Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
File: B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft (raw, json)
Hash identifier: ivfocUgGC4aNlotpddb4PZaqyq9XNvtmFF5ih83QV+g=
Subject key identifier: 32:32:2A:27:D2:CB:CC:BF:9B:C6:05:E7:3C:E3:83:EB:F3:D4:A8:0D
Authority key identifier: 07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36
Certificate issuer: /CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36
Certificate serial: 019CABA20D254E82FC6A14FFA303D424A39D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
Manifest number: 1345
Signing time: Sun 01 Mar 2026 23:00:49 +0000
Manifest this update: Sun 01 Mar 2026 23:00:49 +0000
Manifest next update: Mon 02 Mar 2026 23:00:49 +0000
Files and hashes: 1: B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl (hash: /AK6EkerPKKH2Sm7JlLjpid21I8dh1qVS0MOGttmg6s=)
2: DUkKAgihVQLx-9lRs9kP656LAqs.roa (hash: Q209pcJqFgT3dRAcDq1sFjsPW/cttABhC0fxm9KWWRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:0d:25:4e:82:fc:6a:14:ff:a3:03:d4:24:a3:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36
Validity
Not Before: Mar 1 23:00:49 2026 GMT
Not After : Mar 2 23:00:49 2026 GMT
Subject: CN=32322a27d2cbccbf9bc605e73ce383ebf3d4a80d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b2:06:a4:d0:f6:41:86:8a:f6:83:be:38:86:
24:75:4e:da:b7:23:14:c0:3c:bb:bf:2f:12:c0:82:
09:fc:2b:66:b6:ec:a8:0b:37:59:f2:e4:c1:61:28:
46:84:c8:cb:cd:24:4e:82:59:bb:f8:f6:7d:37:f3:
03:eb:6d:de:75:9a:2c:a4:87:92:0b:ee:82:e2:10:
c0:7a:01:91:51:d9:2f:a8:4e:75:0f:51:b7:f6:20:
ab:d0:22:f8:08:ad:c9:54:0e:95:12:ad:a9:cc:16:
55:d9:0e:a1:66:e5:40:03:3b:ff:48:5a:37:61:a4:
f0:3c:52:73:4c:d1:6c:07:6c:4c:91:fb:cd:0c:a0:
74:ed:c8:97:6b:e2:b3:c8:e2:44:85:90:11:5d:68:
f7:46:9b:59:d8:9b:ac:1a:b0:48:cc:4f:0b:40:25:
76:89:28:a8:b7:bb:8d:dd:6e:e8:cf:fd:1c:90:72:
32:c2:83:d8:62:f8:70:5d:45:28:90:a8:9d:67:c6:
25:1e:71:e1:29:dd:4e:82:b7:8d:45:cf:88:b2:28:
62:78:cb:bf:d5:40:37:85:a2:22:d3:bd:b2:c5:84:
85:4e:19:5f:f4:3b:d0:1d:22:e0:38:c9:aa:e6:83:
33:b4:28:51:3e:cf:4b:61:30:e5:ff:64:04:18:e7:
88:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:32:2A:27:D2:CB:CC:BF:9B:C6:05:E7:3C:E3:83:EB:F3:D4:A8:0D
X509v3 Authority Key Identifier:
keyid:07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:7e:26:73:ad:aa:b5:8b:0f:79:29:86:80:e9:bf:f5:b5:f4:
1e:82:39:64:a5:a0:4d:46:4c:00:e2:2d:a2:21:c3:f8:ae:98:
00:45:a1:c5:d4:01:00:d5:8e:47:27:d8:6a:3e:fe:dd:41:4d:
41:d7:56:3b:f9:3b:5d:f6:1b:52:8e:de:0b:27:ec:2f:a4:d3:
90:4b:93:e7:bc:cb:b2:cf:6b:d5:12:bc:2a:25:ea:c0:15:59:
c7:35:7b:dd:af:5e:fa:66:75:c4:00:a5:33:ae:3e:97:a0:7c:
29:5e:99:c4:e2:6a:bd:95:95:d5:ac:1f:b5:4f:0d:36:82:2a:
93:d2:5e:6f:cc:79:2c:ff:2d:c8:95:db:70:5f:a8:48:1b:f5:
1a:19:d6:cf:8d:d8:bd:e2:d2:18:69:75:f4:28:b5:71:55:6b:
9a:b9:3a:98:3d:aa:32:9b:a9:86:ea:30:2b:e9:1e:d1:33:cc:
27:7a:b6:4f:22:8d:ba:bf:43:4c:65:ce:77:1a:4e:12:f4:66:
db:1d:57:f6:67:3b:79:f0:5f:55:a9:2f:e4:9c:41:70:cf:32:
ff:db:7d:c2:69:9e:dc:e7:fa:c8:25:0a:a3:0b:9b:b6:44:50:
9b:a3:e5:ea:93:b3:f1:ed:9e:da:af:48:ad:9c:bc:76:bd:e9:
fd:56:f4:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:42:19 2026 by rpki-client