Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: YGm3UauyXbKcYrPam4mkplyJGO6VJuuZM8h3kMOOzs8=
Subject key identifier: D2:62:DD:12:B8:08:52:47:15:5D:C5:0E:B8:F4:DD:66:AC:EF:8B:B4
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 019D2A729C0C3623B5C0FB9F8E27E6CC3EAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 12C4
Signing time: Thu 26 Mar 2026 14:00:47 +0000
Manifest this update: Thu 26 Mar 2026 14:00:47 +0000
Manifest next update: Fri 27 Mar 2026 14:00:47 +0000
Files and hashes: 1: 4dg4kAKJ8YSOGy8c68PKhEx34vE.roa (hash: ry2ttY5wtlmGli2qcFEKHyBaFD3fHmgeyUWAJ6+46jE=)
2: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: ykceGKVnFwoLOoFlYXqJNxX2TyDqI5jUIIbEr43aN+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:9c:0c:36:23:b5:c0:fb:9f:8e:27:e6:cc:3e:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Mar 26 14:00:47 2026 GMT
Not After : Mar 27 14:00:47 2026 GMT
Subject: CN=d262dd12b8085247155dc50eb8f4dd66acef8bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0b:e0:78:d1:29:22:56:06:0d:be:a4:62:f4:
ce:a8:bf:87:16:14:86:76:01:0a:f9:f7:3c:03:6c:
4a:c0:62:ff:37:71:35:8a:34:25:15:0a:71:99:10:
cc:32:91:ff:09:a7:e1:cd:fe:28:1a:15:9a:78:c6:
6f:14:69:65:7b:b1:93:a0:c1:45:cf:10:fb:1d:49:
0a:d6:a6:98:63:5b:19:c4:89:99:77:fd:db:90:67:
7e:06:7e:8a:47:93:8c:82:59:ba:e6:29:e9:54:92:
ce:c4:77:88:6f:80:40:55:c4:37:3b:07:47:40:9c:
56:25:8f:66:29:51:9e:02:7e:99:d5:9c:3e:bc:a4:
6a:82:4b:dd:44:6a:d6:be:7a:d3:84:1a:a1:df:92:
7d:91:65:7a:b9:c3:95:73:58:54:64:ad:88:f1:f9:
cd:cc:26:05:2f:46:e5:97:14:12:5d:4e:85:dd:ed:
c8:b3:e0:2b:18:b2:04:fb:c2:aa:ef:58:c2:92:d8:
56:a8:70:89:a5:89:f8:32:8d:32:47:be:7a:80:7f:
61:3b:b0:ba:68:f6:ef:ce:bf:23:11:9d:fc:13:d5:
76:3d:89:97:f4:e1:16:38:8f:9d:b6:d4:29:9c:bb:
bc:06:b0:3a:3d:30:e4:05:5c:81:fe:c2:80:2f:7b:
1e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:62:DD:12:B8:08:52:47:15:5D:C5:0E:B8:F4:DD:66:AC:EF:8B:B4
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:77:b5:97:45:c7:68:e0:e0:e6:f4:73:d0:aa:b4:01:78:e8:
22:22:12:12:2e:35:9a:03:a3:e8:8a:5b:f4:c3:1c:32:aa:6d:
dc:86:9b:81:95:e6:8b:f2:ca:6c:37:fa:6f:ad:ab:57:00:fa:
4f:68:23:eb:6f:69:76:98:ce:2e:b7:51:7d:2c:ff:2b:1b:1d:
73:2e:55:6a:04:ef:f3:37:38:8c:a1:b8:3c:c3:6b:7d:c7:ee:
d1:79:6f:ff:2a:8e:90:76:96:33:8f:31:ba:70:0b:c5:5a:25:
49:ea:62:29:71:b0:a2:2e:39:56:d9:ad:3b:65:b3:90:b1:be:
f8:30:57:b9:64:f7:d3:34:63:56:1b:91:17:29:d0:2f:d4:ba:
1b:f7:2c:de:9c:d4:08:e9:3b:2c:04:e4:7c:91:bb:a6:69:ee:
84:5d:05:a2:8d:c6:84:cc:d8:b4:ee:d9:05:42:09:43:ec:9f:
d5:f9:de:fb:b4:c7:c0:e3:a5:51:c2:4d:d6:87:b4:4d:45:d6:
03:19:33:c7:17:eb:ce:31:e2:7b:18:d0:e7:94:b7:08:19:8f:
1e:a3:8f:ae:1a:dc:a2:a3:bf:cc:ea:76:59:50:0a:b6:d8:36:
b9:39:23:0d:ab:27:d4:a8:8f:53:f0:4d:bc:0a:ca:0e:c9:94:
1c:5b:da:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:30:23 2026 by rpki-client