54:ad:56:de:8c:af:0a:f5:e4:61:52:4f:47:b4:47:85:bd:0a:
71:df:7c:c6:a0:bb:62:db:d8:76:53:0d:23:d2:41:76:e6:4d:
d9:76:38:93:22:62:5f:cb:d7:be:20:ec:69:14:50:db:a5:59:
92:78:95:27:34:7d:65:e9:8b:ad:d1:15:1f:15:63:6b:82:9f:
c0:a0:8e:9d:56:43:7b:bd:69:0a:fb:2c:0f:dd:0c:2e:37:65:
54:ba:66:d3:2f:d8:14:85:01:56:54:14:f9:c1:0f:7b:16:44:
b0:e5:93:34:34:32:e3:3a:b0:6a:58:5a:fb:a6:8c:95:2c:8f:
7e:4c:c0:da:7a:82:d5:b7:1e:f1:f8:de:43:00:21:68:50:56:
8a:f4:ec:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n379BQNTY/KDBEWWWSX4aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0Njk1YzgyNTEyOWUzNjU0YTUwOGIzYmM1MjlmZTNhNWIz
ODM5YjEwHhcNMjYwMzI2MDIwMTA3WhcNMjYwMzI3MDIwMTA3WjAzMTEwLwYDVQQD
Eyg3NmVjNzhkZjg2ZGIyMzE5NjIyYTU1NDM2ODM4OTI1ZTRlZWUzNDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMg8mBr8+nrcxrICu/5HnDsI2ItP
gXTfMoqd0IAZn23f3dPk1D5bZIiqxxReIQ3is4FDbshhWZfh50AuNhV82BmL550d
HZ0eR0KGgkbl1ewY2QeCmY3xCm+j9Yzyn/oApQAq3YM1irlj/WZ2CpuvgaEAduYm
RaMV18lzQ9Yo3ECzAI+2clvSdbBUmXMqECqe9VzCScuGRhTxZ9lYTm0KcKwVw7bM
EsWVhlAyAPd+Ij70RcU4sEa7dWd3fput2XPghMzlz5YeVj7854Av5Y4j9vn0t87C
G9JM2581+05n3jSqT2AeDtWhrLaiT9Kier/S0rIrpZUwgAUTi+Vi9NmVeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHbseN+G2yMZYipVQ2g4kl5O7jQEMB8GA1UdIwQY
MBaAFIRpXIJRKeNlSlCLO8Up/jpbODmxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEdsY2dsRXA0MlZLVUlzN3hTbi1PbHM0T2JFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9hMGU5MGYtMjE5OC00NDJlLTk1ZmMt
YjdmNjM0MjNmMTkyLzEvaEdsY2dsRXA0MlZLVUlzN3hTbi1PbHM0T2JFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9hMGU5MGYtMjE5OC00NDJlLTk1ZmMtYjdmNjM0MjNmMTky
LzEvaEdsY2dsRXA0MlZLVUlzN3hTbi1PbHM0T2JFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQaXp1NsX
MCOLR33PsWhdPHc3lhGyamc2jKKVbYBPweggZoU0trFqEbwaq/0zKZsSyCGtTvmp
KbjGQvEuDa2mF6+qhhLeqmteOLQZTOfhRqlXwfhIdIBYjRSadm8wYYCl/GTsAYh7
/rwM8x7ZVK1W3oyvCvXkYVJPR7RHhb0Kcd98xqC7YtvYdlMNI9JBduZN2XY4kyJi
X8vXviDsaRRQ26VZkniVJzR9ZemLrdEVHxVja4KfwKCOnVZDe71pCvssD90MLjdl
VLpm0y/YFIUBVlQU+cEPexZEsOWTNDQy4zqwalha+6aMlSyPfkzA2nqC1bce8fje
QwAhaFBWivTsEQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:31 2026 by rpki-client