Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
File: H8jtRm3i5spZZNHu0PJA3dJR3kg.mft (raw, json)
Hash identifier: hJEn76PO4PnP1KhU8MjN8nZtVHAL6A+q8TlvyA+qV6I=
Subject key identifier: 86:A5:E0:F0:F0:78:2F:CA:36:8A:2A:2E:EF:0E:FF:5B:AB:66:A4:4A
Authority key identifier: 1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
Certificate issuer: /CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Certificate serial: 019D27045C72F033978308295B7D530C6203
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
Manifest number: 17DD
Signing time: Wed 25 Mar 2026 22:01:30 +0000
Manifest this update: Wed 25 Mar 2026 22:01:30 +0000
Manifest next update: Thu 26 Mar 2026 22:01:30 +0000
Files and hashes: 1: H8jtRm3i5spZZNHu0PJA3dJR3kg.crl (hash: w9Tr/No+fTtTqhdUu1c8vIsRHww6UiKIhwkBrqR2HWI=)
2: XVtEjdzoGD2Cf2ZS_WqTxpdKmHw.roa (hash: PLd3AjjjU/YjEzgvUwnUvjyB10O7EBQqmUUYsFik7AU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:5c:72:f0:33:97:83:08:29:5b:7d:53:0c:62:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Validity
Not Before: Mar 25 22:01:30 2026 GMT
Not After : Mar 26 22:01:30 2026 GMT
Subject: CN=86a5e0f0f0782fca368a2a2eef0eff5bab66a44a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3b:c4:79:d1:19:12:d0:ac:ff:01:80:f1:72:
2c:31:22:a6:79:27:ee:27:6c:1a:cf:26:f8:1a:21:
1a:49:50:44:c5:29:63:2f:0e:69:00:a6:12:ed:c2:
6e:2f:98:2c:de:a2:8d:46:b3:23:e1:d3:6a:9b:39:
19:f0:75:48:9d:cf:cf:d0:88:c2:c9:76:10:fe:ac:
0b:8e:b9:d5:5a:0e:77:98:6b:13:e1:72:0d:ba:8c:
d5:21:a7:bb:8d:98:bb:58:ee:2e:ec:d0:42:e9:37:
2b:72:f9:22:30:34:98:06:c4:05:70:f0:59:53:24:
46:54:38:fe:4a:cb:65:ec:31:0f:b1:86:cb:d5:7f:
8a:2b:0b:9d:38:96:12:a5:14:37:df:a5:0b:cf:25:
50:4e:4a:fa:c7:89:f9:d7:3a:95:52:6e:c9:65:b4:
9f:78:38:2f:56:76:3e:00:8e:c2:a5:69:4e:8f:ce:
ad:1d:80:52:86:08:d6:c4:01:22:63:fa:48:e5:d6:
a7:96:56:30:f4:65:a5:d7:7e:a0:85:0f:42:65:57:
bc:18:7b:56:14:89:55:c3:33:8b:bd:90:89:49:b1:
3a:de:fa:01:23:d2:f5:9c:bb:9f:86:c7:6f:4f:cb:
08:00:ae:00:8c:2c:e4:16:1b:d8:d0:96:b9:79:a5:
2c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A5:E0:F0:F0:78:2F:CA:36:8A:2A:2E:EF:0E:FF:5B:AB:66:A4:4A
X509v3 Authority Key Identifier:
keyid:1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:0d:c0:5b:e0:40:8a:6b:d4:90:04:19:17:d5:fb:ef:c8:95:
ea:f4:49:bf:f5:a3:66:af:7c:fb:e0:30:3d:a4:f7:6a:56:62:
19:50:c7:27:97:0a:60:6c:aa:23:60:ae:a6:63:af:95:69:e9:
45:03:47:a4:ce:b8:28:02:ee:1a:5f:b3:90:ef:4e:cf:6a:5f:
ad:02:15:fe:b2:57:7a:16:c3:22:7d:ab:de:9c:46:4a:d3:2c:
9a:66:2c:26:5d:9c:aa:ef:7d:49:ec:b7:40:8c:42:79:cd:b5:
12:59:36:7b:bd:b9:09:8f:42:12:9e:f2:ef:9e:9c:74:8c:47:
f1:80:9c:3a:0e:47:ee:12:2b:64:45:43:8b:14:f1:ed:cb:4c:
92:b9:64:d8:cd:45:a0:d0:6e:64:ad:e4:18:5c:f7:e4:74:58:
cf:ef:39:c3:69:ca:92:85:fd:c3:fa:10:c7:80:46:86:27:ae:
e8:12:19:b7:95:8a:99:d7:f0:af:a9:7f:26:1d:84:fe:47:31:
0f:13:09:8f:4d:08:82:7d:45:9b:c2:72:e3:a9:3d:e1:37:57:
76:f1:a3:b9:87:32:de:52:ce:64:ad:e9:d9:f3:64:ff:01:fb:
dd:99:2b:e1:58:af:3e:35:c6:02:96:c5:7f:64:97:ce:47:c7:
a0:d3:4f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:36:49 2026 by rpki-client