Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
File: HrwURUFHAQyh700E0hASXh7X0ho.mft (raw, json)
Hash identifier: IJrKIE3wOXQhvQNPSB+/YeGf5D07gbUb6vhe62/blso=
Subject key identifier: 97:03:61:CD:59:A9:52:1B:43:22:B7:8A:6F:EB:70:06:CA:75:7C:53
Authority key identifier: 1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
Certificate issuer: /CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Certificate serial: 019CB09182ED8D85D2EAE569DD011745B4A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
Manifest number: 0A08
Signing time: Mon 02 Mar 2026 22:00:52 +0000
Manifest this update: Mon 02 Mar 2026 22:00:52 +0000
Manifest next update: Tue 03 Mar 2026 22:00:52 +0000
Files and hashes: 1: HrwURUFHAQyh700E0hASXh7X0ho.crl (hash: qbCbdploQiaTS/hpRb9qZRSzOuvpFVrmaC0u/LnG3W4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:91:82:ed:8d:85:d2:ea:e5:69:dd:01:17:45:b4:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a
Validity
Not Before: Mar 2 22:00:52 2026 GMT
Not After : Mar 3 22:00:52 2026 GMT
Subject: CN=970361cd59a9521b4322b78a6feb7006ca757c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:72:24:0f:75:de:cb:69:55:c0:a5:8f:92:9e:
5e:39:93:d4:d8:c6:ee:3d:08:1d:4d:39:de:88:a0:
cc:96:0d:04:42:0d:69:d5:1b:c4:87:9b:06:9e:33:
97:e7:f8:7f:c8:81:a8:eb:c8:70:ba:39:5f:9e:2a:
51:e8:57:f4:13:6e:e1:2c:02:d0:b7:53:e0:0f:b1:
65:eb:e3:2b:04:2f:54:ea:33:32:f9:a0:a8:8a:9a:
fd:be:75:78:e5:c9:d1:93:c6:ef:28:97:5e:13:ac:
35:2b:57:cc:94:50:9f:4b:3d:f9:a2:52:ba:9f:9e:
df:36:34:d3:0c:6f:d8:6d:9b:a5:5e:42:2b:5d:45:
79:61:c6:28:03:69:56:24:92:02:c8:e9:ba:fb:33:
dc:5e:c5:a2:8f:7c:4d:44:cc:3d:06:d8:2c:5b:ef:
b8:92:14:a2:a7:d7:36:42:55:57:bd:5c:e3:1d:f9:
41:05:74:25:9b:dd:cf:64:23:b4:4c:53:ba:c9:e1:
6e:e9:5d:3a:af:bc:bf:02:77:28:6c:dc:e4:29:0a:
21:05:f0:0d:36:8d:bf:cf:46:d9:26:71:41:a9:1f:
59:d6:34:a9:1a:2c:0e:de:ef:eb:32:ee:5c:29:e1:
ca:c5:00:16:25:6e:9b:ed:0c:59:1e:8b:c4:a8:82:
a3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:03:61:CD:59:A9:52:1B:43:22:B7:8A:6F:EB:70:06:CA:75:7C:53
X509v3 Authority Key Identifier:
keyid:1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:9f:b5:87:0b:75:ff:3b:05:1d:21:72:42:b6:89:df:2c:ca:
24:b2:3c:99:40:f8:b4:e6:c2:ef:f5:3a:d3:e4:35:04:59:22:
c9:f7:43:c7:5e:d4:53:99:ff:8a:14:bf:b0:b8:e4:3c:65:16:
f2:f7:cb:15:83:df:c6:a1:4d:93:cf:bb:89:05:8f:22:7d:c2:
8d:d5:b0:84:bf:37:6f:6d:e9:e1:a1:d1:b4:15:a3:d4:39:84:
40:cb:5a:29:7c:1c:5a:a0:2d:b2:10:6e:07:36:10:b5:3c:7e:
47:ef:be:a4:44:2b:c6:72:04:fc:4a:b5:a4:22:82:1e:5e:e1:
d9:a6:a0:58:15:bc:86:1f:c7:17:f2:69:bb:c8:0e:91:89:43:
a5:98:52:f2:dd:7b:2c:79:3b:d0:e3:b9:72:83:e2:c7:e8:9c:
33:4c:2b:5d:c1:40:7f:61:57:e1:e6:4c:d3:40:9b:d0:64:02:
0a:ba:fc:c2:60:20:91:be:e0:e7:b7:7c:6c:33:17:c8:e7:ba:
5f:8e:af:39:26:1c:38:40:97:6d:8a:9f:a8:39:6f:78:f3:bf:
f7:a9:ef:aa:56:bd:0d:f2:16:9d:ac:fb:d2:d3:9e:d4:b7:cc:
42:db:df:26:dd:fb:bc:78:8b:26:24:52:55:dc:18:67:a1:15:
b6:87:d0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:15:45 2026 by rpki-client