Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
File: HgClX517dTlrS_oT54lgpaEvTvU.mft (raw, json)
Hash identifier: +jileK3BX2KYgvqdeyy9AXU4UiblhBa7urRdgNdkW24=
Subject key identifier: 30:44:E0:46:DA:30:A9:66:EF:99:E1:F7:71:A7:89:EA:36:7B:3F:5F
Authority key identifier: 1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
Certificate issuer: /CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Certificate serial: 019D2772DBE3CE248DC35A6350B1C713FDAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
Manifest number: 103D
Signing time: Thu 26 Mar 2026 00:02:11 +0000
Manifest this update: Thu 26 Mar 2026 00:02:11 +0000
Manifest next update: Fri 27 Mar 2026 00:02:11 +0000
Files and hashes: 1: HgClX517dTlrS_oT54lgpaEvTvU.crl (hash: xoPRG9t1NJ58gwiGCFlPx/AA0M1m8LdxkUQGl94vkL4=)
2: u_mH6EUqNkqz_nJQ2xMzHjAOs5k.roa (hash: Bwm8rVbQPci5MWzF+kRT+h1fK3xCwzJ+2otJGbrOfJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:db:e3:ce:24:8d:c3:5a:63:50:b1:c7:13:fd:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Validity
Not Before: Mar 26 00:02:11 2026 GMT
Not After : Mar 27 00:02:11 2026 GMT
Subject: CN=3044e046da30a966ef99e1f771a789ea367b3f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7b:b6:bf:39:28:fd:eb:39:68:97:49:c3:a2:
5e:f2:6c:d0:3a:f8:77:1a:1c:19:3f:85:a9:68:2b:
81:b0:9e:19:d9:9b:ee:51:7b:ec:d7:23:56:e5:1f:
12:80:a0:81:bd:26:da:63:85:d5:7e:75:ed:72:6a:
82:ba:9c:4f:99:3b:0d:2e:74:6e:86:ea:14:6c:06:
2a:98:5a:75:32:e2:d1:e5:0c:43:64:8f:5b:ba:19:
5b:fe:d1:bd:a7:00:55:15:70:2c:f7:35:0d:86:22:
09:02:9a:51:c0:b9:b0:16:2a:fe:f5:67:13:1a:51:
e9:f7:e5:af:fb:11:5b:67:10:1d:cb:7b:a1:99:72:
66:dc:d3:ae:cd:44:9e:fd:3b:b9:12:e4:56:d6:21:
c2:6a:1c:a7:be:56:63:ad:14:8f:6e:ad:7f:3d:83:
b1:2e:98:c4:45:84:f6:41:dd:89:78:ac:8c:7c:7d:
7b:71:b2:0a:c9:cc:f1:85:49:44:9a:42:5a:74:f2:
ea:d1:3e:ca:6c:fd:51:af:5e:30:47:4c:29:a0:5e:
d1:66:6e:53:ca:ca:6c:20:c8:19:09:c6:11:42:20:
99:0c:16:d9:32:2c:df:60:1a:b7:c4:07:95:32:4a:
08:fb:c1:2d:19:c3:45:60:12:93:8f:af:a1:a0:6a:
28:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:44:E0:46:DA:30:A9:66:EF:99:E1:F7:71:A7:89:EA:36:7B:3F:5F
X509v3 Authority Key Identifier:
keyid:1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:4e:f0:7e:42:83:20:ce:f4:38:34:84:a5:3e:88:4f:7e:80:
84:d6:4b:4e:20:8b:99:67:c1:7c:14:91:70:fb:e3:27:9a:ae:
f6:35:81:15:b8:c0:b8:36:b8:ac:e5:b5:2b:b2:ff:f7:9a:48:
7d:95:61:41:cc:7c:38:b1:e2:4c:6a:3c:ee:d6:a5:a6:8a:fa:
32:d3:3a:d6:bb:05:a7:8b:cb:06:be:57:28:a1:03:12:7a:5e:
0a:18:91:42:de:78:6e:66:2b:40:09:3a:d3:f6:91:8f:a5:41:
a1:0f:c2:19:e1:e5:93:b2:a1:e5:0a:a6:24:db:93:f8:b8:0f:
6c:82:2a:b3:9e:8c:18:2d:6f:5d:94:a0:da:b1:46:ce:de:61:
10:19:23:75:0c:f4:e4:9c:a5:c0:8f:6e:91:0a:b2:41:4a:52:
f4:22:1e:05:b5:e6:44:c2:7e:78:b7:13:ed:bb:c5:f9:81:1b:
18:10:fd:69:24:21:57:83:65:48:4f:3b:10:42:0f:eb:a6:b0:
d1:d3:34:44:a7:89:d6:82:74:92:0b:85:c0:fc:97:75:a4:2f:
bd:d8:6c:47:d5:56:cc:a6:47:c5:18:18:8a:aa:c3:2e:be:f7:
00:a5:cb:28:83:18:56:bb:0c:ef:5c:10:65:26:81:c5:fd:ea:
5c:cc:a1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:30:55 2026 by rpki-client