Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
File: hT8dWhiK5rK18qoTjbj5mqWq16E.mft (raw, json)
Hash identifier: esTOYZosys2pAJZlJsbGynMr6aBTh9QnyazYVJamoyA=
Subject key identifier: 04:DF:65:43:6B:69:FA:FD:35:8E:1B:1E:1D:25:2A:E3:4D:7D:41:8D
Authority key identifier: 85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1
Certificate issuer: /CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1
Certificate serial: 019D273ABB303C75FAC9B34D749E12D4D731
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
Manifest number: 01C1
Signing time: Wed 25 Mar 2026 23:00:53 +0000
Manifest this update: Wed 25 Mar 2026 23:00:53 +0000
Manifest next update: Thu 26 Mar 2026 23:00:53 +0000
Files and hashes: 1: FC_VFDWxRgvoLdyaf52ezfjlzY4.roa (hash: ikf5D2Q+V7XdSE1hWi8KX7L8XUe1goHfTjIB4LBsAqg=)
2: hT8dWhiK5rK18qoTjbj5mqWq16E.crl (hash: KRXfeGXVVRf4RRgaU0MulrD6rRJPKyM3lNqTxzLRIKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:bb:30:3c:75:fa:c9:b3:4d:74:9e:12:d4:d7:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1
Validity
Not Before: Mar 25 23:00:53 2026 GMT
Not After : Mar 26 23:00:53 2026 GMT
Subject: CN=04df65436b69fafd358e1b1e1d252ae34d7d418d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:03:da:b1:d7:7b:7f:e5:32:25:ff:fc:1b:16:
f4:ea:b3:2b:41:49:4c:3b:b5:9a:65:4a:02:b0:49:
7f:b6:43:aa:dc:58:87:a9:52:f9:66:d6:01:b1:9f:
99:3e:a1:48:8b:67:37:bc:0b:ba:67:a5:5f:28:49:
75:ba:c4:5f:b7:25:38:22:3f:47:86:69:2a:74:c6:
1c:43:18:d7:b9:ec:85:34:07:d7:2a:88:85:68:ea:
71:99:43:22:04:b4:14:fc:e5:14:a8:1e:6e:6a:93:
85:ca:f4:f2:7d:50:50:75:6c:8b:97:ae:1c:58:9a:
26:64:8c:10:f8:3b:b4:86:e7:2a:9f:b2:7c:d6:8d:
18:bd:14:dd:61:45:1c:60:cb:64:51:d7:7b:c5:a2:
7f:b0:c1:b0:6a:98:4d:63:7a:2d:5e:27:f9:40:a4:
49:31:fd:ae:bb:91:d8:48:42:2d:a2:af:47:3d:b1:
9e:b3:0b:a5:93:e7:ae:46:c6:ea:49:ab:28:88:16:
cc:aa:6f:53:da:d8:30:c9:d7:7e:63:b8:58:d1:1f:
a4:2e:87:16:bd:aa:9d:42:b3:d1:df:61:b2:46:30:
4e:77:e6:b4:89:d1:f7:3e:b7:5c:fe:18:c6:a0:dc:
0c:c0:0d:da:c8:5b:9b:08:0e:76:a6:d2:83:13:4b:
fa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DF:65:43:6B:69:FA:FD:35:8E:1B:1E:1D:25:2A:E3:4D:7D:41:8D
X509v3 Authority Key Identifier:
keyid:85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:a0:81:50:4a:34:d1:15:4a:5c:a7:3e:39:e8:27:95:a8:b8:
2a:1a:3b:e8:63:9e:5a:f7:16:c1:c5:3e:af:78:7c:12:92:71:
19:a2:47:4a:fa:97:08:60:f3:a4:64:98:dc:3c:ae:c3:a6:4e:
e2:2d:d1:8a:5d:c7:ec:dd:fb:2a:64:8a:58:b2:e8:87:fc:b9:
fc:b7:8a:b2:46:66:0b:55:6c:34:91:da:50:0e:8f:81:b3:4f:
84:4d:59:fa:64:4c:48:6c:54:e1:b6:ba:6e:fb:2c:4e:c9:b3:
cd:91:e5:70:63:1a:7f:69:3b:b4:b7:4b:a1:c8:b4:17:5b:e4:
22:1c:a7:f7:e3:de:0a:49:78:3f:78:73:df:65:d7:b9:5a:2b:
42:6f:0b:ec:bc:87:68:ed:1f:63:0a:ca:7d:ce:04:30:ec:27:
ec:39:cb:8c:78:6f:bb:e2:ae:72:2d:91:38:99:04:37:e9:3e:
22:98:7b:dd:8f:0f:4d:80:16:20:39:d3:8c:ec:41:61:27:1b:
f6:26:7b:d2:b1:b4:2e:78:d1:a2:39:d7:ac:4c:f6:93:77:50:
6b:44:41:92:b0:20:bb:1c:f1:61:96:f7:fb:fc:55:b3:25:db:
b6:c0:fe:b8:c0:32:fa:df:99:dd:0a:89:b7:e7:46:e4:2a:92:
b1:b6:f6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:43:40 2026 by rpki-client