Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: fslvIjm2MhNYKMCuJcuLnFP6neaeQflpi2//fpuSet8=
Subject key identifier: ED:2B:CC:33:D5:BE:BE:F5:7A:5E:5B:18:05:5D:43:20:4A:DB:A6:44
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 019D2884AB36F53E773C10A7264D0FE2D697
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 05:01:16 +0000
Manifest this update: Thu 26 Mar 2026 05:01:16 +0000
Manifest next update: Fri 27 Mar 2026 05:01:16 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: VXeuwKtHX03SjYyR48eUrTd4AhG1oGjOgOT+2SmvFm0=)
2: n5ajNi9wA3P70_E15oIv54CXpok.roa (hash: jR2itfiSW5cBnQGOq4LIcSp76PVQGV3oF57lsh5izq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:ab:36:f5:3e:77:3c:10:a7:26:4d:0f:e2:d6:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Mar 26 05:01:16 2026 GMT
Not After : Mar 27 05:01:16 2026 GMT
Subject: CN=ed2bcc33d5bebef57a5e5b18055d43204adba644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a3:fa:01:a9:dc:34:b4:51:00:31:41:b6:a5:
0c:a9:0a:7b:6e:f9:ef:3f:9c:27:3f:57:60:ef:db:
a8:cb:8a:4b:e6:6c:14:e6:4f:06:6e:22:c1:96:7f:
95:c5:4e:36:82:35:db:ea:b8:47:8e:17:32:78:12:
34:11:39:4d:7e:17:a2:8b:f8:f9:59:ee:88:92:f6:
e4:82:ef:34:b3:f2:96:97:80:4b:00:3a:5a:f0:4e:
d2:34:0e:67:2c:58:09:1f:f6:46:97:a3:55:73:20:
26:73:ef:32:84:94:79:ff:4b:b5:e3:d4:00:74:76:
2b:bb:c5:14:2e:fd:1e:82:1c:3f:26:4c:9a:78:c7:
6f:d1:27:4b:98:41:f8:04:10:21:be:93:6d:de:7f:
a0:75:6b:34:8d:c0:d1:af:3d:b6:a8:15:c6:e0:fe:
a5:26:07:dd:48:72:86:fe:32:29:1e:fb:58:f8:82:
96:f2:88:0a:07:bc:55:4a:cd:1c:0d:89:90:c3:20:
a5:9b:b3:e1:3d:5e:cb:16:63:04:9a:e9:6b:81:82:
6b:c8:f2:ce:6f:93:f2:37:a9:a6:01:51:33:f4:90:
b8:2a:e0:75:b6:ee:9a:04:92:b2:1e:27:03:1d:54:
01:f6:e9:61:11:96:ee:17:f4:59:db:79:79:72:48:
92:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2B:CC:33:D5:BE:BE:F5:7A:5E:5B:18:05:5D:43:20:4A:DB:A6:44
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f9:d8:93:54:51:32:06:c0:e3:49:74:9b:26:8f:a3:89:42:
3b:9c:c2:4c:cf:a7:44:49:36:c4:2a:7a:fe:e8:15:fb:81:7f:
35:b2:a8:4f:79:f6:c6:54:93:4d:be:ab:db:2e:72:06:d1:e8:
a0:59:69:52:53:ff:d5:60:04:56:6a:e1:d0:fb:52:d1:f0:96:
98:f9:41:fb:bd:c5:d5:11:8a:27:ce:d3:b1:6f:a7:90:e8:ed:
a9:28:6e:bd:f6:ee:04:af:35:57:35:dc:10:f4:53:c3:b5:ca:
47:2d:86:90:05:c4:85:9b:d9:7c:81:7c:de:1d:83:fd:d5:15:
b0:eb:c8:79:17:17:f0:eb:0e:40:6d:dd:65:23:7f:81:b8:7e:
ec:b9:a8:80:62:24:a0:47:e2:10:45:cd:82:ef:2e:70:a0:00:
ac:aa:1d:4f:d8:b4:45:93:95:e8:a7:88:2e:00:86:d8:e1:4b:
f0:2e:ac:6d:f2:a7:dc:fc:2c:ef:2f:69:ce:9d:d5:e3:db:2c:
f2:5c:53:5a:5c:82:b3:f2:5d:10:3d:d4:3e:7d:a7:30:d1:9f:
dc:c6:d6:9d:25:3f:ca:18:e9:8f:8f:06:bd:02:bb:dd:35:11:
48:34:a0:a8:f6:91:b3:d3:cd:af:f4:28:d0:af:11:4e:63:4e:
03:91:29:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:01 2026 by rpki-client