Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: EGTZpmZvZSCQ7IdrViXDabqzezCxcLYuYidkugb0K60=
Subject key identifier: D4:64:B7:A1:B7:56:17:25:14:09:E9:71:43:4D:5F:A2:33:BC:B0:22
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 019D2A3B40496D2AD2A4833027BADE4BA3DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 13:00:19 +0000
Manifest this update: Thu 26 Mar 2026 13:00:19 +0000
Manifest next update: Fri 27 Mar 2026 13:00:19 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: KwuLv6DID7OcHKZWiKn3yO01mATwic666IJwt4QCJbs=)
2: z_fYCrrGSV54cj1knb3xBk4SK5U.roa (hash: EFlql6uKuI4YQL66OtBnNw+c0chssYW8DVC7ieJRlbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:40:49:6d:2a:d2:a4:83:30:27:ba:de:4b:a3:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Mar 26 13:00:19 2026 GMT
Not After : Mar 27 13:00:19 2026 GMT
Subject: CN=d464b7a1b75617251409e971434d5fa233bcb022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0b:0a:2e:85:bf:ac:9a:51:aa:fb:0a:ed:39:
97:20:0a:3e:8e:c8:8e:73:cb:5e:da:3a:73:02:e6:
b9:83:a6:98:8b:88:c2:1d:a1:6e:40:c4:fb:e9:25:
6e:3b:bb:61:8f:b7:82:7c:48:c0:fa:67:fb:6d:c0:
cf:fc:ef:e5:7d:fc:81:1e:5d:39:d9:9f:36:16:1d:
2b:98:9c:27:d1:19:00:d1:af:0c:28:83:f0:5b:31:
89:35:a2:1b:32:e5:bd:46:85:5f:53:b5:60:10:ed:
5c:a5:a0:9e:e6:19:96:ef:95:77:93:26:2b:4a:cf:
12:40:4a:e0:4f:41:99:08:9c:44:bf:26:20:ce:61:
a2:84:0c:40:ca:92:ec:a0:db:bc:ed:cf:8a:71:67:
96:b5:ea:74:97:ce:bc:cd:d4:50:52:a7:b6:fc:42:
aa:aa:33:37:c4:71:dc:e5:68:0f:61:61:42:16:27:
9c:81:61:28:4c:08:65:28:67:28:08:a4:46:f6:2a:
e6:64:88:b4:50:d3:c0:ce:3e:69:42:2b:56:c2:09:
80:0c:23:5c:d8:e7:75:7c:88:4d:49:2c:31:a3:2d:
5f:f2:d5:a5:69:57:83:04:f4:a7:2d:df:3c:d1:94:
3d:2a:ea:72:3a:14:ac:bb:a6:35:3f:53:1c:05:1c:
e2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:64:B7:A1:B7:56:17:25:14:09:E9:71:43:4D:5F:A2:33:BC:B0:22
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:e8:49:9b:e1:49:66:b3:ae:5a:06:c7:21:91:82:d4:2a:22:
29:4b:f5:e0:fa:24:ea:d1:a3:a0:54:ab:56:00:54:c4:f9:a7:
b1:e1:cb:02:1f:30:ba:d4:cb:cc:11:ce:28:e3:30:83:08:7e:
98:3f:f9:c8:50:91:16:82:78:4e:4c:f5:a8:e3:a2:81:db:de:
a1:03:6c:72:01:1c:6b:16:c4:cd:b2:f3:e0:b5:26:8d:2a:46:
ef:32:89:72:6d:9c:6e:2c:14:2f:f9:bb:a0:23:f6:08:db:e9:
dd:de:2e:3c:4e:88:a8:8d:b1:6f:8d:2c:78:93:0c:90:c2:dc:
91:b7:4c:17:83:69:d9:c4:0a:bd:44:31:ca:2f:21:2d:93:8a:
e3:af:c9:82:30:11:79:3b:f3:2c:81:ff:fe:95:9f:97:23:5e:
87:4d:41:7c:82:27:75:87:b5:6c:6e:ac:1e:70:5c:70:2b:86:
c6:45:f8:ba:b3:2c:b5:28:31:17:13:da:ed:fb:69:ef:17:6a:
2e:3f:20:e5:c0:ec:94:ad:84:be:f7:1f:d2:ec:e8:b3:cb:b7:
f6:40:3d:ec:31:5b:fe:18:2a:b6:34:19:07:e2:ef:0a:d8:91:
86:06:d5:50:ed:8e:1a:02:fb:df:3e:93:f2:cf:b1:5c:90:78:
0c:3d:91:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qO0BJbSrSpIMwJ7reS6PfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0OTIwMjEzY2IyMzBiZmU1MTEyMWNlNWZiNGRlY2UyODAx
OGJlZDAwHhcNMjYwMzI2MTMwMDE5WhcNMjYwMzI3MTMwMDE5WjAzMTEwLwYDVQQD
EyhkNDY0YjdhMWI3NTYxNzI1MTQwOWU5NzE0MzRkNWZhMjMzYmNiMDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQsKLoW/rJpRqvsK7TmXIAo+jsiO
c8te2jpzAua5g6aYi4jCHaFuQMT76SVuO7thj7eCfEjA+mf7bcDP/O/lffyBHl05
2Z82Fh0rmJwn0RkA0a8MKIPwWzGJNaIbMuW9RoVfU7VgEO1cpaCe5hmW75V3kyYr
Ss8SQErgT0GZCJxEvyYgzmGihAxAypLsoNu87c+KcWeWtep0l868zdRQUqe2/EKq
qjM3xHHc5WgPYWFCFiecgWEoTAhlKGcoCKRG9irmZIi0UNPAzj5pQitWwgmADCNc
2Od1fIhNSSwxoy1f8tWlaVeDBPSnLd880ZQ9KupyOhSsu6Y1P1McBRzidwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNRkt6G3VhclFAnpcUNNX6IzvLAiMB8GA1UdIwQY
MBaAFISSAhPLIwv+URIc5ftN7OKAGL7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYt
YjA0YjRkMDQzZjlmLzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYtYjA0YjRkMDQzZjlm
LzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbehJm+FJ
ZrOuWgbHIZGC1CoiKUv14Pok6tGjoFSrVgBUxPmnseHLAh8wutTLzBHOKOMwgwh+
mD/5yFCRFoJ4Tkz1qOOigdveoQNscgEcaxbEzbLz4LUmjSpG7zKJcm2cbiwUL/m7
oCP2CNvp3d4uPE6IqI2xb40seJMMkMLckbdMF4Np2cQKvUQxyi8hLZOK46/JgjAR
eTvzLIH//pWflyNeh01BfIIndYe1bG6sHnBccCuGxkX4urMstSgxFxPa7ftp7xdq
Lj8g5cDslK2Evvcf0uzos8u39kA97DFb/hgqtjQZB+LvCtiRhgbVUO2OGgL73z6T
8s+xXJB4DD2RrA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 21:49:06 2026 by rpki-client