Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
File: hUwNsAZYRNlZTf6N2O_XftHkk_g.mft (raw, json)
Hash identifier: 4t1oz82hL8SILj1BVMODFpe65FDBhOwlPti7VrID4XU=
Subject key identifier: AE:BE:34:CF:54:2E:01:BA:1B:5C:52:4C:78:E9:1D:7E:18:48:5D:AD
Authority key identifier: 85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
Certificate issuer: /CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Certificate serial: 019CACB4BBFC1E22DD3E62755BD6A7447160
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 04:00:51 +0000
Manifest this update: Mon 02 Mar 2026 04:00:51 +0000
Manifest next update: Tue 03 Mar 2026 04:00:51 +0000
Files and hashes: 1: DB-kubcDSriQvnabeDogJ7LkMfM.roa (hash: XGoLRb9s7HKmX6rpBYGsBJA5idHvV3yS22+b7xVn/rY=)
2: hUwNsAZYRNlZTf6N2O_XftHkk_g.crl (hash: RpieRvU/i6Dtnn6SVgxWkFwB8ac0rq2u1zfqHgk2opE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:bb:fc:1e:22:dd:3e:62:75:5b:d6:a7:44:71:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Validity
Not Before: Mar 2 04:00:51 2026 GMT
Not After : Mar 3 04:00:51 2026 GMT
Subject: CN=aebe34cf542e01ba1b5c524c78e91d7e18485dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:44:76:37:d7:80:a0:8b:8a:4b:9a:7d:87:6c:
8a:1b:8e:9c:b4:f4:ef:c2:c5:b2:8e:ce:c1:3d:a4:
dc:42:93:f3:af:a9:6f:ad:f1:0e:a8:45:9d:e6:9c:
d8:d9:aa:32:43:a2:e4:c7:c4:c1:e1:bd:19:85:c9:
06:38:72:52:72:5f:c6:5d:91:8e:79:94:b3:ca:f0:
81:47:ab:6e:43:a9:74:b1:9e:9f:54:a7:56:d4:58:
da:b0:07:ac:7d:02:52:fd:a1:b7:45:d6:46:8b:2f:
56:ee:90:7e:7d:89:29:78:ec:0d:e8:f3:70:e0:a0:
73:cf:7f:d5:a4:ff:f4:1c:cc:30:a7:5b:56:a6:7d:
f2:fc:c2:c2:6c:cd:06:6c:06:28:55:dc:43:b1:50:
dd:42:fa:25:99:54:be:43:1a:aa:0e:f9:ee:32:e9:
44:fc:5b:39:69:53:38:91:a4:56:3c:5e:b6:da:5c:
20:0c:79:c0:ab:50:5c:7a:9e:e8:14:7e:52:03:97:
1a:6a:49:ae:bb:5a:9e:f3:de:bf:94:1d:97:e2:8e:
79:d2:43:eb:a3:5e:85:7a:75:77:25:f5:ce:cf:8f:
71:1c:44:bd:98:a2:fc:5f:80:3d:2f:7b:81:04:cf:
c3:cf:be:62:ec:2e:a6:83:d1:45:bc:41:1a:83:4f:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:BE:34:CF:54:2E:01:BA:1B:5C:52:4C:78:E9:1D:7E:18:48:5D:AD
X509v3 Authority Key Identifier:
keyid:85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:b2:51:00:f0:f2:a3:38:80:93:89:f2:aa:33:33:27:29:37:
d6:6d:81:44:aa:42:2f:eb:68:57:88:d6:2e:af:89:ff:17:2a:
65:ad:ce:21:b4:f8:f7:10:9c:69:ea:50:04:8c:49:bb:6c:52:
