Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: Lk/RgSJULHQbTQqlDtIBB0iuDmAyuJOL5M0yV2bYWFg=
Subject key identifier: DB:AC:A1:1F:27:0F:21:DB:26:06:F9:1E:30:5E:B8:FF:66:3A:85:9B
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 019D2929599834F386066DA80D2812D87A08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 08:01:08 +0000
Manifest this update: Thu 26 Mar 2026 08:01:08 +0000
Manifest next update: Fri 27 Mar 2026 08:01:08 +0000
Files and hashes: 1: RRtvAei28-EijoPUYUDN7514nwo.roa (hash: D/rcxbsVh++CM30mNeuIG2vWOtaiLF/fHXsAMj0/18k=)
2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: 95lb9h1wnYKDywM9Uu7U6R4QCycddNi9ib9mJGFqJLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:59:98:34:f3:86:06:6d:a8:0d:28:12:d8:7a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Mar 26 08:01:08 2026 GMT
Not After : Mar 27 08:01:08 2026 GMT
Subject: CN=dbaca11f270f21db2606f91e305eb8ff663a859b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:29:dd:cf:68:a3:ae:6b:c0:ef:74:fd:8d:23:
dc:bf:7f:e2:8d:fb:c8:c1:a2:c0:a8:79:bb:03:cd:
2e:52:b4:6b:43:7f:78:aa:8e:ab:b7:c5:e8:82:96:
84:97:17:fa:43:6a:c3:1e:2b:23:c8:4b:5d:dd:35:
a5:58:51:69:d7:f3:18:db:99:f0:85:e2:ba:b0:c9:
0d:6c:db:c4:19:8a:d3:24:31:c8:57:72:fc:19:3d:
48:20:b5:1d:c6:27:4c:8e:17:73:a4:a9:6e:8d:34:
8d:ea:28:bb:67:84:fa:e3:0f:ae:26:a5:62:2a:4d:
37:f8:db:d6:2e:9f:74:52:a3:2a:18:3c:28:58:c6:
28:d0:45:45:f1:8d:e8:7a:9a:35:4f:88:e6:c8:a1:
89:bf:33:fd:94:61:93:8d:28:53:55:b3:9e:44:e8:
ee:3e:2c:09:87:68:7f:09:3a:01:4d:2d:7f:1b:14:
a8:a8:f4:cc:fa:30:af:8d:9e:34:93:fd:98:1f:c1:
10:0f:f3:dc:76:17:16:cb:81:fa:8d:f6:ea:16:46:
bf:25:0a:b7:3d:3d:d0:ce:85:c8:61:23:cc:be:0b:
b9:dc:32:13:79:95:19:46:2a:86:5f:9c:67:a1:b4:
2c:63:77:e4:ea:fe:70:ac:08:2d:36:c9:2d:e1:bd:
0d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:AC:A1:1F:27:0F:21:DB:26:06:F9:1E:30:5E:B8:FF:66:3A:85:9B
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:b5:77:7d:ef:6e:12:26:9b:eb:de:84:c9:5f:10:40:8d:2e:
9c:7c:18:f6:3e:16:74:e5:df:5c:10:8f:f0:60:e2:ee:20:d8:
ff:35:92:9f:f7:dc:1b:d0:a9:7f:04:55:0b:fe:c9:46:af:df:
61:5c:82:fd:5d:19:e3:1b:7c:3b:f6:87:54:1a:9b:4a:38:89:
ff:c6:ff:a6:3c:5f:4b:fb:18:32:f0:f7:cb:e6:cf:32:31:25:
b1:ce:10:b1:4b:05:53:97:30:9e:6a:3a:06:16:7f:17:5e:0d:
2a:bc:a6:b1:83:93:d6:47:26:10:e5:e6:6d:12:93:74:af:e6:
fe:bf:89:a6:0b:cc:cf:bb:45:44:07:3c:4d:09:c6:61:1c:95:
06:3a:45:84:00:cb:ef:06:c3:1e:d5:e7:63:f9:a2:6d:0c:9e:
2e:ca:75:a9:b0:90:af:49:29:7c:88:58:b5:be:74:94:b7:90:
71:cb:a0:a2:49:cb:77:04:e6:c7:ab:90:86:95:d5:22:e3:0a:
11:7e:d7:e7:98:97:72:e5:a6:fc:32:97:c0:df:cc:3c:15:fc:
34:46:3d:b3:db:8f:9a:76:01:83:63:ba:f9:0d:4c:fa:9c:0d:
6f:f7:8c:f5:a6:98:a8:28:6b:78:4d:a6:ba:55:96:f6:c1:e0:
3d:59:2f:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKVmYNPOGBm2oDSgS2HoIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2N2RkMDVhZDcyZGMyMmZiZWEzMDI5ZmNlZTkwZTZmYjA2
Mzg5MDQwHhcNMjYwMzI2MDgwMTA4WhcNMjYwMzI3MDgwMTA4WjAzMTEwLwYDVQQD
EyhkYmFjYTExZjI3MGYyMWRiMjYwNmY5MWUzMDVlYjhmZjY2M2E4NTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvindz2ijrmvA73T9jSPcv3/ijfvI
waLAqHm7A80uUrRrQ394qo6rt8XogpaElxf6Q2rDHisjyEtd3TWlWFFp1/MY25nw
heK6sMkNbNvEGYrTJDHIV3L8GT1IILUdxidMjhdzpKlujTSN6ii7Z4T64w+uJqVi
Kk03+NvWLp90UqMqGDwoWMYo0EVF8Y3oepo1T4jmyKGJvzP9lGGTjShTVbOeROju
PiwJh2h/CToBTS1/GxSoqPTM+jCvjZ40k/2YH8EQD/PcdhcWy4H6jfbqFka/JQq3
PT3QzoXIYSPMvgu53DITeZUZRiqGX5xnobQsY3fk6v5wrAgtNskt4b0NqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNusoR8nDyHbJgb5HjBeuP9mOoWbMB8GA1UdIwQY
MBaAFIZ90FrXLcIvvqMCn87pDm+wY4kEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG4zUVd0Y3R3aS0tb3dLZnp1a09iN0JqaVFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi8xZTc2ZWUtMzFiYi00Mjk5LTgxNGYt
MjM5ZTVhYmZjYzZhLzEvaG4zUVd0Y3R3aS0tb3dLZnp1a09iN0JqaVFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi8xZTc2ZWUtMzFiYi00Mjk5LTgxNGYtMjM5ZTVhYmZjYzZh
LzEvaG4zUVd0Y3R3aS0tb3dLZnp1a09iN0JqaVFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAarV3fe9u
Eiab696EyV8QQI0unHwY9j4WdOXfXBCP8GDi7iDY/zWSn/fcG9CpfwRVC/7JRq/f
YVyC/V0Z4xt8O/aHVBqbSjiJ/8b/pjxfS/sYMvD3y+bPMjElsc4QsUsFU5cwnmo6
BhZ/F14NKrymsYOT1kcmEOXmbRKTdK/m/r+JpgvMz7tFRAc8TQnGYRyVBjpFhADL
7wbDHtXnY/mibQyeLsp1qbCQr0kpfIhYtb50lLeQccugoknLdwTmx6uQhpXVIuMK
EX7X55iXcuWm/DKXwN/MPBX8NEY9s9uPmnYBg2O6+Q1M+pwNb/eM9aaYqChreE2m
ulWW9sHgPVkvrw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:03:37 2026 by rpki-client