Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
File: hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft (raw, json)
Hash identifier: rtIIP8YK6DBX8GwkNmeiGFWjkLIIN9UoLCDpDTvqXgA=
Subject key identifier: 62:F6:D8:4C:F0:F3:26:B5:B1:29:0C:D6:F9:02:08:FE:C8:DC:97:95
Authority key identifier: 84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
Certificate issuer: /CN=8466a5dde27f911da8be73c261ff55b5881198a9
Certificate serial: 019D2772CA7BFAC9C2EE6AD78B356C772A70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 00:02:07 +0000
Manifest this update: Thu 26 Mar 2026 00:02:07 +0000
Manifest next update: Fri 27 Mar 2026 00:02:07 +0000
Files and hashes: 1: ZhycJ5-Nudz4jzFAN7KNypEk_qY.roa (hash: Sy4qxp/vjChSs7LGRbsdrKBPDJPwQ9QRGo9byWidGTE=)
2: hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl (hash: u1jcuq6zR0vD/CkN7uy5seUO/7IT3HkCIT7kAY2G+Og=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:ca:7b:fa:c9:c2:ee:6a:d7:8b:35:6c:77:2a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466a5dde27f911da8be73c261ff55b5881198a9
Validity
Not Before: Mar 26 00:02:07 2026 GMT
Not After : Mar 27 00:02:07 2026 GMT
Subject: CN=62f6d84cf0f326b5b1290cd6f90208fec8dc9795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7c:8d:d9:e3:4c:42:7b:8b:1c:66:6f:18:63:
f3:ae:3d:4b:7c:46:57:50:c0:fa:b2:65:da:d3:7d:
43:fe:b6:15:a7:c5:25:69:df:8a:ce:4d:53:24:f0:
c9:c0:4a:0e:33:70:42:67:e6:b7:8b:38:2a:37:ef:
65:87:e5:75:a1:6e:67:ac:48:9d:df:13:40:08:a2:
48:09:ae:61:f4:65:df:8f:01:45:50:27:3d:b0:42:
a5:12:7a:0a:e2:0d:ac:29:b1:7b:a9:0a:d7:16:f7:
f6:3f:40:7b:30:be:6d:68:f5:1c:89:07:8b:6f:ec:
de:57:c5:ee:10:2c:c7:37:47:e5:75:95:79:68:c2:
c7:31:1d:41:63:c9:97:b1:33:00:8b:f2:4f:06:83:
70:1f:d0:b2:12:65:32:c7:25:da:ce:02:a1:eb:02:
60:33:37:39:82:b3:e5:b1:47:1c:3c:a2:d5:2e:12:
af:b4:a0:d1:48:1e:e3:44:d4:d1:bc:64:13:1b:cc:
c2:d7:9f:ca:ae:71:23:73:47:2c:bc:72:53:c3:88:
43:36:56:52:25:7f:ce:4a:64:22:ba:05:58:d6:cc:
ee:c4:d3:a7:ec:94:5a:28:fd:2f:54:20:80:f6:37:
fb:d6:12:f8:76:62:c8:03:36:e9:43:a6:22:ee:a3:
1a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F6:D8:4C:F0:F3:26:B5:B1:29:0C:D6:F9:02:08:FE:C8:DC:97:95
X509v3 Authority Key Identifier:
keyid:84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:be:88:fc:6b:71:2e:fd:72:95:04:08:bf:f1:7e:af:eb:b7:
f3:8a:e7:d0:2a:25:35:32:d7:91:0c:7f:32:37:11:f6:0b:94:
ef:c5:2c:89:db:f1:f5:56:46:54:83:02:4b:35:13:c9:dc:58:
c4:de:3f:f8:9f:22:83:31:7b:8d:0a:4d:97:3b:cf:3d:ce:87:
38:b0:ff:e9:1c:be:bb:00:4f:14:84:46:6f:fc:b7:5b:cb:af:
88:14:53:67:f4:96:34:71:a6:25:a1:47:61:3b:a6:9f:df:10:
de:84:fd:dd:b1:29:a4:24:a4:18:c1:e8:eb:45:a9:66:f3:83:
68:3d:6e:a0:04:88:6b:74:d0:ff:3f:88:01:cf:73:f9:fa:07:
85:31:64:af:ee:82:0e:6c:3b:37:eb:1c:c8:49:7e:0f:32:27:
4b:56:fb:b0:f8:53:c7:cb:cb:41:4a:86:e8:56:8a:91:78:db:
8f:4b:11:29:3b:9b:e0:3d:d9:36:b1:06:0e:29:90:f8:e7:21:
52:52:e1:4f:54:69:08:4e:ef:e2:da:1f:fb:4e:9c:fb:a2:54:
2a:6f:94:8e:3c:4e:54:fa:ef:cd:d9:d7:aa:73:70:52:69:c9:
57:a7:cf:78:de:c0:0e:f7:7a:79:70:1e:a7:e1:ab:8e:20:95:
92:2a:9f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:53:22 2026 by rpki-client