Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: CReB6M1X0jSQQkFXeka815gQNZq1gX5fFrfYA8eGrfc=
Subject key identifier: 51:CF:6B:93:0B:AC:1A:1E:0B:35:C9:92:9A:C2:DA:73:ED:8A:F4:23
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 019D2996D5B9AFC214CF8F1D489CCDB19CC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 15D4
Signing time: Thu 26 Mar 2026 10:00:43 +0000
Manifest this update: Thu 26 Mar 2026 10:00:43 +0000
Manifest next update: Fri 27 Mar 2026 10:00:43 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: D3YzNr6yMsGyp7wwU12R8ZGU/y9jobXqCIJZvtCQ0Ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:d5:b9:af:c2:14:cf:8f:1d:48:9c:cd:b1:9c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Mar 26 10:00:43 2026 GMT
Not After : Mar 27 10:00:43 2026 GMT
Subject: CN=51cf6b930bac1a1e0b35c9929ac2da73ed8af423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:82:b5:a6:6f:56:21:e4:20:53:8e:96:e3:5c:
57:e4:c2:fb:1e:e8:d2:f9:17:48:61:66:f3:90:7d:
42:f8:ac:8b:83:a5:ab:69:41:86:cb:b8:73:b0:c6:
86:fa:27:d2:18:a9:a1:eb:bd:53:32:1f:20:94:43:
2f:77:d0:89:8a:a8:ac:42:40:a4:a5:3c:88:8a:ca:
53:26:3c:55:da:bd:a0:1f:87:44:58:b0:af:8e:da:
bb:8f:39:19:67:5a:46:be:2d:47:2f:ff:b4:c9:41:
12:ab:af:2d:c3:09:3a:b7:21:2c:91:f8:f2:58:01:
d2:ab:3c:b6:7b:7a:be:97:60:9e:e5:4e:23:c3:35:
6b:f3:a5:ee:3c:0e:8a:fc:1f:51:15:13:02:f2:b6:
1a:82:59:e3:b9:8e:42:fa:56:bf:ff:36:ff:78:72:
25:7b:a7:5b:a1:ce:48:43:65:35:2d:06:e1:c6:a2:
70:c1:61:95:16:ca:2d:1c:a0:ad:e3:19:21:ef:5a:
3c:4b:6e:2b:3d:c0:fb:24:d8:cb:e1:48:70:38:2f:
79:10:bb:8e:98:67:f7:f6:74:1c:a8:58:d4:22:53:
8f:ff:b5:55:ed:64:56:25:4d:6b:b9:f9:5a:d2:d5:
f4:5b:34:d2:54:2a:5b:d3:c0:0f:0f:65:31:20:1c:
6a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CF:6B:93:0B:AC:1A:1E:0B:35:C9:92:9A:C2:DA:73:ED:8A:F4:23
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:71:ff:13:5d:b9:1e:ec:d0:73:4f:bb:9b:5b:c6:06:1a:f8:
9a:67:71:c9:6f:7b:2a:34:34:8b:67:c6:1d:7e:05:4f:6c:7f:
24:a9:f1:39:bd:97:df:e2:c5:3f:86:b2:72:fb:6f:32:fd:43:
ad:15:6e:f8:51:76:33:b3:c5:c2:1e:c6:83:8f:b0:b7:94:ba:
cc:33:d4:5e:1c:d5:27:4b:a0:6f:b0:ae:5f:23:26:af:d5:a6:
c7:e9:25:eb:35:ad:83:06:72:84:6a:c8:cb:bf:f1:e9:a1:20:
32:22:2c:87:52:86:7d:95:f6:45:d6:53:09:0b:cf:f5:5c:94:
a3:61:01:e2:90:32:ab:7c:33:17:af:cc:f4:d3:8f:99:58:0e:
8d:a2:5c:26:84:8c:43:05:59:79:55:cf:4c:59:a6:6b:a6:2b:
c7:e6:09:53:bc:03:71:bf:60:c5:4b:93:f6:3e:a0:9e:33:c7:
5e:dd:25:3d:e7:19:a5:5e:83:d6:05:9f:1a:19:86:5a:81:16:
ad:dd:0f:97:bb:a9:a6:0e:ce:9f:61:4d:22:5b:a9:d7:c1:20:
d0:73:93:4e:09:cf:e4:d0:d7:a1:02:30:bd:c8:e0:f9:c0:39:
ac:7e:07:20:05:be:35:80:2a:54:73:da:ae:d4:bb:9e:f1:f4:
37:b1:63:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pltW5r8IUz48dSJzNsZzDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMGMzOTFlZGQ1Y2JlZTFhMTRlMGFiM2Y5M2Q4MzRmYWU1
MTFlNGQwHhcNMjYwMzI2MTAwMDQzWhcNMjYwMzI3MTAwMDQzWjAzMTEwLwYDVQQD
Eyg1MWNmNmI5MzBiYWMxYTFlMGIzNWM5OTI5YWMyZGE3M2VkOGFmNDIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYK1pm9WIeQgU46W41xX5ML7HujS
+RdIYWbzkH1C+KyLg6WraUGGy7hzsMaG+ifSGKmh671TMh8glEMvd9CJiqisQkCk
pTyIispTJjxV2r2gH4dEWLCvjtq7jzkZZ1pGvi1HL/+0yUESq68twwk6tyEskfjy
WAHSqzy2e3q+l2Ce5U4jwzVr86XuPA6K/B9RFRMC8rYaglnjuY5C+la//zb/eHIl
e6dboc5IQ2U1LQbhxqJwwWGVFsotHKCt4xkh71o8S24rPcD7JNjL4UhwOC95ELuO
mGf39nQcqFjUIlOP/7VV7WRWJU1rufla0tX0WzTSVCpb08APD2UxIBxqswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFHPa5MLrBoeCzXJkprC2nPtivQjMB8GA1UdIwQY
MBaAFB0MOR7dXL7hoU4Ks/k9g0+uUR5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQt
MGY4OTllMGMyMGNkLzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQtMGY4OTllMGMyMGNk
LzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArHH/E125
HuzQc0+7m1vGBhr4mmdxyW97KjQ0i2fGHX4FT2x/JKnxOb2X3+LFP4aycvtvMv1D
rRVu+FF2M7PFwh7Gg4+wt5S6zDPUXhzVJ0ugb7CuXyMmr9Wmx+kl6zWtgwZyhGrI
y7/x6aEgMiIsh1KGfZX2RdZTCQvP9VyUo2EB4pAyq3wzF6/M9NOPmVgOjaJcJoSM
QwVZeVXPTFmma6Yrx+YJU7wDcb9gxUuT9j6gnjPHXt0lPecZpV6D1gWfGhmGWoEW
rd0Pl7uppg7On2FNIlup18Eg0HOTTgnP5NDXoQIwvcjg+cA5rH4HIAW+NYAqVHPa
rtS7nvH0N7FjoA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:22:40 2026 by rpki-client