Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json)
Hash identifier: hmsfayuSoNDFx9XOjLehxg8LFN6AhfrOLPmtKuyvoSE=
Subject key identifier: EE:39:47:93:8D:A6:2B:3D:CF:A2:63:84:47:B9:76:66:50:E0:B8:77
Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Certificate serial: 019D25F204CB371ECB353E5CD6BCB187D63C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 17:01:50 +0000
Manifest this update: Wed 25 Mar 2026 17:01:50 +0000
Manifest next update: Thu 26 Mar 2026 17:01:50 +0000
Files and hashes: 1: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: Ro1O2hgehIpF5fKCnEbPPSX89M0yOLCqwT0YnrQYHmY=)
2: kLUM1YAOMcHfG5kPB5ctMeQ6zO4.roa (hash: wZEOFTFIMct/33jsnIoNoec+GVySts9zmn8n8Vg4eB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:04:cb:37:1e:cb:35:3e:5c:d6:bc:b1:87:d6:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Validity
Not Before: Mar 25 17:01:50 2026 GMT
Not After : Mar 26 17:01:50 2026 GMT
Subject: CN=ee3947938da62b3dcfa2638447b9766650e0b877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:46:35:ae:e3:a3:13:5e:26:97:82:43:c4:16:
36:dc:ee:c1:de:31:bd:aa:07:d4:91:5a:75:17:38:
96:4b:0d:f7:5c:79:3b:0e:fa:b1:9d:28:1c:cf:14:
23:c2:14:30:e6:d9:6f:ab:6c:70:5f:b3:a7:4d:cd:
fb:27:5c:a9:be:32:f6:6f:fa:3b:53:ca:52:38:1f:
17:b7:fd:7b:a2:fe:c4:47:cb:17:2f:7e:1a:8f:82:
3e:54:f8:57:c7:ee:6b:5e:6a:f1:50:8b:5d:44:a2:
d0:3f:0e:e9:65:ac:88:5b:5b:5e:8e:d0:64:81:ed:
50:94:a0:20:c6:fc:b4:e2:4f:ad:a8:60:51:20:23:
8e:3c:83:8e:2c:4d:12:06:bd:f3:21:f1:f4:c4:11:
79:be:6f:15:91:17:80:02:31:81:6e:57:bc:dd:9c:
3a:23:df:7e:e2:03:07:1d:fd:b4:ed:c4:e5:a9:07:
9b:5a:06:59:77:f5:56:cb:47:57:e4:88:9f:a3:e9:
7b:40:8e:16:b6:ac:4c:3a:f0:2e:ca:17:8a:3a:95:
ec:f5:95:ae:7b:48:30:e7:98:d4:a1:cd:e9:46:14:
6f:ce:c0:e0:b7:7f:b7:cd:32:25:25:b5:dc:5c:ff:
9d:07:ec:74:56:fb:84:34:62:c7:bc:3b:b3:7d:79:
25:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:39:47:93:8D:A6:2B:3D:CF:A2:63:84:47:B9:76:66:50:E0:B8:77
X509v3 Authority Key Identifier:
keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:57:73:fa:7d:c6:21:f2:c4:2e:04:de:6f:b7:e1:5d:3a:0a:
e1:5d:eb:e5:7a:45:17:be:26:11:77:a6:45:22:17:a4:03:c5:
9c:2f:ed:48:84:00:f8:1d:9c:c3:4a:16:86:eb:ad:3f:5d:7e:
6a:83:a9:3c:05:d6:75:26:44:18:5a:85:33:75:f6:3e:02:e2:
23:d2:20:53:c5:ab:42:b4:a8:10:1c:c7:5e:dc:75:89:af:44:
c7:9b:80:55:93:ae:32:d9:95:11:23:07:ed:42:b6:ac:43:ea:
c1:d6:88:df:3b:e0:d4:d0:60:22:4d:8a:3d:cc:be:75:2e:ee:
18:3c:cf:f3:ab:8d:be:f9:9c:25:9a:66:45:6c:b8:1b:53:c2:
65:22:eb:0f:4a:0c:b1:72:04:b3:71:37:76:c8:67:ce:3e:4c:
1c:26:52:40:18:e9:37:02:b4:9d:69:23:42:42:3b:61:26:6e:
38:97:6c:26:28:c7:7b:fa:3e:c8:b6:6c:fe:89:a9:cc:53:0e:
90:53:12:18:00:c5:6b:9a:35:37:5e:c2:bd:c2:21:42:fb:eb:
07:cb:ec:20:ac:03:2d:08:09:1f:c7:c5:0d:bc:d3:2d:32:23:
85:3b:ca:2d:a1:b1:a3:d7:43:53:08:43:d9:c7:ac:52:bc:73:
d6:1e:77:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:01:21 2026 by rpki-client