Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
File: H0MPwJpxOySayqdniRHo0eMjOv0.mft (raw, json)
Hash identifier: KDl9VNCNkU335wEV3GBjGyG4yg/w8mxuge8FaIVTPWI=
Subject key identifier: C9:00:11:13:68:51:05:43:3E:3B:EC:CE:61:38:AA:C4:5E:BB:F2:CA
Authority key identifier: 1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
Certificate issuer: /CN=1f430fc09a713b249acaa7678911e8d1e3233afd
Certificate serial: 019D28F28ED439552809605FABF3367FB9E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
Manifest number: 16D2
Signing time: Thu 26 Mar 2026 07:01:17 +0000
Manifest this update: Thu 26 Mar 2026 07:01:17 +0000
Manifest next update: Fri 27 Mar 2026 07:01:17 +0000
Files and hashes: 1: 575klKGoSYyX7Dh8mZS2rpwSZ3U.roa (hash: LxIH7uTCYrgvTpunjA99i3K4sT99K/wrQOy1i1ejkXI=)
2: H0MPwJpxOySayqdniRHo0eMjOv0.crl (hash: XdqFX4zMDeL3YwNEJgtXiH/dHCSnBJsMAIYAa9nJ8mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:8e:d4:39:55:28:09:60:5f:ab:f3:36:7f:b9:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f430fc09a713b249acaa7678911e8d1e3233afd
Validity
Not Before: Mar 26 07:01:17 2026 GMT
Not After : Mar 27 07:01:17 2026 GMT
Subject: CN=c9001113685105433e3becce6138aac45ebbf2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ba:62:3d:c2:bd:1e:bd:51:4f:21:fa:84:0c:
7e:17:8f:b0:a9:ac:9f:1b:ab:6a:b5:0d:90:a0:5c:
6e:7a:07:65:12:a4:47:42:2e:f9:85:57:97:d4:71:
5c:0f:21:e8:53:a0:b9:83:15:d5:4c:96:cd:14:0e:
ee:76:a9:a7:66:a2:35:83:ad:9f:01:8c:cc:ab:b2:
45:25:81:e3:5a:a5:d8:a9:5f:c4:31:7a:5e:4d:f2:
da:cc:1b:1a:62:b0:5a:90:3e:ab:d8:f6:52:fd:07:
8e:3e:dd:e7:48:ff:63:72:a5:a1:00:ee:8d:5f:ae:
0b:0c:ac:76:3f:f4:31:fe:d8:0a:1f:83:74:86:b3:
fc:b5:42:d9:39:e6:fd:a1:ec:5e:0f:f3:29:ca:97:
fb:8c:2c:22:78:42:cd:9f:56:b9:7a:28:0b:e3:96:
3e:b1:b4:dc:4e:9e:68:8c:ad:3e:41:ea:07:a0:5f:
d9:85:f6:96:b5:e4:57:4c:1b:6f:25:82:f7:42:ff:
0b:01:87:52:09:4d:fb:28:55:da:12:f6:5d:8a:7b:
be:b5:2c:62:53:68:ed:3a:59:c3:f1:bf:53:55:0b:
e3:6b:05:66:88:cd:34:4f:69:73:6d:9c:ed:df:0d:
63:fe:bf:24:d4:cb:ef:6b:44:54:b5:4a:b3:14:71:
d7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:00:11:13:68:51:05:43:3E:3B:EC:CE:61:38:AA:C4:5E:BB:F2:CA
X509v3 Authority Key Identifier:
keyid:1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:54:5f:c8:fd:0e:6b:22:5b:24:1f:10:da:d9:cd:fb:63:a7:
93:77:46:b4:1e:61:0b:65:94:b1:60:cc:82:c8:92:d9:a1:8b:
