Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: 5UJ7hbaGNbv8THymjoenR5PJKSmLk+wyHLs8PDpmRJc=
Subject key identifier: EC:64:8B:0F:C7:1A:EE:D4:FF:54:B2:13:9D:95:DF:9C:01:6F:F6:E8
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 019CACEBCCB41E0D74F02057572B05020269
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 1856
Signing time: Mon 02 Mar 2026 05:01:00 +0000
Manifest this update: Mon 02 Mar 2026 05:01:00 +0000
Manifest next update: Tue 03 Mar 2026 05:01:00 +0000
Files and hashes: 1: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: eUW00HirW7YngOoL5REgXABX3AT2fD09Ymdyzru2ZNY=)
2: bDrj-tZkqPqGj2uPI5o7mN3ny5k.roa (hash: WctHj8uUD5EoOkvtFB0q+2ZJ4vqUF2yl3XDa913n+Fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:cc:b4:1e:0d:74:f0:20:57:57:2b:05:02:02:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Mar 2 05:01:00 2026 GMT
Not After : Mar 3 05:01:00 2026 GMT
Subject: CN=ec648b0fc71aeed4ff54b2139d95df9c016ff6e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8f:1a:5c:0b:a1:ce:30:ba:26:9d:8d:3b:c7:
c5:13:0b:9d:f3:3e:3e:60:30:95:7b:55:3f:a9:ae:
36:d3:2d:25:94:f4:24:17:23:c6:24:71:7d:32:25:
1e:76:3b:ab:5a:50:b1:5f:9a:eb:37:a9:04:8b:a6:
21:50:18:79:77:c0:9e:6b:aa:89:10:d5:9a:86:75:
4a:f6:ff:8c:87:01:68:4d:e7:84:62:b8:3f:77:a5:
72:b1:8b:30:72:a6:09:26:30:55:60:bd:9b:f1:03:
8e:62:eb:09:90:d1:ee:73:60:d1:c6:97:b5:96:75:
11:b1:10:82:22:a9:20:f9:aa:bc:98:ab:87:3d:a7:
7e:93:1b:4c:7d:41:ff:6e:96:29:e5:65:98:87:41:
cc:32:bc:0f:03:16:2a:7b:96:19:73:6b:93:4e:ca:
75:54:32:dc:82:a1:d4:20:4f:a0:dc:3e:53:b2:53:
af:1e:0a:15:46:94:cb:20:d2:1b:52:e7:07:16:5c:
53:57:a4:55:b2:84:c5:2f:98:3b:af:74:39:cc:36:
44:9e:23:82:6c:9b:42:e7:fb:0e:84:83:a2:1c:5e:
3d:f8:f2:a2:87:26:17:8b:fe:4a:37:11:0d:86:df:
fc:d4:e9:3e:2a:94:f5:87:9e:15:18:88:82:9e:3c:
66:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:64:8B:0F:C7:1A:EE:D4:FF:54:B2:13:9D:95:DF:9C:01:6F:F6:E8
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:92:e9:00:70:7a:25:0b:55:d7:03:2e:3a:88:40:af:cb:91:
b7:43:c9:08:76:c6:f6:8f:9f:19:5d:8f:44:0f:dc:ac:c2:a3:
3a:7b:ac:e7:9b:4d:f9:ca:05:f8:a1:75:20:25:11:8b:c2:51:
d9:0e:37:ac:2e:cc:50:40:a8:ae:b4:4e:2f:d3:ca:36:4d:00:
70:d6:c2:48:e4:2f:c6:ba:92:6e:66:ca:a3:7a:00:33:e5:34:
fb:d4:97:54:7f:11:ce:48:1e:0a:fb:20:8e:d5:9e:81:f8:ee:
fa:3e:da:27:d8:55:12:9b:77:b7:5c:33:23:b3:90:9a:43:4c:
5f:b7:32:99:cb:8e:ba:23:d9:09:48:b7:fa:44:21:53:37:cd:
a0:d9:4f:43:88:29:4f:03:a5:df:67:3e:50:13:2a:c6:84:1b:
a9:7b:7c:04:85:b8:96:7c:28:6c:f0:4e:61:49:a1:b7:76:68:
f0:7c:1d:be:57:75:6b:e5:a8:d2:b4:ea:cd:6e:88:6a:79:8c:
9e:68:f1:78:78:26:25:32:a1:b4:ba:e3:1d:5f:84:ba:93:aa:
d0:1a:33:6f:2e:5e:78:7a:fd:82:85:99:ee:65:6a:18:0d:52:
eb:d6:8b:ee:7e:f4:53:17:d2:25:67:0e:b1:84:40:42:f7:a3:
fd:1a:7f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:00:26 2026 by rpki-client