Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json)
Hash identifier: UXkfmRMWLCUShccc7fm/ryCPNa6ot978hREvaKda678=
Subject key identifier: 53:BD:1B:32:E8:1E:AE:AD:12:3C:DC:0B:68:16:4C:5A:C3:2A:3A:68
Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Certificate serial: 019D25F164853C7FC7B4335DD678D09C4C1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
Manifest number: 0386
Signing time: Wed 25 Mar 2026 17:01:09 +0000
Manifest this update: Wed 25 Mar 2026 17:01:09 +0000
Manifest next update: Thu 26 Mar 2026 17:01:09 +0000
Files and hashes: 1: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: UYgGMeu4AaDNQjseluBD0CpI5ucHnJ1OiJhIxgdHWe0=)
2: qjlzVUCaFQUZ4gX30tzeHb6m2Vc.roa (hash: O0FkDLh7vK3dEH2T/ZCf0yS5Z/Mux8DWSQvw+qcaVik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:64:85:3c:7f:c7:b4:33:5d:d6:78:d0:9c:4c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Validity
Not Before: Mar 25 17:01:09 2026 GMT
Not After : Mar 26 17:01:09 2026 GMT
Subject: CN=53bd1b32e81eaead123cdc0b68164c5ac32a3a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a2:cb:87:46:41:cc:2c:e2:b5:cb:31:cd:ae:
d9:07:10:9d:ed:62:fa:25:6e:40:07:d3:79:2a:34:
7e:4a:4f:ef:5a:72:14:c7:c7:25:39:8d:ff:b7:f4:
b3:70:86:e7:35:7a:79:f8:57:ca:7d:56:e2:4b:f6:
ba:cf:c3:57:91:f2:47:6e:18:9e:59:c8:97:80:18:
ef:71:cb:7b:1a:6e:e3:d9:f4:07:2b:51:e0:d8:7c:
23:1a:fb:bd:1e:e4:eb:57:12:54:6e:d3:a9:e0:ec:
b5:37:83:6e:3a:71:75:59:ff:1d:8f:65:05:01:70:
16:a3:0b:36:a8:5d:0c:f7:f8:9b:fb:9e:55:9a:82:
08:2e:1a:ac:84:c2:e1:1d:8c:4c:45:a3:da:31:a4:
db:c2:62:77:b7:dc:5a:23:7a:10:6f:ef:76:c9:33:
eb:7e:d8:de:90:ee:c4:dd:fc:72:8b:8f:44:17:1d:
f0:2f:e7:6b:38:d2:3b:58:6f:71:9d:c3:85:c3:54:
8f:10:fb:d1:51:15:36:24:28:77:4e:b7:bd:58:e1:
9b:0b:04:2f:ab:e7:8e:e7:50:5c:93:e7:5e:22:bf:
5a:8d:ed:63:1d:3a:7f:dd:cc:e2:57:03:cd:6e:22:
5e:c6:82:cb:32:dc:82:b2:3c:b0:59:77:0b:9a:4a:
be:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BD:1B:32:E8:1E:AE:AD:12:3C:DC:0B:68:16:4C:5A:C3:2A:3A:68
X509v3 Authority Key Identifier:
keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:34:b7:c2:92:6a:4b:c8:65:05:27:15:cc:e2:04:c8:ab:ef:
86:68:dc:9f:c0:32:e8:3f:3d:c1:fd:b1:b4:39:41:77:bd:ac:
44:45:7c:0a:ae:d8:2d:3c:73:19:65:75:e3:7d:04:b5:51:7a:
a8:af:5c:43:f1:7d:3d:20:3c:8e:06:12:71:59:26:df:57:35:
e4:58:6c:61:2e:e6:8f:c5:d6:14:8a:0c:72:92:db:ad:37:31:
0f:a5:1b:b0:ab:45:cc:85:e3:0c:fa:80:4d:78:2f:28:2f:c1:
84:64:97:91:ec:3e:7b:ba:4c:b3:de:1e:72:ed:4c:96:6b:c5:
5f:98:53:28:35:71:a8:58:f2:80:1c:89:47:ce:1d:da:72:8e:
54:42:ee:63:51:47:40:bf:53:83:a5:19:51:1b:93:db:4f:50:
bc:d5:1a:2d:51:be:6c:e2:09:36:dc:42:39:0c:dd:cc:0f:0f:
d1:37:82:20:e7:c5:00:d6:c4:61:2d:3f:5b:0f:f1:3b:b8:79:
21:01:e7:c2:56:e7:90:a0:61:8d:e6:ad:ed:dd:6e:da:1f:6e:
15:58:72:82:d5:60:33:a9:52:8d:04:cd:fe:f4:87:a5:b3:a8:
0c:cd:3d:7f:ca:09:46:9e:35:ae:8a:19:de:50:68:56:55:5f:
26:89:16:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8WSFPH/HtDNd1njQnEweMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0OGIxMjk0ZDI3NjlmYTM3YjM0OGFjYzVkYWJmY2I4ZmU2
Zjk5OTgwHhcNMjYwMzI1MTcwMTA5WhcNMjYwMzI2MTcwMTA5WjAzMTEwLwYDVQQD
Eyg1M2JkMWIzMmU4MWVhZWFkMTIzY2RjMGI2ODE2NGM1YWMzMmEzYTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7aLLh0ZBzCzitcsxza7ZBxCd7WL6
JW5AB9N5KjR+Sk/vWnIUx8clOY3/t/SzcIbnNXp5+FfKfVbiS/a6z8NXkfJHbhie
WciXgBjvcct7Gm7j2fQHK1Hg2HwjGvu9HuTrVxJUbtOp4Oy1N4NuOnF1Wf8dj2UF
AXAWows2qF0M9/ib+55VmoIILhqshMLhHYxMRaPaMaTbwmJ3t9xaI3oQb+92yTPr
ftjekO7E3fxyi49EFx3wL+drONI7WG9xncOFw1SPEPvRURU2JCh3Tre9WOGbCwQv
q+eO51Bck+deIr9aje1jHTp/3cziVwPNbiJexoLLMtyCsjywWXcLmkq+owIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFO9GzLoHq6tEjzcC2gWTFrDKjpoMB8GA1UdIwQY
MBaAFISLEpTSdp+jezSKzF2r/Lj+b5mYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2Mt
MGRiNzI1OWYyMGI4LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2MtMGRiNzI1OWYyMGI4
LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjzS3wpJq
S8hlBScVzOIEyKvvhmjcn8Ay6D89wf2xtDlBd72sREV8Cq7YLTxzGWV1430EtVF6
qK9cQ/F9PSA8jgYScVkm31c15FhsYS7mj8XWFIoMcpLbrTcxD6UbsKtFzIXjDPqA
TXgvKC/BhGSXkew+e7pMs94ecu1MlmvFX5hTKDVxqFjygByJR84d2nKOVELuY1FH
QL9Tg6UZURuT209QvNUaLVG+bOIJNtxCOQzdzA8P0TeCIOfFANbEYS0/Ww/xO7h5
IQHnwlbnkKBhjeat7d1u2h9uFVhygtVgM6lSjQTN/vSHpbOoDM09f8oJRp41rooZ
3lBoVlVfJokWWQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:14 2026 by rpki-client