Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
File: HtVdI1ecZBJxVa72UGlueVMdUI0.mft (raw, json)
Hash identifier: BpI8OsfRCKBaBGuRcvk80f+uQAGiSR57Dp7j8t22o10=
Subject key identifier: 69:B1:46:6D:D9:50:30:36:F3:37:24:63:63:90:73:B4:C0:27:78:8F
Authority key identifier: 1E:D5:5D:23:57:9C:64:12:71:55:AE:F6:50:69:6E:79:53:1D:50:8D
Certificate issuer: /CN=1ed55d23579c64127155aef650696e79531d508d
Certificate serial: 019CADC7A08808F3475648F9FBDDDBED81D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
Manifest number: 1496
Signing time: Mon 02 Mar 2026 09:01:06 +0000
Manifest this update: Mon 02 Mar 2026 09:01:06 +0000
Manifest next update: Tue 03 Mar 2026 09:01:06 +0000
Files and hashes: 1: HtVdI1ecZBJxVa72UGlueVMdUI0.crl (hash: Itc5QZal4ib9G3uml1s0AKI1IDlYZ9wYm3KWMGncNoU=)
2: T_J2gttaZHfPXFwYPEnqU4DuSH0.roa (hash: ehbYh6/mcaifo0NfLUxIkQ+Z4QysKZUHdNB+6ZGBtPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:a0:88:08:f3:47:56:48:f9:fb:dd:db:ed:81:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed55d23579c64127155aef650696e79531d508d
Validity
Not Before: Mar 2 09:01:06 2026 GMT
Not After : Mar 3 09:01:06 2026 GMT
Subject: CN=69b1466dd9503036f3372463639073b4c027788f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c5:4d:2b:fd:62:33:64:2a:fa:99:a9:1d:d7:
be:50:06:53:db:ef:79:fb:c3:95:2d:f5:b6:ac:f3:
72:5e:e2:00:0a:14:e3:c3:a6:63:69:55:42:c6:f1:
9e:90:f7:b2:99:30:36:c4:48:f2:9b:28:e6:70:72:
3e:57:c9:64:34:69:bb:d7:cd:02:5a:7c:9f:14:25:
43:28:1f:05:d0:c2:a3:74:0b:ef:0c:03:61:89:4e:
d0:80:15:30:3c:29:7a:2c:58:83:b4:19:4a:9d:5e:
76:7e:47:ed:f2:da:53:3f:40:0f:b7:b5:e2:02:68:
54:ae:23:19:7a:19:82:e5:76:2f:95:18:16:80:17:
30:e3:ef:e2:3e:38:09:05:4b:f4:42:1b:bb:36:01:
e2:a4:d2:c2:72:20:6f:88:e3:37:bc:a2:96:0e:ed:
18:b2:6c:42:58:15:41:1b:36:19:4e:1b:31:bb:e3:
2c:6c:42:b9:53:4e:65:7b:3b:1a:1c:de:24:b2:81:
0f:6f:15:6c:2a:f0:f4:1e:ee:17:2a:fc:9e:f3:a7:
4d:b3:ee:3c:c9:6e:53:c4:1f:be:e3:e8:27:92:0b:
f3:f7:1f:5f:42:25:4b:a5:3e:e1:70:13:a4:71:f6:
c6:35:73:d5:71:e4:2a:9c:19:17:2b:fc:97:5a:67:
c5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B1:46:6D:D9:50:30:36:F3:37:24:63:63:90:73:B4:C0:27:78:8F
X509v3 Authority Key Identifier:
keyid:1E:D5:5D:23:57:9C:64:12:71:55:AE:F6:50:69:6E:79:53:1D:50:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:df:2e:48:c9:d5:17:59:30:94:da:37:48:52:9d:1f:25:f4:
b6:5f:c1:d7:d3:86:65:2f:ef:c1:27:6e:04:6f:86:51:21:84:
6d:12:9f:ab:cc:7f:19:aa:95:ad:45:7e:48:3f:cb:dc:5a:44:
2f:21:13:6a:c9:c9:2e:56:3e:a7:8a:e8:9c:89:29:d6:b7:9e:
4c:84:8f:d9:b0:33:af:fc:a7:5c:e5:a1:f6:b4:9a:78:4e:d4:
2e:25:95:81:54:38:29:a1:0b:6b:ae:b9:f4:bf:6a:a2:e5:75:
c9:39:9b:dd:74:9c:02:20:c4:06:ed:a9:3c:9d:a4:12:d3:42:
4a:6b:d7:a2:ca:cc:62:79:43:ae:63:0d:ca:6b:3d:01:1e:85:
a3:8c:aa:a8:8a:05:80:43:39:bf:a4:bb:8c:f5:0a:a0:d4:0b:
73:0e:99:d7:ef:a0:3c:98:71:6d:a9:16:36:3c:87:0d:3a:b5:
09:46:29:57:5d:cc:91:aa:d5:c7:1a:fb:c3:7b:f3:97:31:a9:
c0:f1:28:5f:3c:93:20:90:45:75:f4:18:05:3b:9e:07:5c:cd:
91:8b:ec:4b:e0:e2:f1:33:35:1d:89:22:66:49:e0:30:42:65:
41:c0:dd:ef:ff:00:f3:eb:e5:7b:76:45:7a:76:30:bc:dc:92:
30:76:78:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:18:26 2026 by rpki-client