Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
File: HDepAm5Fto_kc1pGm3VjYTCtElw.mft (raw, json)
Hash identifier: 486PgPJu9egFrGrKd5phY2rspI6zKCMkouMR5H4OHy8=
Subject key identifier: 23:6C:00:47:4E:7E:5E:95:62:A1:0C:3C:2D:6D:DB:A8:33:8F:3C:E6
Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c
Certificate serial: 019D2960D0D71253051C59A07E7760771241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
Manifest number: 0BC1
Signing time: Thu 26 Mar 2026 09:01:43 +0000
Manifest this update: Thu 26 Mar 2026 09:01:43 +0000
Manifest next update: Fri 27 Mar 2026 09:01:43 +0000
Files and hashes: 1: 2k061tGHc03Ey0V3NX4-GnPnNBc.roa (hash: cqhlKMqnXJOJCr7N4xEDssiNgQoWfirNtnOj+DZf3Xk=)
2: HDepAm5Fto_kc1pGm3VjYTCtElw.crl (hash: eJotP3Lpd0yR2K4rtc/mqq5F72bJx8ngXk+mRSr0sUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:d0:d7:12:53:05:1c:59:a0:7e:77:60:77:12:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c
Validity
Not Before: Mar 26 09:01:43 2026 GMT
Not After : Mar 27 09:01:43 2026 GMT
Subject: CN=236c00474e7e5e9562a10c3c2d6ddba8338f3ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bd:30:c0:93:79:2b:db:2e:55:05:55:48:95:
bc:2e:c6:8c:b9:18:89:34:9a:b7:0b:6a:69:65:2e:
d6:8c:05:b7:c0:cf:cc:f2:a7:3a:c3:57:1c:df:cf:
32:86:b4:de:55:03:5e:45:9a:28:f1:f8:7a:57:ec:
24:bb:50:61:c8:99:a1:e1:73:23:2e:f7:2b:d8:d0:
17:1e:6c:f1:99:83:a2:a7:bb:29:f6:5c:54:56:37:
42:bd:fb:8e:38:6d:8a:bf:55:4f:c3:d9:6e:a4:9f:
82:4f:0c:84:70:e3:37:2e:08:5a:1b:0a:de:ad:c7:
cd:16:c9:1a:b3:51:35:94:d3:e5:3c:a1:18:09:58:
9f:5a:e0:5c:d1:c5:35:06:ea:04:da:11:53:3d:41:
3b:ef:cc:7c:b2:e6:84:ef:20:cf:20:12:de:e7:21:
c1:66:8a:b8:ee:76:7e:14:64:0b:c2:d0:f2:31:9f:
bf:f2:7b:7c:a9:c6:15:8c:d4:bf:2c:de:83:75:8b:
79:29:b4:ab:1f:7e:18:07:2c:7b:7e:ed:00:99:91:
a9:2d:0f:da:23:79:47:a8:2e:41:07:24:03:8c:8c:
4b:c3:7f:69:4c:34:54:b2:45:cf:db:3c:e9:d5:d6:
bf:fe:d8:92:a9:c8:d9:1a:ed:b7:ec:27:87:42:84:
86:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:6C:00:47:4E:7E:5E:95:62:A1:0C:3C:2D:6D:DB:A8:33:8F:3C:E6
X509v3 Authority Key Identifier:
keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:f5:e0:27:54:f6:d6:4c:c2:b0:e9:aa:6b:8e:bd:be:1e:a0:
fb:16:da:35:b9:9c:c7:f1:23:c7:ab:7d:08:09:3f:ae:ee:b0:
81:f6:1b:2a:52:9a:ac:dd:4a:b7:f8:fb:27:6f:f9:51:d4:ae:
80:a6:ed:58:6d:4f:b6:3d:7e:cc:a9:10:91:79:d4:5e:21:a1:
1e:26:fa:a4:64:d3:81:90:e8:ca:60:32:a9:65:4d:5c:b8:47:
40:d9:d5:48:91:e4:ae:b9:cd:65:29:64:e8:d3:fc:9c:7f:1d:
52:40:8a:f5:3e:4e:59:53:79:b3:7a:f3:ae:7e:03:e8:33:0c:
01:16:a7:fb:2a:51:eb:ef:74:fa:5c:52:cc:d3:e9:e3:60:9e:
e8:63:83:d2:7c:bd:d0:03:5c:15:1f:29:bb:bc:84:8e:fc:a6:
75:c7:9b:c0:c8:0f:4c:f6:3d:8b:9d:24:ef:c3:4a:67:16:14:
b3:b1:13:d0:d2:ab:9b:de:6e:24:85:a7:1b:a2:ef:50:89:92:
17:cf:9d:83:b9:fc:da:20:d9:88:dc:ad:e0:e9:ad:c4:aa:67:
9e:b3:fc:bd:19:8a:e7:a9:28:37:e8:6f:e0:8b:8f:64:90:58:
80:bb:3c:5b:61:22:77:8d:dc:a1:72:be:85:c1:03:94:91:84:
6f:cd:06:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYNDXElMFHFmgfndgdxJBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMzdhOTAyNmU0NWI2OGZlNDczNWE0NjliNzU2MzYxMzBh
ZDEyNWMwHhcNMjYwMzI2MDkwMTQzWhcNMjYwMzI3MDkwMTQzWjAzMTEwLwYDVQQD
EygyMzZjMDA0NzRlN2U1ZTk1NjJhMTBjM2MyZDZkZGJhODMzOGYzY2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn70wwJN5K9suVQVVSJW8LsaMuRiJ
NJq3C2ppZS7WjAW3wM/M8qc6w1cc388yhrTeVQNeRZoo8fh6V+wku1BhyJmh4XMj
Lvcr2NAXHmzxmYOip7sp9lxUVjdCvfuOOG2Kv1VPw9lupJ+CTwyEcOM3LghaGwre
rcfNFskas1E1lNPlPKEYCVifWuBc0cU1BuoE2hFTPUE778x8suaE7yDPIBLe5yHB
Zoq47nZ+FGQLwtDyMZ+/8nt8qcYVjNS/LN6DdYt5KbSrH34YByx7fu0AmZGpLQ/a
I3lHqC5BByQDjIxLw39pTDRUskXP2zzp1da//tiSqcjZGu237CeHQoSGRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCNsAEdOfl6VYqEMPC1t26gzjzzmMB8GA1UdIwQY
MBaAFBw3qQJuRbaP5HNaRpt1Y2EwrRJcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQt
NDhkNjcyOTczYjEzLzEvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQtNDhkNjcyOTczYjEz
LzEvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR/XgJ1T2
1kzCsOmqa469vh6g+xbaNbmcx/Ejx6t9CAk/ru6wgfYbKlKarN1Kt/j7J2/5UdSu
gKbtWG1Ptj1+zKkQkXnUXiGhHib6pGTTgZDoymAyqWVNXLhHQNnVSJHkrrnNZSlk
6NP8nH8dUkCK9T5OWVN5s3rzrn4D6DMMARan+ypR6+90+lxSzNPp42Ce6GOD0ny9
0ANcFR8pu7yEjvymdcebwMgPTPY9i50k78NKZxYUs7ET0NKrm95uJIWnG6LvUImS
F8+dg7n82iDZiNyt4OmtxKpnnrP8vRmK56koN+hv4IuPZJBYgLs8W2Eid43coXK+
hcEDlJGEb80Gew==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:42:20 2026 by rpki-client