Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: LxFtvm7vCC2rTAwjV7Fi+nZTzgHsw0Xw7Wbrzo5Csmk=
Subject key identifier: 2D:D2:90:04:B5:15:13:0C:62:00:3B:42:CA:60:32:0F:06:2D:B5:0A
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 019D273AC919BA9BD2E1109344CB31D1AE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 0A9B
Signing time: Wed 25 Mar 2026 23:00:57 +0000
Manifest this update: Wed 25 Mar 2026 23:00:57 +0000
Manifest next update: Thu 26 Mar 2026 23:00:57 +0000
Files and hashes: 1: 08llQ74BuBaNWqT4Y7FAkII-DJw.roa (hash: pxdI4iXE9K/M2+2A8OZhCl+4882oOXHYqUhqvnxntUE=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: L8yfHRh0XpnXeJbT7DPBBi7DPrmTmqounYAzCzg2Dkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:c9:19:ba:9b:d2:e1:10:93:44:cb:31:d1:ae:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Mar 25 23:00:57 2026 GMT
Not After : Mar 26 23:00:57 2026 GMT
Subject: CN=2dd29004b515130c62003b42ca60320f062db50a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:57:b2:e5:6c:30:2c:73:ed:b4:2e:81:0a:0a:
ac:47:c3:79:5e:a6:69:fa:cc:f5:ee:5a:c3:08:f5:
6e:3d:be:80:ef:55:bf:34:ce:db:7b:57:67:9e:1a:
42:77:b3:5a:77:23:74:29:f7:29:f8:f2:e5:78:49:
5c:9a:6b:e8:02:b8:85:95:88:08:1a:92:c8:92:88:
43:d5:3c:73:ad:10:bd:df:4e:b5:7e:1b:77:60:03:
d3:86:9a:36:89:81:d1:a9:ab:ce:dc:2a:c3:60:d0:
f7:5e:5b:cc:8a:a0:5f:37:fb:08:ee:74:c5:85:81:
d3:e8:fb:99:d7:11:46:03:24:9f:c9:e8:0a:69:e1:
8a:5c:d2:f6:bb:0d:89:ec:1e:4d:bf:41:b3:45:77:
5e:d2:42:3b:50:24:ee:80:77:56:e9:ae:33:ff:80:
46:71:8a:df:35:1d:7a:54:c3:81:5f:76:03:ab:bc:
63:82:ba:4e:df:17:c4:27:f5:a8:1e:5e:6e:ac:26:
6b:b0:a4:2e:dd:6e:15:a1:f2:c0:4e:5b:c3:cb:f5:
78:c2:29:d3:21:99:ee:9c:2f:1a:46:26:ee:2a:bf:
85:6b:c6:c6:f2:b9:36:8c:73:6f:67:69:39:3e:dd:
ad:4d:1d:aa:ca:c4:7a:d9:dd:8b:f7:f4:2f:d1:e4:
1a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D2:90:04:B5:15:13:0C:62:00:3B:42:CA:60:32:0F:06:2D:B5:0A
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:36:51:a2:80:74:a4:bf:b9:b6:97:0d:5b:23:73:56:80:43:
79:26:ae:c5:79:e3:f0:7f:6f:fc:21:cf:c0:7f:c8:f3:b8:f9:
da:eb:98:6f:04:53:8f:ed:cc:ca:20:52:c7:a6:6b:ba:4b:96:
9a:46:59:be:0f:32:77:71:e3:ec:51:78:d7:f6:bb:b4:4c:b6:
77:ef:59:78:a4:01:72:9b:95:db:9c:54:1c:79:5b:62:bb:9a:
ed:20:62:7c:14:a1:3f:72:26:69:e4:f1:3c:ac:86:3a:74:7f:
cf:33:c4:24:64:e5:ae:f5:41:5d:a0:53:de:b1:f9:be:30:2d:
04:72:c8:a4:e2:ed:14:4d:b9:50:62:c4:85:3e:d9:63:f3:4c:
22:73:6b:40:14:90:ff:b7:b1:b0:9c:28:f8:d3:3e:d8:43:2a:
50:59:87:e4:19:9c:dd:87:07:9e:cf:8b:73:fe:2c:02:53:a0:
5e:9e:27:df:05:33:e2:82:28:39:7b:20:b5:b1:27:68:d8:41:
e9:6e:26:80:17:5e:e0:4f:81:f1:05:d6:4a:13:b8:13:f4:0e:
32:bd:cf:bd:0d:3c:1e:e9:0e:7c:a2:2f:fc:7a:90:8a:a7:af:
f2:37:e5:c7:69:f0:6d:63:4b:ae:97:c2:49:d5:fc:88:37:3b:
8f:fc:4f:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOskZupvS4RCTRMsx0a5aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0M2JlODYzOWY0MDM5OTkzYzFmNmU3ODc5ZjQ3MjllNDdk
YzM3YWUwHhcNMjYwMzI1MjMwMDU3WhcNMjYwMzI2MjMwMDU3WjAzMTEwLwYDVQQD
EygyZGQyOTAwNGI1MTUxMzBjNjIwMDNiNDJjYTYwMzIwZjA2MmRiNTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1ey5WwwLHPttC6BCgqsR8N5XqZp
+sz17lrDCPVuPb6A71W/NM7be1dnnhpCd7NadyN0Kfcp+PLleElcmmvoAriFlYgI
GpLIkohD1TxzrRC93061fht3YAPThpo2iYHRqavO3CrDYND3XlvMiqBfN/sI7nTF
hYHT6PuZ1xFGAySfyegKaeGKXNL2uw2J7B5Nv0GzRXde0kI7UCTugHdW6a4z/4BG
cYrfNR16VMOBX3YDq7xjgrpO3xfEJ/WoHl5urCZrsKQu3W4VofLATlvDy/V4winT
IZnunC8aRibuKr+Fa8bG8rk2jHNvZ2k5Pt2tTR2qysR62d2L9/Qv0eQaVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC3SkAS1FRMMYgA7QspgMg8GLbUKMB8GA1UdIwQY
MBaAFIQ76GOfQDmZPB9ueHn0cp5H3DeuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi85ZTFhNzctN2MxNy00NDgxLTg3N2Mt
Nzc4ODc0OGY2N2NiLzEvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi85ZTFhNzctN2MxNy00NDgxLTg3N2MtNzc4ODc0OGY2N2Ni
LzEvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIjZRooB0
pL+5tpcNWyNzVoBDeSauxXnj8H9v/CHPwH/I87j52uuYbwRTj+3MyiBSx6ZrukuW
mkZZvg8yd3Hj7FF41/a7tEy2d+9ZeKQBcpuV25xUHHlbYrua7SBifBShP3ImaeTx
PKyGOnR/zzPEJGTlrvVBXaBT3rH5vjAtBHLIpOLtFE25UGLEhT7ZY/NMInNrQBSQ
/7exsJwo+NM+2EMqUFmH5Bmc3YcHns+Lc/4sAlOgXp4n3wUz4oIoOXsgtbEnaNhB
6W4mgBde4E+B8QXWShO4E/QOMr3PvQ08HukOfKIv/HqQiqev8jflx2nwbWNLrpfC
SdX8iDc7j/xPHA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:34 2026 by rpki-client