Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
File: HdXNKgJh4eYGndd1iU2CbuiDbB4.mft (raw, json)
Hash identifier: VjEiP/tmwfvPA65YLf1bmai1ZD2aKmfe6kkG6iMEDwY=
Subject key identifier: 88:55:FE:0B:0F:4F:CF:51:0E:95:D2:C8:1E:D6:F4:01:96:76:DF:F5
Authority key identifier: 1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
Certificate issuer: /CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Certificate serial: 019D31F536FAF276384C0FAA40DA32D34869
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
Manifest number: 188D
Signing time: Sat 28 Mar 2026 01:00:47 +0000
Manifest this update: Sat 28 Mar 2026 01:00:47 +0000
Manifest next update: Sun 29 Mar 2026 01:00:47 +0000
Files and hashes: 1: 53uXZdGunbCbkFbF5LCIWF6hUow.roa (hash: YdDbEGhWwhK//MEhtCOroEdkE5sIGg0zyX8WVqthVro=)
2: HdXNKgJh4eYGndd1iU2CbuiDbB4.crl (hash: 5CBcAx4aZDNBxXbGLaGZrKa7tBu8rsex1FnDFJpVthI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:31:f5:36:fa:f2:76:38:4c:0f:aa:40:da:32:d3:48:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Validity
Not Before: Mar 28 01:00:47 2026 GMT
Not After : Mar 29 01:00:47 2026 GMT
Subject: CN=8855fe0b0f4fcf510e95d2c81ed6f4019676dff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:75:a5:5f:b0:ea:76:de:27:7d:d2:29:13:d4:
5c:d9:b4:f0:0f:22:ba:53:15:54:9b:82:1a:2f:4a:
12:5f:10:5e:02:65:47:f9:ac:9b:62:ea:c3:0d:59:
3c:2b:95:42:bb:34:96:d8:db:a9:e8:f6:c5:98:34:
3c:14:22:6e:aa:8b:03:7d:a6:8e:ba:96:af:8e:3c:
da:e1:6d:f4:a8:34:d6:78:f0:3b:ae:60:57:dc:59:
2b:aa:49:1a:91:92:8f:8d:ef:47:5d:d5:c2:3e:2b:
18:23:a3:80:72:de:30:41:a7:51:4a:96:b6:b4:9c:
c3:9a:a9:4e:fc:dd:0e:7e:d1:6f:a9:56:f4:84:25:
be:ac:4a:45:0b:ee:de:78:d7:ce:28:05:4f:d8:1a:
20:a1:f9:c2:c5:81:a5:c0:f0:72:5c:0b:ba:c6:ac:
cd:3c:ec:92:e7:09:10:fe:c4:3e:a3:b2:3b:cb:de:
c5:7a:aa:66:2f:d9:3f:b0:b5:4b:d9:8c:ec:14:12:
71:5f:f2:63:0e:5e:d5:f3:d7:b0:9c:1c:80:f6:dd:
fb:97:79:72:e8:de:03:0f:52:74:f0:1d:6a:57:f9:
16:58:75:c7:71:27:fb:a5:0d:30:f4:b6:80:7a:31:
e8:c9:a6:dc:f4:49:62:49:fd:7c:02:b1:4f:7e:4a:
3f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:55:FE:0B:0F:4F:CF:51:0E:95:D2:C8:1E:D6:F4:01:96:76:DF:F5
X509v3 Authority Key Identifier:
keyid:1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:37:ca:75:19:3c:de:e2:73:4b:1b:24:13:f0:3a:ca:23:b4:
41:94:fe:ee:34:ff:d3:45:ae:66:08:14:ec:18:fa:d7:7e:50:
de:77:a7:80:db:51:a7:18:58:a8:95:61:d5:41:64:52:d3:90:
d1:27:d6:fa:c5:71:cc:0b:f6:83:7a:a9:2a:ca:25:e7:48:00:
e6:b3:08:99:15:ca:c9:58:2b:20:fb:f3:c8:02:b4:0a:4c:63:
38:a4:97:bb:20:80:f7:f0:b7:c5:a6:e7:a8:b7:62:9d:da:95:
22:ec:f1:3e:15:d6:b2:bc:93:30:a3:37:e9:2c:8e:09:98:71:
99:2b:04:3d:08:50:ba:b6:76:51:21:67:bb:f4:7a:a6:30:f8:
1a:07:5d:a2:7b:e5:e3:67:24:c0:ab:67:ec:e0:19:da:fb:db:
99:3d:6a:f3:d3:4b:9b:19:93:de:c8:ae:5e:4a:3a:7f:d2:3b:
59:62:e5:4e:b6:82:79:e1:09:0f:fd:f6:0f:84:bc:0e:8e:db:
87:56:20:ca:4d:3b:7b:56:82:0c:07:53:a3:5f:60:72:a3:10:
23:8b:73:0c:31:84:55:bb:91:74:cc:aa:83:04:7d:6b:3f:c8:
69:6c:0d:94:94:98:66:3e:c8:6d:d6:3a:6d:56:40:f7:5c:d0:
c8:f3:90:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:34:09 2026 by rpki-client