14:4e:57:30:36:93:7e:fe:0a:fe:c1:94:19:f7:68:62:5c:40:
72:51:86:1d:ce:7d:00:12:8b:d7:be:6f:56:64:24:bc:9f:93:
13:de:85:8c:aa:00:ce:b7:5d:b5:d3:59:cf:2d:34:05:17:f4:
18:d1:e5:c2:00:a1:4b:a5:84:ed:c3:ae:e5:40:e1:b6:ec:53:
f3:12:37:b3:a9:d6:b6:ee:33:2e:38:43:61:6a:d3:f2:51:e8:
36:69:b8:69:30:18:ca:a3:1f:64:93:38:46:fa:be:65:3e:33:
e1:ce:6a:76:92:41:90:c2:e3:77:03:5e:9d:c5:24:63:79:34:
fe:62:0d:94:40:32:16:8e:b9:60:13:23:69:81:a8:35:db:d8:
ca:00:36:c5:b8:06:ec:af:c8:08:a5:ad:49:0e:fa:24:f9:8a:
b7:67:a7:04:1a:68:44:e2:0f:e6:98:ed:52:63:10:82:29:68:
cf:ba:c1:e8:fa:32:75:a3:6a:0f:eb:af:fb:a8:85:5d:93:8f:
a2:d9:9e:02:43:41:8b:ce:ee:cf:6a:76:9e:04:1c:3b:62:92:
98:e7:12:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8o7UOVUoCWBfq/M2f7nhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNDMwZmMwOWE3MTNiMjQ5YWNhYTc2Nzg5MTFlOGQxZTMy
MzNhZmQwHhcNMjYwMzI2MDcwMTE3WhcNMjYwMzI3MDcwMTE3WjAzMTEwLwYDVQQD
EyhjOTAwMTExMzY4NTEwNTQzM2UzYmVjY2U2MTM4YWFjNDVlYmJmMmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrpiPcK9Hr1RTyH6hAx+F4+wqayf
G6tqtQ2QoFxuegdlEqRHQi75hVeX1HFcDyHoU6C5gxXVTJbNFA7udqmnZqI1g62f
AYzMq7JFJYHjWqXYqV/EMXpeTfLazBsaYrBakD6r2PZS/QeOPt3nSP9jcqWhAO6N
X64LDKx2P/Qx/tgKH4N0hrP8tULZOeb9oexeD/Mpypf7jCwieELNn1a5eigL45Y+
sbTcTp5ojK0+QeoHoF/ZhfaWteRXTBtvJYL3Qv8LAYdSCU37KFXaEvZdinu+tSxi
U2jtOlnD8b9TVQvjawVmiM00T2lzbZzt3w1j/r8k1Mvva0RUtUqzFHHXAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMkAERNoUQVDPjvszmE4qsReu/LKMB8GA1UdIwQY
MBaAFB9DD8CacTskmsqnZ4kR6NHjIzr9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDBNUHdKcHhPeVNheXFkbmlSSG8wZU1qT3YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8yNjc2MWUtN2M2Zi00ODhlLWEyMWQt
YmUzOTE3YzVlMmY3LzEvSDBNUHdKcHhPeVNheXFkbmlSSG8wZU1qT3YwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8yNjc2MWUtN2M2Zi00ODhlLWEyMWQtYmUzOTE3YzVlMmY3
LzEvSDBNUHdKcHhPeVNheXFkbmlSSG8wZU1qT3YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAelRfyP0O
ayJbJB8Q2tnN+2Onk3dGtB5hC2WUsWDMgsiS2aGLFE5XMDaTfv4K/sGUGfdoYlxA
clGGHc59ABKL175vVmQkvJ+TE96FjKoAzrddtdNZzy00BRf0GNHlwgChS6WE7cOu
5UDhtuxT8xI3s6nWtu4zLjhDYWrT8lHoNmm4aTAYyqMfZJM4Rvq+ZT4z4c5qdpJB
kMLjdwNencUkY3k0/mINlEAyFo65YBMjaYGoNdvYygA2xbgG7K/ICKWtSQ76JPmK
t2enBBpoROIP5pjtUmMQgiloz7rB6PoydaNqD+uv+6iFXZOPotmeAkNBi87uz2p2
ngQcO2KSmOcSHA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:32:00 2026 by rpki-client