Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
File: HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json)
Hash identifier: CkVMhA2eFINFp7Y6m805AEhpnF6ZmkOkJz8UXh2hQnI=
Subject key identifier: 01:58:F5:D1:7D:02:02:63:96:97:DF:06:79:44:2D:DB:9C:75:03:9D
Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
Certificate issuer: /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Certificate serial: 019CAB33DF0C538FDCFF9403C52686C7745A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
Manifest number: 0B78
Signing time: Sun 01 Mar 2026 21:00:29 +0000
Manifest this update: Sun 01 Mar 2026 21:00:29 +0000
Manifest next update: Mon 02 Mar 2026 21:00:29 +0000
Files and hashes: 1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: meG1ivIT1rUzM97DB/ofF0z+KAcBJS9izL87M+2+e8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:33:df:0c:53:8f:dc:ff:94:03:c5:26:86:c7:74:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Validity
Not Before: Mar 1 21:00:29 2026 GMT
Not After : Mar 2 21:00:29 2026 GMT
Subject: CN=0158f5d17d0202639697df0679442ddb9c75039d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:f1:6f:3f:3b:1a:08:e1:d7:81:f2:7d:e0:
e7:ff:10:74:40:38:71:64:5f:77:34:0a:ff:ac:59:
6c:07:2c:e5:34:43:78:ea:d2:95:16:c6:04:2b:31:
72:d0:7c:76:3c:ed:b2:cb:e6:2d:3d:77:fd:83:83:
c6:4b:65:e8:1c:1d:e0:e7:a8:ef:90:d6:95:b6:51:
b6:4a:cd:50:e7:f4:eb:d3:9e:25:86:e0:0b:fb:3d:
c6:7a:3d:2e:f0:d1:a2:4e:de:19:dc:35:85:c2:9a:
37:da:7c:7b:bf:1b:ed:b4:7c:79:ba:f2:1b:63:62:
52:a3:4c:62:1b:b6:7e:cc:44:9a:b9:85:67:29:10:
00:dd:8c:1e:a3:e0:66:b9:29:2f:b3:76:d6:bd:ee:
0e:87:0c:b4:c5:38:4e:46:79:97:97:e5:d4:c8:d7:
6a:a3:99:15:01:f0:7d:b4:e1:58:d6:ce:27:05:a1:
d1:0a:61:ad:16:f4:5d:fb:f9:a6:16:4d:10:cb:c0:
b1:0e:cf:12:18:d0:12:b7:cc:83:ea:a6:4e:1c:ae:
19:04:21:af:e6:29:42:4d:9e:04:f4:6e:39:d2:ef:
06:6b:fe:ce:d8:2e:f2:c4:b4:b9:16:39:c7:2d:c2:
2e:7f:a8:a3:71:59:80:b8:8f:1c:38:7b:e0:e6:97:
7b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:58:F5:D1:7D:02:02:63:96:97:DF:06:79:44:2D:DB:9C:75:03:9D
X509v3 Authority Key Identifier:
keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:34:90:5d:a3:ea:f7:e5:37:96:83:46:77:78:8b:a4:a3:f5:
b1:2d:5b:2f:b7:b1:68:b4:d6:c0:44:08:0f:6d:58:7e:be:17:
43:0b:78:b9:34:de:f2:2f:2e:25:54:5e:38:6d:f7:29:03:f0:
2a:54:eb:eb:51:b0:99:16:53:a7:8d:1c:15:1e:ef:93:0a:a3:
38:46:0d:7f:28:c5:4e:2a:bf:08:33:10:55:8e:3f:91:92:e3:
37:7d:a4:9a:7b:6b:a5:56:0c:54:41:55:1c:28:4e:f3:27:e0:
6b:e3:23:54:5d:dc:20:da:6f:43:73:c5:0d:15:3e:f5:fc:02:
ac:7c:2b:aa:40:9a:36:bc:e4:7d:7a:a7:b0:8b:c8:92:2c:a1:
3d:0d:c4:e3:bc:78:9b:47:88:9b:5d:c6:ae:e1:58:61:46:6c:
de:5b:37:80:b0:f3:94:f2:e4:de:9c:fc:b7:50:75:a7:91:97:
d8:6e:12:5d:28:d2:77:28:8e:78:e9:70:68:a0:dc:ec:c9:8d:
cf:67:4c:6a:12:43:c0:d5:7f:83:68:40:48:1b:6d:2b:41:41:
d0:ea:0b:de:71:1d:c7:98:f3:c1:2b:c9:9b:80:30:66:61:1e:
0f:ac:2f:ef:ce:a0:16:77:9d:0c:83:8a:48:7f:af:1d:af:73:
27:4a:42:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:37:18 2026 by rpki-client