Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
File: hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft (raw, json)
Hash identifier: givYmc0Ygk6/Ze6EePSuYvCl/qjAy/bvddVyX14eQEc=
Subject key identifier: 52:57:29:FC:BD:D4:AA:22:EF:AA:A0:89:E5:6D:B4:C6:FA:35:CE:64
Authority key identifier: 86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77
Certificate issuer: /CN=8618b054d20dfdc9c5493c52c86234774904be77
Certificate serial: 019D2704366890FFC816EF726D9704C897A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 22:01:20 +0000
Manifest this update: Wed 25 Mar 2026 22:01:20 +0000
Manifest next update: Thu 26 Mar 2026 22:01:20 +0000
Files and hashes: 1: hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl (hash: 3ZVUIKZqJrJ47PjXABpGF8rpWl8TKBCYw0D/MJ06PpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:36:68:90:ff:c8:16:ef:72:6d:97:04:c8:97:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8618b054d20dfdc9c5493c52c86234774904be77
Validity
Not Before: Mar 25 22:01:20 2026 GMT
Not After : Mar 26 22:01:20 2026 GMT
Subject: CN=525729fcbdd4aa22efaaa089e56db4c6fa35ce64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:9d:fa:0a:12:ab:8b:eb:69:9b:33:1b:5b:22:
82:ea:7b:cc:91:4e:25:e2:5a:26:cf:f2:91:71:a9:
3f:c2:3e:17:e0:7a:02:63:2a:ad:40:24:08:b9:bc:
11:ed:55:74:b1:8e:c4:76:3b:0c:6d:79:81:b9:52:
9e:11:d1:6e:76:8c:3e:e4:f2:32:5b:b0:15:b0:71:
10:6a:76:78:8f:db:80:9f:ab:64:17:39:8f:55:b3:
62:32:33:a6:ec:c0:84:c9:43:4c:06:e7:9d:22:68:
30:51:e4:50:b1:55:33:27:84:8e:ec:eb:66:ed:39:
45:b9:1f:d6:f6:6b:22:3e:10:be:90:2f:c8:3a:76:
c6:80:46:bc:03:3a:66:74:70:1b:ce:00:e1:72:80:
5e:9a:40:ef:79:a5:ce:52:89:9b:27:2c:f1:35:a7:
52:97:eb:45:f0:61:46:31:04:a8:53:c6:12:89:c9:
4c:cd:0e:e9:f2:32:b8:db:01:93:97:fd:85:fb:a8:
7f:0a:3c:83:1f:cf:b8:fd:c3:69:d4:6f:70:13:6f:
f4:8a:39:4a:47:97:86:39:03:4f:a5:0d:9c:ef:ae:
e0:3a:ae:43:56:70:25:25:3b:5b:05:08:e6:82:a0:
38:53:2e:a2:54:04:0d:d8:1b:a0:3b:5b:18:8c:f3:
63:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:57:29:FC:BD:D4:AA:22:EF:AA:A0:89:E5:6D:B4:C6:FA:35:CE:64
X509v3 Authority Key Identifier:
keyid:86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:0e:a0:4c:f4:33:c9:95:14:ab:6d:68:93:4c:18:5c:07:e4:
18:df:a1:a2:04:a9:28:39:ea:63:57:d0:ba:b9:c5:f0:13:a1:
a0:16:20:90:a4:57:19:3d:86:46:3b:5a:26:5f:41:ad:4e:64:
b8:26:03:30:7c:db:cb:16:c4:f9:87:0d:ce:90:d1:54:3d:39:
d2:bb:ca:fa:b1:a6:f9:83:b0:38:50:8d:58:65:dc:ed:ff:6f:
a7:e2:22:f8:40:23:f2:5f:47:19:99:4e:e1:c9:a4:5a:0d:2b:
00:b7:81:6c:a6:d6:c0:97:7d:64:cf:ec:16:e2:19:f3:a7:81:
ef:dd:d7:b6:23:ed:ff:f3:b1:0c:e6:d9:a7:df:08:24:c2:b1:
32:ad:cd:77:d4:67:2d:2e:a2:c4:83:0f:5d:01:61:66:ee:59:
d9:66:20:50:46:04:23:00:97:c1:b1:81:24:3c:f9:e5:b7:6b:
b5:5d:b2:de:9c:2d:fd:a0:ed:ab:27:4d:e1:80:26:f0:a8:3b:
ba:78:90:2f:5e:03:1b:29:00:73:cc:fb:87:35:19:5d:bc:5c:
b3:41:78:fb:07:77:0a:c8:d2:d0:6e:69:8f:ac:4f:4c:64:e3:
a3:85:4c:dc:2e:44:91:19:02:a5:aa:7f:01:da:2d:fe:73:57:
32:7c:38:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:28:44 2026 by rpki-client