Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
File: hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft (raw, json)
Hash identifier: f70Q0PViuJja9+e63kQYYxIoim9HeKn78NIWEIS8OuY=
Subject key identifier: 31:8F:D9:64:98:9F:DB:5E:16:96:93:80:60:AC:C9:CC:C4:A0:F6:71
Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Certificate serial: 019D2A72649FF78F626C7DD7975C2A4F03C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
Manifest number: 0FAE
Signing time: Thu 26 Mar 2026 14:00:33 +0000
Manifest this update: Thu 26 Mar 2026 14:00:33 +0000
Manifest next update: Fri 27 Mar 2026 14:00:33 +0000
Files and hashes: 1: Mm3cGWuzg7gyTt25MrA_Cb8WYyU.roa (hash: QSO9mmv4K2NyhZinj8I/GzIYb/RrAcM6Y8mv7blhZ40=)
2: hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl (hash: o4FShCgTD9lbdZTbneQLpTg7s62793HSkR+MOZv036M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:64:9f:f7:8f:62:6c:7d:d7:97:5c:2a:4f:03:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Validity
Not Before: Mar 26 14:00:33 2026 GMT
Not After : Mar 27 14:00:33 2026 GMT
Subject: CN=318fd964989fdb5e1696938060acc9ccc4a0f671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0b:48:f3:74:1f:29:a2:47:45:54:a0:a6:e8:
cb:5f:02:c9:10:a0:f2:41:e5:9a:27:02:19:54:c9:
b5:18:d4:9a:02:f3:6a:22:30:a6:15:0d:77:96:43:
27:cc:32:59:e8:f5:11:bb:a1:c3:d8:5e:a9:2b:b7:
11:ca:40:61:72:b7:f4:52:36:9b:dd:8e:ac:4e:e3:
81:ad:90:b4:e2:d7:c4:76:57:b7:05:86:61:4e:6e:
f7:fd:e4:bd:cf:41:67:6b:02:2b:71:bb:84:92:cc:
f8:0f:0b:85:65:e0:84:ca:7a:39:fa:b7:0d:47:88:
d3:40:d9:2f:0c:0f:41:17:8d:cc:e5:6d:53:65:60:
07:2d:80:0f:1b:de:26:3d:74:52:4e:c3:5a:e9:0c:
6d:bb:ef:9e:07:71:db:98:b0:65:3f:8c:10:31:bf:
f8:0b:28:11:8c:7c:a1:64:79:68:e1:ea:b1:7b:c5:
2b:ae:b1:4d:ff:cb:e5:15:ec:12:09:33:41:f6:05:
16:de:9d:4f:89:97:87:ed:0d:0d:cb:86:69:95:0b:
96:05:8e:4d:a7:12:f4:6a:3d:30:aa:ea:79:43:a7:
35:47:43:a9:ed:f9:15:2e:a4:91:ca:c5:b6:53:6a:
04:56:21:37:e2:a1:be:5a:ff:0f:aa:03:35:47:af:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8F:D9:64:98:9F:DB:5E:16:96:93:80:60:AC:C9:CC:C4:A0:F6:71
X509v3 Authority Key Identifier:
keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:c0:1e:27:d2:79:36:cc:37:a3:95:d6:90:05:bf:09:a9:66:
01:28:85:be:e0:58:27:f5:f3:94:64:9d:31:d3:55:f4:a1:da:
e1:72:c7:40:67:7b:77:93:99:7e:4f:ac:c8:75:ba:74:41:d3:
82:6e:78:d9:e1:98:b4:6c:b2:30:27:04:5d:88:5b:f4:60:b2:
7a:ad:56:13:02:68:b8:5d:e4:e9:14:3c:13:ec:cc:92:bd:b8:
79:9c:aa:3d:5b:63:e6:7c:04:09:cc:31:fc:e7:a1:1d:c9:6c:
53:b4:4c:cf:e4:98:ca:d1:9c:b5:b4:d3:51:de:e1:11:8c:4e:
f8:29:71:04:28:68:21:e8:34:42:b3:b8:52:49:67:4a:fc:89:
53:ed:e5:e4:49:b7:59:9f:95:8b:15:39:7f:29:02:49:97:59:
b7:9e:68:89:31:c1:d0:9d:c8:a7:eb:15:54:dd:83:d6:2b:c2:
d1:2e:b7:1d:91:f1:e4:96:fa:65:1b:28:7b:48:3c:6c:ed:ae:
19:83:ed:f5:07:e9:ac:ae:f2:5b:09:cf:4a:6b:23:21:0e:47:
43:3f:1b:b6:38:8f:27:ea:9b:77:23:41:b4:fe:28:84:a3:69:
ec:c3:29:67:ee:5d:e3:84:d2:2f:ff:ab:c5:85:07:00:33:97:
4a:31:43:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:14:46 2026 by rpki-client