Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
File: HIivL0NlSz9FLVx07QdHElcNH94.mft (raw, json)
Hash identifier: JnxJ4UaKnUmeVaNqgDcswvDdogArG7wq3nxNtOKM2/Y=
Subject key identifier: F0:2E:AB:49:20:9F:76:0A:85:66:1B:65:58:32:EC:43:86:ED:F7:64
Authority key identifier: 1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
Certificate issuer: /CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Certificate serial: 019D2704BE5E6D07945CB605323701C1F267
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
Manifest number: 188A
Signing time: Wed 25 Mar 2026 22:01:55 +0000
Manifest this update: Wed 25 Mar 2026 22:01:55 +0000
Manifest next update: Thu 26 Mar 2026 22:01:55 +0000
Files and hashes: 1: HIivL0NlSz9FLVx07QdHElcNH94.crl (hash: ZatMqaWteb4g9Rl6WHWBqMeQXqc8sWKazNvQnS5Jbn4=)
2: YTVp8HRIZA2vtkGjKasuHviHEzI.roa (hash: fD4GIHwZF/xnQKXHxDrGyWuUN8the7WpF5QYQMukoHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:be:5e:6d:07:94:5c:b6:05:32:37:01:c1:f2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Validity
Not Before: Mar 25 22:01:55 2026 GMT
Not After : Mar 26 22:01:55 2026 GMT
Subject: CN=f02eab49209f760a85661b655832ec4386edf764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:85:9d:90:9b:ad:78:91:a3:1c:a2:9d:ea:b3:
4d:b3:2d:65:ce:9c:1d:cf:ca:cc:9f:37:15:b6:fe:
cc:64:16:c2:56:7f:0a:90:41:8e:33:8e:a2:99:cd:
0b:10:97:3c:62:62:5d:a1:5d:bf:ec:a7:ea:8b:7f:
f8:3a:46:f3:4c:51:0c:b3:53:76:e2:35:15:d0:a1:
2d:78:bb:a8:50:93:c5:56:ed:94:63:08:1b:69:31:
92:ea:c7:c3:f4:66:93:7e:a5:f1:40:7f:34:16:ad:
ee:97:52:a3:ab:2b:67:6f:a9:37:4f:4b:5a:21:8b:
ac:ec:b8:c6:fa:65:84:70:b2:e7:31:77:3b:5f:9b:
db:15:67:71:df:b2:d4:c5:fa:67:b1:c3:97:50:5a:
45:b3:59:02:2a:70:f9:4f:96:a7:e3:8e:34:9f:b8:
b0:ab:6e:80:d6:7f:63:f7:f2:31:39:13:49:e7:b1:
af:97:2c:7b:88:99:0a:d7:23:ff:da:9c:c5:db:d2:
a2:08:40:44:e9:5d:b4:d8:58:27:ec:f8:65:7d:63:
ba:84:c8:e3:64:d5:5e:bd:d7:ad:82:1e:2e:60:4e:
a8:99:28:ab:f3:4d:e6:cd:a6:b8:f8:9e:ea:5f:69:
eb:86:83:77:dc:59:7d:f5:af:7d:04:74:8d:36:bc:
19:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2E:AB:49:20:9F:76:0A:85:66:1B:65:58:32:EC:43:86:ED:F7:64
X509v3 Authority Key Identifier:
keyid:1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:82:87:87:ba:3d:20:44:9c:4e:cf:00:27:cb:fc:66:03:c6:
d0:ce:1e:9a:2f:f1:57:e1:e7:50:ac:7f:23:88:fb:47:22:a2:
e0:ac:4b:25:11:b4:31:5d:67:e4:48:ad:f4:fe:ef:9d:0e:c0:
06:8e:7b:b9:30:63:6d:e7:a6:ef:48:0f:30:f4:a8:42:35:06:
51:fb:be:83:24:37:b6:df:fc:cc:d8:73:01:86:02:53:3b:61:
15:d2:bc:56:42:59:fe:63:ad:80:e1:9d:b8:f8:97:cc:3d:aa:
ce:1c:3a:0b:35:ba:77:66:74:e0:89:a5:3d:3f:07:b1:76:39:
e0:96:52:e0:d9:4f:16:15:ee:fe:0c:3a:ba:86:76:d6:25:eb:
b1:04:3c:82:f3:2d:4a:f3:5c:52:1b:2b:a1:d3:ff:8f:bf:72:
89:ce:51:bc:2c:40:22:42:17:17:96:b4:cc:e0:2a:78:49:48:
a4:ea:61:fa:c2:0a:6f:b2:7d:45:cf:77:5b:f9:fb:3c:07:7a:
fc:c5:38:0e:f9:42:40:df:37:c0:90:60:82:86:23:a2:7c:aa:
86:75:70:09:92:9b:6f:47:67:81:9d:7d:28:c1:2b:f6:73:29:
26:e3:03:32:ec:c0:b5:9f:2d:fe:cb:de:a7:7d:c3:ce:b7:37:
c4:59:62:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:18:36 2026 by rpki-client