Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: C8Pkgh3MEIZRVGpjqT1UedO1aRS5HEJTMGRDd1VO1KI=
Subject key identifier: A7:A3:98:E7:60:4F:5B:95:A2:44:58:13:0B:ED:D8:5F:70:65:E4:52
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019D3307DAD32BFC84011223D6FCA4196CB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 0435
Signing time: Sat 28 Mar 2026 06:00:45 +0000
Manifest this update: Sat 28 Mar 2026 06:00:45 +0000
Manifest next update: Sun 29 Mar 2026 06:00:45 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: SDOazPN9fYpNeCjO7SnuDu9fCM0rOwwOFugkMXjyW8Q=)
2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:07:da:d3:2b:fc:84:01:12:23:d6:fc:a4:19:6c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Mar 28 06:00:45 2026 GMT
Not After : Mar 29 06:00:45 2026 GMT
Subject: CN=a7a398e7604f5b95a24458130bedd85f7065e452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d2:4f:91:d6:12:4a:41:6e:f6:98:d8:98:47:
0c:9a:9e:44:19:b5:53:1c:95:3d:04:90:61:24:29:
5f:c0:22:2b:97:d6:e2:2b:21:0e:b2:2b:1a:94:6d:
e5:0b:b3:ae:02:aa:bd:e8:68:40:db:17:18:70:99:
cb:7a:d2:7e:98:13:a2:92:ac:f1:df:d3:b5:34:5b:
9d:ac:a8:27:ea:8e:41:e3:f1:1e:eb:87:7a:a2:8e:
e8:c2:3d:85:5f:3c:7b:a9:c8:76:47:8f:3f:9e:da:
bf:10:51:9d:c7:96:48:48:c1:a6:15:d3:9f:8e:30:
a0:11:06:be:35:0f:ff:f3:80:93:c8:18:ac:d2:02:
69:ff:50:92:0e:c1:43:b6:3f:b0:1f:3b:43:c4:1c:
93:82:ad:96:d0:cb:d2:90:57:9d:af:d0:db:3c:59:
82:6e:d3:8d:68:f1:4d:dc:23:be:d4:70:57:dc:5b:
72:2d:6f:29:bb:59:8c:66:75:42:bc:11:2e:fb:d3:
eb:c1:84:24:83:90:1a:8d:f1:aa:75:60:a6:42:ed:
ad:ba:77:c8:3c:f7:87:d8:cc:58:da:26:bc:1b:46:
ff:30:5f:93:46:ee:35:be:5b:14:3e:36:76:e8:08:
95:b8:55:8e:3a:4d:40:1e:62:36:a8:fc:74:e5:b3:
2d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:A3:98:E7:60:4F:5B:95:A2:44:58:13:0B:ED:D8:5F:70:65:E4:52
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:13:23:4b:be:7d:9c:7b:7a:e6:a2:73:a1:6c:0d:a6:25:f7:
e3:41:60:10:66:8f:22:be:28:f7:c2:6f:10:5f:14:33:95:7f:
fc:65:ee:d9:a9:ba:b6:f2:ca:9f:d9:43:df:d7:32:f6:c1:07:
a0:3a:7d:ec:31:56:61:0e:87:b0:42:43:ac:1d:1d:a4:2e:67:
db:e8:1f:eb:41:36:26:e4:49:06:58:07:fd:42:62:c3:e0:45:
44:d7:49:f1:87:ae:14:71:0d:65:92:1f:fb:d3:f8:cc:2b:32:
05:a5:82:ca:56:33:86:a1:c4:29:7f:db:3d:51:58:10:a2:20:
20:72:b4:33:9a:7f:05:26:f2:28:82:c2:d8:2a:98:a4:f3:d9:
92:45:dc:e5:d5:f9:12:2c:89:15:85:88:e1:86:8f:97:7b:bc:
05:77:a8:58:47:37:76:ac:f0:58:71:09:e0:46:f0:4e:ee:4f:
a4:00:e6:3b:11:e7:c0:5f:99:96:ef:95:e9:52:c6:d5:bb:7c:
2c:bb:43:47:ab:a7:65:f5:f9:ac:bd:08:15:0c:11:74:c6:f8:
29:a6:20:19:d8:98:65:ba:57:c5:01:0c:81:ca:02:92:e3:da:
53:99:dd:43:1f:ed:96:77:3c:83:9d:e0:4a:d2:4e:cf:d8:9d:
40:76:ac:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:29:37 2026 by rpki-client