Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
File: 0HNWUFJtK79SUNl5fknbHZ8cwn8.mft (raw, json)
Hash identifier: cD8KYgIJZhmHWTxSsqOVqwVdQdKcjYAWgM4gutl7wmE=
Subject key identifier: DA:8B:CE:C6:72:EC:08:08:53:93:39:72:0E:07:47:CE:BA:E1:88:A2
Authority key identifier: D0:73:56:50:52:6D:2B:BF:52:50:D9:79:7E:49:DB:1D:9F:1C:C2:7F
Certificate issuer: /CN=d0735650526d2bbf5250d9797e49db1d9f1cc27f
Certificate serial: 019D29972F87E32179676C54811F5D8A5618
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HNWUFJtK79SUNl5fknbHZ8cwn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
Manifest number: 018F
Signing time: Thu 26 Mar 2026 10:01:07 +0000
Manifest this update: Thu 26 Mar 2026 10:01:07 +0000
Manifest next update: Fri 27 Mar 2026 10:01:07 +0000
Files and hashes: 1: 0HNWUFJtK79SUNl5fknbHZ8cwn8.crl (hash: AfqmZFAzoKjWcy8sDSZoO4TZfYSVKkrcX9jVneFRoic=)
2: WrLNxAyyuRsHIs6t3d8ID4TXQxk.roa (hash: PhJyPBri0VSG1gtomnKeMBfQbUvbGb+z4erxQ/DDa9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HNWUFJtK79SUNl5fknbHZ8cwn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:2f:87:e3:21:79:67:6c:54:81:1f:5d:8a:56:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0735650526d2bbf5250d9797e49db1d9f1cc27f
Validity
Not Before: Mar 26 10:01:07 2026 GMT
Not After : Mar 27 10:01:07 2026 GMT
Subject: CN=da8bcec672ec0808539339720e0747cebae188a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:51:4b:c4:ad:77:e0:de:05:43:fc:1a:27:c4:
fa:46:a5:cc:ce:b8:68:fc:f9:44:ec:10:1e:f0:40:
9e:ea:74:a1:7d:fd:1b:82:61:ce:25:6d:3b:6f:4b:
d4:76:59:ca:5e:c8:1f:90:89:01:27:ff:63:80:51:
1a:9b:7e:75:e9:bd:32:3b:37:9f:45:7f:34:a1:7a:
65:29:07:26:a2:42:42:55:27:1a:94:9a:a4:5a:ee:
d0:34:e1:fa:7e:14:4d:89:0f:92:35:00:8e:8f:b8:
07:7f:ea:9a:d2:81:29:fe:68:f7:6a:b6:e9:44:11:
2a:24:91:a7:cf:09:65:b2:33:c9:3d:38:fa:aa:c2:
c4:a0:e8:bf:a8:53:b5:b9:7d:f9:00:e1:f1:47:96:
47:fd:09:e2:6d:fe:b1:3e:dc:db:df:80:0a:e9:cb:
de:25:3c:9c:59:b5:d0:14:bf:ea:bf:88:2f:31:a2:
f8:d3:82:d8:03:91:af:dd:34:d3:d0:ae:cb:fb:f8:
f9:67:16:4f:7b:87:d9:3a:36:3f:70:f7:02:a9:9d:
ef:09:50:36:61:79:b5:af:6d:0e:c9:74:e2:5a:51:
a7:0b:06:5c:95:ee:1d:47:fc:8f:45:60:0e:b0:86:
f5:f2:b8:30:ec:1f:1b:40:76:fb:9b:69:b6:a4:53:
fe:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8B:CE:C6:72:EC:08:08:53:93:39:72:0E:07:47:CE:BA:E1:88:A2
X509v3 Authority Key Identifier:
keyid:D0:73:56:50:52:6D:2B:BF:52:50:D9:79:7E:49:DB:1D:9F:1C:C2:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HNWUFJtK79SUNl5fknbHZ8cwn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:df:8f:38:53:36:1c:66:bc:3c:b5:e2:f9:9c:00:16:51:4a:
46:34:64:91:07:ef:42:03:f0:de:31:f0:70:9f:a1:e9:5e:35:
ba:ca:f9:e6:9e:e0:32:34:28:7b:27:2b:65:14:14:1d:48:ba:
d4:34:78:18:b8:41:2d:f9:e3:94:3c:42:3f:25:3b:d1:d2:e9:
6e:e0:66:e8:a2:f4:e4:e2:f7:c0:a7:5d:32:dd:f1:6b:80:2b:
34:3c:d9:1d:1b:74:9d:65:d8:6d:4e:bf:a4:9f:46:17:f0:88:
11:bd:ac:7d:7b:0c:c0:c2:2d:66:2d:f7:96:0a:d0:c7:b5:71:
99:80:45:76:35:1d:f5:a9:68:83:44:17:6f:8c:c0:d3:12:bc:
1b:10:f7:6a:9d:00:4e:5c:9d:a5:07:25:8f:0b:68:e4:81:3e:
8a:cd:41:f7:94:89:66:1e:c0:0c:30:d4:b4:66:52:7f:4f:b3:
d3:b0:29:ad:86:a5:b0:1b:2e:e6:fd:7f:b0:0d:cd:60:9b:3c:
f8:23:0c:1a:a4:26:fe:d2:93:df:ad:85:ef:ce:77:97:1f:43:
22:bb:0d:98:7b:a7:d0:cc:25:05:67:c8:24:7d:4c:e5:66:fd:
3f:43:c5:50:bd:cb:cb:d0:6a:d1:3b:62:05:af:ca:c1:5d:75:
20:90:3b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:43:58 2026 by rpki-client