Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: rhnSVpFXbVO//D3NvDQ08SnCK58GlDoohP99YHxGSEQ=
Subject key identifier: FB:DA:FF:BE:29:DD:37:D6:B2:AE:FE:F7:87:37:4D:84:C2:8D:0A:99
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 019D26964BDE24DF13631FE3367922BBB7EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 16A8
Signing time: Wed 25 Mar 2026 20:01:17 +0000
Manifest this update: Wed 25 Mar 2026 20:01:17 +0000
Manifest next update: Thu 26 Mar 2026 20:01:17 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: YS9jxjDfEnZCYpyGHBBIhTeYp4xVhcTK3EJEJKXXOng=)
2: vBEDZky1DrDyLEUWSCcKSfFchsA.roa (hash: K1r/2AFcY8elhH0ckxTVORnjb/4FnfMG0iSbfTKXjq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:4b:de:24:df:13:63:1f:e3:36:79:22:bb:b7:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Mar 25 20:01:17 2026 GMT
Not After : Mar 26 20:01:17 2026 GMT
Subject: CN=fbdaffbe29dd37d6b2aefef787374d84c28d0a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f0:51:4e:26:2f:f1:f9:e9:1b:ef:cb:83:5e:
7a:76:bf:e5:20:99:f3:1b:87:35:91:1a:dd:07:30:
7f:44:60:bb:85:e6:8d:0b:98:49:d2:d8:e8:83:b0:
ad:b2:4c:97:af:0d:15:92:3a:e4:7d:e0:af:d4:de:
9a:63:ee:69:6d:66:58:24:0b:8e:45:a4:aa:f2:51:
41:df:e3:d2:b8:58:8b:84:4d:b3:3b:c8:82:21:31:
5a:20:b5:93:0f:ea:46:85:83:76:04:16:be:3a:90:
95:e5:45:04:57:03:fb:d8:97:51:06:bd:7b:fd:f2:
7a:61:63:88:fb:4a:54:1f:d3:ed:74:a7:51:1a:92:
32:8d:30:74:8b:39:79:1b:8d:a8:3c:f6:6e:97:5e:
9c:4a:f8:c6:e9:84:4d:a2:03:c2:03:bf:88:4d:b4:
ca:92:de:57:8e:37:36:a3:3e:81:95:76:8e:d1:b9:
71:0d:80:5f:37:63:0b:b3:db:a1:ac:0e:01:97:e3:
3f:ef:e8:75:0f:ea:f2:d0:54:7c:b1:2c:fc:ab:42:
f9:a6:8f:80:28:fd:f5:80:90:af:d8:84:81:18:bf:
00:e6:8c:c2:bd:f2:9a:ca:f0:1d:06:30:d9:95:2b:
46:1a:74:d2:0d:1c:18:86:1a:46:45:d3:7d:11:3b:
f1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DA:FF:BE:29:DD:37:D6:B2:AE:FE:F7:87:37:4D:84:C2:8D:0A:99
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:1f:19:01:bc:a1:86:2b:47:2a:93:fd:db:7b:1b:f9:fb:04:
61:61:f3:02:1b:28:e1:34:32:6a:f0:42:cd:2f:68:7a:57:4f:
7c:65:3b:70:e6:58:0f:70:74:de:ce:b0:76:79:61:52:40:81:
86:fa:56:99:6f:01:69:cf:1e:d0:bb:a5:a7:2c:6e:39:35:a9:
26:48:bf:48:59:cb:89:9e:1a:b5:90:f6:f7:37:78:c9:5b:8c:
15:49:42:85:11:59:47:84:b9:e2:67:6b:2a:75:0d:ad:d2:85:
c6:80:60:ef:2f:c8:b1:e3:24:1f:c6:73:21:71:1f:f7:5d:2e:
9b:75:71:f6:be:f0:39:71:38:3a:4b:8c:a1:a6:34:8f:84:ae:
d4:a9:07:68:8a:da:fc:68:a7:39:c9:b0:0f:5a:31:2d:ba:71:
d7:87:b9:3a:23:c4:ea:61:ca:25:d2:34:5f:16:85:77:09:ea:
2f:72:c6:59:a0:47:fe:4d:6c:ff:06:b5:cc:b1:2c:9d:39:97:
ac:d3:dc:cb:86:54:27:93:39:41:70:76:ff:09:42:b5:7f:44:
5f:8c:10:1a:90:f9:c2:09:ca:4b:50:61:5c:84:b2:22:58:2d:
08:2f:6d:14:21:37:5b:cd:d0:85:91:e8:f7:8b:b6:c3:ba:bc:
3e:da:cb:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:04:55 2026 by rpki-client