Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: tu850Z0EHjjWiLxUcSWOVW55m5bH46xhW7w1x/jAaRE=
Subject key identifier: 1A:72:8A:FB:05:76:92:A5:5A:1E:23:BF:6D:58:51:F1:FB:4D:D9:DD
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 019D265F0DC2662150B5F3870699A03FB2BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0907
Signing time: Wed 25 Mar 2026 19:00:56 +0000
Manifest this update: Wed 25 Mar 2026 19:00:56 +0000
Manifest next update: Thu 26 Mar 2026 19:00:56 +0000
Files and hashes: 1: DLumB3dr6jlfHoiS9Gw_fIJrHvk.roa (hash: 5nKHF0MVunEP7PYJoKkfoQt8SYyn/TqTcUA4jgE0VRw=)
2: VMwkQbgZsaD1modLD1OCZoOdaP0.roa (hash: hFT/2DxMA5YwrG6LBI7zWfiz+2OyUaLWWeHm7RJ0nXg=)
3: cPKzl4MAM1VPvGgqdoHotmjF_TQ.roa (hash: Kwq91RaELM7PU5xhh1ZgTtP0NFXJmqvp86LKfBSRLfM=)
4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: MmMeJbWfeduOAXThquBGgC+Ey8nRJLL6k3nW0ywL3u0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:0d:c2:66:21:50:b5:f3:87:06:99:a0:3f:b2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Mar 25 19:00:56 2026 GMT
Not After : Mar 26 19:00:56 2026 GMT
Subject: CN=1a728afb057692a55a1e23bf6d5851f1fb4dd9dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:43:b7:59:31:6b:a1:ad:00:d7:02:89:db:36:
79:6b:15:62:af:8a:99:bf:b4:2b:32:3d:c3:08:95:
60:13:ea:be:cf:a2:41:cd:ed:0d:72:84:6b:eb:b7:
a2:72:fb:32:12:f7:08:88:da:10:2d:af:48:b6:01:
d9:d0:bf:b3:69:fa:b9:56:af:97:1d:29:96:ad:91:
f5:2f:42:c7:07:fd:aa:5c:95:e2:26:4b:33:a0:7c:
ca:74:5c:b5:18:f7:fe:d2:f7:67:28:1b:bf:b4:7d:
6b:58:f2:aa:8b:be:b8:02:19:c7:c8:be:46:f0:40:
7d:23:4f:fe:1a:2c:ce:57:29:66:6b:d2:e2:a6:9a:
94:7e:99:bd:4a:55:f8:4f:8e:95:79:c4:53:bc:67:
40:e7:a1:19:d7:3c:d6:43:1d:a3:f7:ad:69:1d:ea:
59:a6:fc:b8:d8:29:a8:46:8a:54:44:2a:c9:7a:3f:
da:ab:0c:02:d9:2e:24:1d:4c:47:a2:60:40:63:3c:
98:af:af:1d:a5:fb:06:b4:c5:f1:d4:75:91:3f:72:
68:e8:f5:32:b2:11:49:78:a5:27:6a:83:49:69:a8:
59:0c:f9:17:be:a9:2b:e5:f7:85:ae:d3:b8:57:d4:
e4:e4:c7:1b:a5:a8:9d:7d:0b:c2:b3:8d:be:1a:85:
67:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:72:8A:FB:05:76:92:A5:5A:1E:23:BF:6D:58:51:F1:FB:4D:D9:DD
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d1:5c:c2:ee:c3:b3:af:7b:bd:dd:a0:69:7b:d0:8e:5c:a6:
37:4b:84:e3:51:6a:b6:22:3b:4b:20:44:79:67:d1:ac:59:75:
f2:dc:2a:f8:c0:bb:21:95:a0:6a:cb:04:ef:71:00:ad:ab:09:
2e:3e:57:1a:f5:e4:4d:9f:c7:73:04:48:7c:dd:1f:54:f8:5a:
97:f3:d5:9c:6c:6d:22:54:2d:3e:1d:5c:38:61:81:f7:0d:6b:
62:37:4d:e1:b7:0a:59:24:0a:2e:3d:53:c3:6c:a8:b0:73:2b:
92:4f:06:90:96:4e:1a:37:33:a1:50:3f:59:6d:f7:fb:6d:ca:
3c:7b:28:f4:85:f0:43:51:5b:31:eb:97:e0:8f:7d:dc:85:08:
9c:b1:50:df:57:c9:28:1d:81:ee:5a:60:3a:8a:65:aa:08:1e:
65:1d:87:81:9a:fa:70:7d:a9:ac:59:16:36:54:26:21:17:b1:
a6:13:b6:be:8c:6c:39:02:ee:1d:36:a2:c5:02:26:6e:58:05:
de:de:ce:0c:b0:65:02:1a:1c:3e:6a:71:2b:a0:39:5f:a4:e7:
12:c3:04:62:ea:9f:a1:5a:c2:27:78:c9:21:89:0a:99:05:9a:
00:93:90:16:2a:f2:ed:ea:ff:e1:f7:68:67:d6:1f:3b:74:e4:
ec:7b:ed:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:35 2026 by rpki-client