Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
File: huGrpgDN5ewxgxmxVZS2irlslWw.mft (raw, json)
Hash identifier: RS7CBdYAi6KSCvlZe94EatbM+phMoqBqMIkS6U9HgxE=
Subject key identifier: E2:49:0E:5C:7E:A6:15:C1:51:5B:9F:76:46:09:09:18:06:4B:5A:CE
Authority key identifier: 86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
Certificate issuer: /CN=86e1aba600cde5ec318319b15594b68ab96c956c
Certificate serial: 019D288419025E8155EE58C794021C516B2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
Manifest number: 118A
Signing time: Thu 26 Mar 2026 05:00:38 +0000
Manifest this update: Thu 26 Mar 2026 05:00:38 +0000
Manifest next update: Fri 27 Mar 2026 05:00:38 +0000
Files and hashes: 1: huGrpgDN5ewxgxmxVZS2irlslWw.crl (hash: tdeSocXmttgNr6fqTvClZu0h6F+gIv6VM+wcZ4Wd07w=)
2: rU0QXFNtoWCEtxH8VZt7NQjfBkk.roa (hash: DX5PpK5nvqYsY6Lg/VDy96ASHQyrvBhk9m8SNvIdQJc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:19:02:5e:81:55:ee:58:c7:94:02:1c:51:6b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e1aba600cde5ec318319b15594b68ab96c956c
Validity
Not Before: Mar 26 05:00:38 2026 GMT
Not After : Mar 27 05:00:38 2026 GMT
Subject: CN=e2490e5c7ea615c1515b9f7646090918064b5ace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ae:2d:e1:c4:64:74:53:c7:da:60:34:60:ed:
ad:02:8b:42:e8:1c:4b:d5:31:de:6e:1e:44:65:00:
b2:28:19:e7:ff:07:2e:1b:e5:ef:64:82:1b:4c:cc:
0c:7f:94:8a:f7:12:97:52:d8:52:fb:37:43:5e:a3:
91:82:ad:d3:92:cf:d5:c1:f1:b0:51:65:ab:d9:d1:
23:2f:68:64:5c:7a:33:e9:36:99:4e:f5:40:7d:ea:
28:a5:90:4f:d3:0e:97:b6:ed:5c:0a:33:1a:a3:7f:
03:7b:29:d9:19:87:b8:8c:bc:92:ff:32:de:01:71:
2e:21:7c:78:65:3c:ac:bc:65:86:8c:c2:68:c6:a4:
66:0d:76:c7:da:9c:70:b4:97:73:df:2a:a9:57:2b:
9e:06:aa:50:f4:2b:e8:e8:3a:c6:1f:82:bc:c8:fb:
93:80:b5:70:5b:a7:fd:ef:47:fc:dc:84:c1:f9:94:
e0:a9:19:26:b3:0a:18:72:2b:c8:10:9f:9e:58:4f:
f2:e8:40:42:da:3e:97:42:ad:7e:f6:13:e6:63:75:
71:30:45:e8:c5:74:fe:0f:fd:08:3d:66:87:5d:23:
9d:c8:f8:df:32:cb:f8:95:30:8f:e8:7c:40:dd:bc:
4e:a7:71:3d:5b:91:8c:8b:ed:60:83:45:76:ab:2b:
d4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:49:0E:5C:7E:A6:15:C1:51:5B:9F:76:46:09:09:18:06:4B:5A:CE
X509v3 Authority Key Identifier:
keyid:86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:0c:45:b3:31:6f:22:c4:c2:90:e0:0b:a0:81:48:8e:76:54:
7d:1b:5b:33:de:67:99:3d:08:af:4b:c6:33:af:f5:8a:1b:87:
e4:48:b3:20:d3:f5:33:57:e2:40:6f:4f:8e:02:b0:89:ed:e2:
52:33:13:73:26:02:e4:f9:3b:f5:9f:69:ca:c6:5e:52:8b:d3:
7d:4d:6b:d3:ad:d2:bf:21:dd:fc:2a:84:99:b1:73:ad:d7:8b:
35:17:07:64:55:59:8d:04:c9:6f:55:c3:9c:e7:27:83:ba:9a:
aa:d8:dc:f0:a2:97:8c:1d:f4:45:cc:c8:8a:49:a5:35:9d:74:
68:84:1d:4b:73:79:a1:d0:71:b9:99:30:9e:83:dc:dc:fa:cb:
08:42:0b:eb:39:88:2a:c1:eb:e1:20:0f:20:02:b3:9d:77:b5:
f8:c8:ea:cc:16:9a:e8:c5:8b:ad:f5:3d:85:e9:99:44:24:e6:
1c:4e:19:fa:70:f7:b2:b1:99:54:f0:12:ae:32:5e:52:f2:d1:
61:33:25:22:a1:e6:83:db:ae:37:3a:5a:00:17:77:f0:95:6d:
c8:a2:06:b2:45:8d:3e:b3:61:c6:2a:6d:2d:99:06:f0:fd:d8:
a2:8e:80:04:86:77:a0:b9:e5:dd:6e:ff:20:a3:44:9b:78:76:
73:81:b1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:53:10 2026 by rpki-client