Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json)
Hash identifier: 10U5LALxXdIykFd0HjEJQERqXM04ZQoSOCpkgX+KIqU=
Subject key identifier: AD:A7:B0:6D:F4:64:09:2D:43:B1:29:F2:5F:85:87:59:B0:2A:DE:8C
Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Certificate serial: 019CAEA2D1EDD5302A87BDD0F7C162B399D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
Manifest number: 03CA
Signing time: Mon 02 Mar 2026 13:00:32 +0000
Manifest this update: Mon 02 Mar 2026 13:00:32 +0000
Manifest next update: Tue 03 Mar 2026 13:00:32 +0000
Files and hashes: 1: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: ZbQ/4/F9kMvNMaQyAW3u4bYT1845HJH75yMTyKVh0ME=)
2: emamOYQH7VSgnUMUP8mvfhqm5dQ.roa (hash: MSxhtnoAd2af3qlANifc6U+2SnTTVeaXrUw3+bcJ3Dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a2:d1:ed:d5:30:2a:87:bd:d0:f7:c1:62:b3:99:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Validity
Not Before: Mar 2 13:00:32 2026 GMT
Not After : Mar 3 13:00:32 2026 GMT
Subject: CN=ada7b06df464092d43b129f25f858759b02ade8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:17:58:b5:e4:2a:0a:a1:69:73:7c:a3:a8:91:
03:87:d6:df:5f:59:18:8a:6b:19:9c:6f:dc:fd:b6:
b1:e8:cb:d4:25:0e:96:ea:a0:7a:8c:27:be:d2:37:
86:3b:69:19:6c:c5:0c:e8:11:58:72:60:b6:f0:a2:
f8:fa:6e:62:54:9e:f5:f0:6f:67:02:17:70:12:a5:
2a:03:9b:75:2b:87:f2:ec:a1:70:36:11:28:30:29:
d2:8f:ec:47:b8:c1:ca:22:81:52:57:1a:54:3b:eb:
e3:4b:85:5e:8b:0f:df:e3:4b:4b:4c:ff:e7:92:64:
0c:ee:84:c0:6c:81:e0:f3:7a:22:6f:3a:27:8a:c8:
30:1d:a0:47:54:fb:ff:02:d7:27:54:d5:03:a0:b6:
b0:a1:0d:45:c2:ad:8a:56:b8:47:77:c3:b6:85:bf:
24:4a:04:da:fe:33:89:81:eb:8c:0b:67:42:36:a3:
7f:aa:cd:d7:cf:71:68:4a:b2:33:7b:8f:9f:70:de:
07:a6:00:15:1b:c9:50:3d:ae:61:77:8a:72:75:22:
f4:1f:38:1f:f1:7a:4b:c6:6c:72:bd:4d:f8:1f:5a:
c2:af:66:df:70:32:1d:a9:83:46:46:00:aa:05:b1:
ba:ff:40:ad:24:54:a9:ce:b0:44:6d:bb:03:ec:d8:
f1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A7:B0:6D:F4:64:09:2D:43:B1:29:F2:5F:85:87:59:B0:2A:DE:8C
X509v3 Authority Key Identifier:
keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:db:02:ff:81:32:75:8d:e8:76:d0:8d:fb:c6:98:49:e3:38:
3e:91:1d:46:8c:aa:7e:d2:51:0f:f1:05:fb:41:f1:cd:1c:4d:
b3:0b:53:16:c1:06:83:e3:f6:59:70:e8:f6:37:93:6d:3e:6b:
d3:e9:81:b9:9d:19:0e:c2:e8:99:b9:f3:0a:0a:77:56:75:29:
6d:76:0c:df:77:2a:11:51:dd:56:ce:4c:67:be:d3:25:a6:0e:
af:b0:42:b7:90:18:dd:05:16:6b:d3:38:28:60:2f:f7:74:bd:
d6:71:a2:f7:01:0a:0c:bd:a4:fa:6f:39:c5:f7:b9:d7:bc:1b:
1b:e6:7a:9b:cf:62:df:d3:07:45:41:98:db:0c:6b:1c:10:71:
96:79:e8:58:42:9b:a7:de:02:62:ad:3f:c4:24:ff:f9:dc:d1:
c7:3f:1a:cb:f4:6f:3d:58:56:e3:5e:a5:bb:b6:41:40:f4:f2:
43:91:5f:e0:b1:7d:85:aa:6f:da:20:bd:ce:f1:79:91:94:db:
08:b1:5b:0e:9e:21:35:35:59:44:5d:d5:05:44:fb:d7:9b:ca:
3b:62:e8:34:2e:83:a9:38:dc:7e:b6:bf:48:13:b7:9a:13:28:
40:81:ed:bf:d9:1a:9b:a4:8f:7e:0e:49:98:4b:42:9f:37:54:
77:9a:77:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:25:20 2026 by rpki-client