Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json)
Hash identifier: UsQtRdH8OAKK1CvjGcC47dxzc+te66AJPWZV/XlyDyg=
Subject key identifier: 64:5C:7B:F4:92:02:21:BF:B0:10:EB:42:DA:46:23:3A:5F:D4:36:42
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 019D2695C1A3DC826F11EF8453A4675422A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
Manifest number: 1140
Signing time: Wed 25 Mar 2026 20:00:41 +0000
Manifest this update: Wed 25 Mar 2026 20:00:41 +0000
Manifest next update: Thu 26 Mar 2026 20:00:41 +0000
Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: EeDYvHM4SBMyjJjlrEjbCGPziz4a0CbcB4oMCn8bBrw=)
2: Vf77xukhBIpUTcfDdQGILMMSa4Q.roa (hash: tmWyKSyKboTPLB52PoBpJE8efgve3egkhQ+0cqtz0+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:95:c1:a3:dc:82:6f:11:ef:84:53:a4:67:54:22:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: Mar 25 20:00:41 2026 GMT
Not After : Mar 26 20:00:41 2026 GMT
Subject: CN=645c7bf4920221bfb010eb42da46233a5fd43642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4e:81:5a:54:31:7e:3e:55:e0:7f:d6:78:79:
47:fb:7d:45:f4:47:60:78:7b:ba:66:61:e0:6f:9f:
01:b4:b1:7f:74:cd:c0:a8:d2:28:fb:2d:79:c9:cd:
9f:f3:ba:86:94:91:dc:96:e6:fa:d4:7d:1c:b1:05:
56:87:94:3a:f6:08:fa:7f:0f:b3:c3:28:6f:30:ea:
5e:1f:b4:7c:b5:70:1b:3e:00:7c:9b:1b:d3:3f:3c:
01:5a:cd:47:0f:16:1c:cd:1f:6f:9b:09:79:65:31:
84:2a:f6:4a:84:fe:6e:46:17:4f:96:9f:ae:8a:83:
ce:1e:09:ac:48:f9:d0:a9:b0:3f:a6:7a:f1:59:ce:
22:d7:d8:5d:ec:fd:90:21:db:96:74:3d:4e:14:74:
f0:98:92:ef:b1:8e:18:0c:7e:5a:3a:3a:c5:19:49:
2b:ba:1e:37:36:30:ce:28:33:da:57:8d:71:40:73:
f4:86:81:e2:5d:6a:f9:42:37:f2:01:dd:ae:bb:dd:
3f:55:47:bb:37:da:5e:b1:9f:14:94:bc:25:2b:9e:
eb:95:ad:25:0a:00:08:e5:52:4e:25:72:c8:54:a1:
46:84:41:c2:8f:90:ac:dd:47:02:67:0d:35:ef:37:
6a:9a:0c:98:93:d5:42:09:db:09:4f:a2:11:bf:c0:
42:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:5C:7B:F4:92:02:21:BF:B0:10:EB:42:DA:46:23:3A:5F:D4:36:42
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:e4:68:6d:4d:6d:02:73:8c:12:53:52:89:ea:3d:fa:b6:4e:
10:7a:84:e7:40:6e:94:01:df:2f:b3:fa:9c:fe:73:c5:ae:13:
80:58:f0:ab:50:b8:f7:e1:17:d8:4f:bd:54:23:21:c2:26:eb:
08:35:cc:56:b5:6c:d8:0a:bd:2d:7f:fb:60:b2:b3:a1:eb:67:
68:c1:8c:23:34:23:2d:e2:e1:8d:94:2c:38:64:11:1c:86:9e:
18:30:09:46:09:d4:ef:13:80:1d:a2:bc:9e:9e:d9:ec:d1:3f:
ec:ab:05:da:6a:88:01:b6:4b:8e:74:d6:0a:f8:d9:ed:a1:96:
ef:93:6b:d3:64:5c:a0:ea:e5:c3:01:7b:7c:6e:d8:9d:de:b0:
51:95:61:44:5f:52:7b:6b:47:5b:72:96:34:51:8e:f9:35:77:
3f:fd:86:f3:84:5e:0b:bd:77:f2:c2:42:44:f0:78:4b:ad:db:
00:be:7b:5d:24:8f:6e:df:68:c6:4e:ff:a1:e9:52:b8:f7:64:
b4:4a:dc:56:63:7b:0f:2c:b7:3f:50:66:e5:ea:f0:47:d7:7a:
a3:7a:c2:85:26:d4:7a:c5:b5:fc:d1:07:38:d8:b8:de:da:5a:
f9:84:81:75:73:d0:ed:de:ca:6f:76:07:c7:f3:ef:8a:91:32:
b7:ee:94:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:55:48 2026 by rpki-client