Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json)
Hash identifier: IBf5Cbbws1nPtTwaP8Bv9uaZhteyMEB7C8XZkZozEXU=
Subject key identifier: BA:C3:E4:F4:B4:B6:77:07:78:A4:A0:9A:C4:41:E6:A2:D4:E1:F9:F4
Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c
Certificate serial: 019CABD9E141DEA829B21A8B470453F3652C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
Manifest number: 1842
Signing time: Mon 02 Mar 2026 00:01:48 +0000
Manifest this update: Mon 02 Mar 2026 00:01:48 +0000
Manifest next update: Tue 03 Mar 2026 00:01:48 +0000
Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: VhPxQRCNQy8NRMBY1N6rzgE8vwEPrgiYXK2+tUYlNB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:e1:41:de:a8:29:b2:1a:8b:47:04:53:f3:65:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c
Validity
Not Before: Mar 2 00:01:48 2026 GMT
Not After : Mar 3 00:01:48 2026 GMT
Subject: CN=bac3e4f4b4b6770778a4a09ac441e6a2d4e1f9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0d:82:0a:d2:3b:e8:4d:c6:1b:7b:59:24:b5:
f1:b5:49:0f:06:21:ba:17:bf:c3:c8:fe:6f:a5:d0:
e9:0b:5b:71:ab:9d:ea:4a:7b:4a:3b:15:6f:dc:a5:
93:eb:41:7d:cc:6a:b7:51:bc:c4:22:f3:32:cd:41:
f0:1d:e9:c7:d5:ef:a5:98:6e:63:31:ec:8d:d9:a0:
a2:21:ac:83:0b:f5:06:24:35:71:2a:71:d9:ca:e9:
70:ea:be:16:1c:44:e6:6d:18:bd:2d:f4:1e:71:8e:
23:a8:4a:a2:76:b3:3e:b8:3b:5f:8d:12:d6:ff:7e:
e2:69:fc:56:6a:df:c4:7e:fc:38:44:41:5f:52:c3:
fa:24:d3:6d:a6:51:d1:bb:43:c4:5a:89:9f:5c:97:
5a:af:1f:d4:b0:73:a8:78:73:7b:c1:36:b6:14:e9:
b6:3a:a4:7b:f8:fe:94:7d:f8:ab:85:20:68:2f:ab:
00:62:9b:63:bf:2b:70:dd:64:5c:be:39:fb:80:95:
cb:69:b6:8b:b8:5a:eb:1c:1a:30:86:d3:c1:3d:d4:
c2:84:02:ee:68:7a:fe:61:f0:d6:74:47:c7:66:f2:
ae:b1:f1:58:4e:1b:a2:61:e5:78:5e:de:b4:85:39:
b8:93:6d:53:9d:46:e0:40:0e:fa:3a:77:e8:71:ce:
c7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C3:E4:F4:B4:B6:77:07:78:A4:A0:9A:C4:41:E6:A2:D4:E1:F9:F4
X509v3 Authority Key Identifier:
keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:dc:f4:d7:8d:45:5b:03:2b:4c:48:44:19:e2:13:2a:55:71:
d0:64:e6:d2:e8:da:35:2c:e4:52:a9:c1:34:9f:3f:ab:5c:7d:
51:47:66:02:d6:86:80:b6:9a:07:93:ad:f9:e7:73:4d:c6:04:
20:a4:3c:2c:c8:dc:5e:95:7d:49:a4:cc:ea:8d:2d:9f:c8:18:
eb:4d:55:f1:90:71:45:0c:57:82:bc:01:1c:e9:9d:2d:ab:36:
27:95:a7:a9:90:9f:a0:ae:b8:e9:42:68:09:82:26:c2:7b:87:
56:cc:cb:80:18:77:32:af:6b:e3:a9:72:9e:61:4c:fc:6e:e5:
ae:b0:fb:80:9d:36:99:5e:8d:63:10:ef:b5:c2:0d:87:ae:90:
59:42:54:11:14:6b:76:45:d6:d2:f8:ef:fd:57:f0:ca:e3:d1:
8f:65:52:f3:cb:05:e6:88:91:5a:7e:8f:47:a6:1a:c5:ce:54:
66:a0:f0:b2:07:6a:5a:c6:c0:2d:45:e6:64:de:74:2f:75:a0:
49:e8:e1:b5:32:9b:57:7c:36:7a:76:92:21:09:42:ed:52:97:
b5:d9:dc:ac:71:fa:4c:37:aa:5e:62:da:cf:71:af:6e:8e:a8:
d2:40:ea:b0:10:88:53:88:c9:c7:22:be:b5:24:a0:bf:fc:0a:
4f:53:00:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:55:13 2026 by rpki-client