dd:f5:2c:f5:e3:ff:c9:96:7f:35:93:c5:58:e0:e6:ac:18:69:
45:58:99:88:58:fe:06:4d:14:1b:d6:c1:37:09:85:19:cf:7d:
f1:83:42:76:3d:d5:36:85:74:2b:d1:1b:9d:c1:67:4c:97:12:
1c:81:73:46:65:97:3b:16:2d:86:4f:df:e6:50:a9:c5:66:1d:
93:8a:4d:ea:0f:dc:a2:a5:ed:a8:f5:42:f4:99:bf:28:c7:89:
38:85:d7:47:e5:95:e8:63:d4:60:81:91:18:8b:76:55:68:3b:
41:f7:35:28:19:2c:85:91:7a:c5:a1:56:0f:9a:65:22:2d:4f:
2b:02:1a:5a:d5:34:c3:84:f0:fd:99:1c:bc:50:d1:0c:16:f4:
63:8c:12:0f:97:12:a9:93:11:be:f8:a0:a5:ff:4f:0e:86:8d:
43:4c:07:a6:50:d9:e2:f4:fe:46:fd:51:53:21:ec:90:fa:4c:
97:85:bb:3b:71:3b:f7:1c:09:87:0a:4f:ed:89:91:f7:bc:4e:
89:ea:0c:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystLv8HiLdPmJ1W9anRHFgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NGMwZGIwMDY1ODQ0ZDk1OTRkZmU4ZGQ4ZWZkNzdlZDFl
NDkzZjgwHhcNMjYwMzAyMDQwMDUxWhcNMjYwMzAzMDQwMDUxWjAzMTEwLwYDVQQD
EyhhZWJlMzRjZjU0MmUwMWJhMWI1YzUyNGM3OGU5MWQ3ZTE4NDg1ZGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0R2N9eAoIuKS5p9h2yKG46ctPTv
wsWyjs7BPaTcQpPzr6lvrfEOqEWd5pzY2aoyQ6Lkx8TB4b0ZhckGOHJScl/GXZGO
eZSzyvCBR6tuQ6l0sZ6fVKdW1FjasAesfQJS/aG3RdZGiy9W7pB+fYkpeOwN6PNw
4KBzz3/VpP/0HMwwp1tWpn3y/MLCbM0GbAYoVdxDsVDdQvolmVS+QxqqDvnuMulE
/Fs5aVM4kaRWPF622lwgDHnAq1Bcep7oFH5SA5caakmuu1qe896/lB2X4o550kPr
o16FenV3JfXOz49xHES9mKL8X4A9L3uBBM/Dz75i7C6mg9FFvEEag0/B/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK6+NM9ULgG6G1xSTHjpHX4YSF2tMB8GA1UdIwQY
MBaAFIVMDbAGWETZWU3+jdjv137R5JP4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFV3TnNBWllSTmxaVGY2TjJPX1hmdEhra19nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9lYzY3ZGItYzdhMS00OGE2LWFiOTQt
NjBiOTM1OTViYWM5LzEvaFV3TnNBWllSTmxaVGY2TjJPX1hmdEhra19nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9lYzY3ZGItYzdhMS00OGE2LWFiOTQtNjBiOTM1OTViYWM5
LzEvaFV3TnNBWllSTmxaVGY2TjJPX1hmdEhra19nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR7JRAPDy
oziAk4nyqjMzJyk31m2BRKpCL+toV4jWLq+J/xcqZa3OIbT49xCcaepQBIxJu2xS
3fUs9eP/yZZ/NZPFWODmrBhpRViZiFj+Bk0UG9bBNwmFGc998YNCdj3VNoV0K9Eb
ncFnTJcSHIFzRmWXOxYthk/f5lCpxWYdk4pN6g/coqXtqPVC9Jm/KMeJOIXXR+WV
6GPUYIGRGIt2VWg7Qfc1KBkshZF6xaFWD5plIi1PKwIaWtU0w4Tw/ZkcvFDRDBb0
Y4wSD5cSqZMRvvigpf9PDoaNQ0wHplDZ4vT+Rv1RUyHskPpMl4W7O3E79xwJhwpP
7YmR97xOieoMkA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:51:53 2026 by rpki-client