Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: GR2eSDIv0o2zGLg62+bBSxF6CNBOw6RVx9BPtWF4Cp0=
Subject key identifier: 3E:26:11:B3:5B:BD:0A:23:11:C7:57:F9:C1:46:07:41:CA:17:40:35
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019CA9EAFC6E117EB34E321A996C9BEA9D8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 03EE
Signing time: Sun 01 Mar 2026 15:01:15 +0000
Manifest this update: Sun 01 Mar 2026 15:01:15 +0000
Manifest next update: Mon 02 Mar 2026 15:01:15 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: wqyy7+M+VMKQVCvi5V4tvozJHvpN/0ksM8qap/Gw97o=)
2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ea:fc:6e:11:7e:b3:4e:32:1a:99:6c:9b:ea:9d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Mar 1 15:01:15 2026 GMT
Not After : Mar 2 15:01:15 2026 GMT
Subject: CN=3e2611b35bbd0a2311c757f9c1460741ca174035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:7a:5f:c3:87:f4:65:ac:b9:b8:1c:db:c3:7c:
f3:10:3d:66:59:3e:13:c6:82:6d:7c:da:91:7b:be:
61:24:fb:d3:00:8d:ff:df:0b:bd:7b:c2:a0:23:5f:
77:85:6a:e3:8e:55:45:7d:02:4c:7b:f6:77:44:8d:
e6:26:27:30:49:12:2d:78:46:2b:99:8a:6f:d6:27:
c4:4b:76:7f:20:c9:9f:95:3b:1b:a2:23:12:b7:5b:
b9:97:24:6b:14:22:a0:d1:40:33:a6:99:6d:05:fc:
d0:36:eb:4f:94:98:57:2d:b1:4b:aa:75:b5:c4:1a:
a8:ab:92:78:7f:77:51:27:ae:34:3d:2c:59:1d:80:
75:87:c7:f5:d2:26:27:f8:37:37:01:36:41:a0:2a:
58:12:d7:2e:b4:86:f5:5b:6e:cf:6b:8a:f1:1b:7d:
42:5d:2e:cf:0b:78:6b:4e:3e:1f:75:4e:13:73:2e:
01:06:31:c4:c8:b2:c6:f9:2f:ae:29:d3:d6:10:38:
b3:ad:21:f8:12:8e:ac:2d:ac:6d:6b:95:dd:41:65:
cf:6c:5a:5a:d1:c1:31:0a:e5:fd:38:e3:df:bc:38:
14:63:4c:c0:95:17:c1:a6:1c:38:f6:0a:fc:77:bb:
9b:94:23:98:6a:eb:f8:52:82:d7:74:62:a4:8f:e5:
d6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:26:11:B3:5B:BD:0A:23:11:C7:57:F9:C1:46:07:41:CA:17:40:35
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:05:cc:ac:ed:20:c0:a6:74:15:9b:bc:ec:96:3d:c1:e7:bb:
9d:fa:29:2b:35:f6:7a:2b:07:7e:6f:b9:bb:64:95:52:b8:6b:
0d:75:43:c3:86:43:50:ac:82:ae:8c:0d:d0:c6:eb:7a:59:11:
b4:bf:cd:c1:5b:2d:ba:5b:48:d4:a2:af:46:7d:87:82:2a:00:
cd:56:8f:62:50:52:c7:a2:4a:b1:95:cd:13:1e:5a:4b:fb:2d:
4c:bd:b8:4b:fa:6d:1e:e0:da:c0:5b:71:bc:33:38:50:44:4d:
54:23:1f:3b:67:26:dc:50:27:df:71:df:6d:5e:28:88:ea:87:
54:6e:2f:59:2a:5e:29:fe:20:0d:15:22:cc:e5:41:db:a7:66:
66:61:d0:fb:ed:1f:99:9b:b2:3b:b5:c0:25:c1:80:d1:b1:bf:
a4:3a:77:d6:37:57:91:5a:7e:bc:9a:42:f6:8b:32:bd:7f:5a:
16:90:f8:55:99:f1:71:55:7b:a0:af:67:e7:1f:0e:fd:4c:e6:
f8:f6:63:37:33:90:63:88:95:e5:36:98:fe:6a:c8:31:d7:a7:
fd:9e:9d:62:2b:76:5e:05:2d:dc:42:5c:96:df:39:4b:10:b0:
19:d0:c1:b0:40:4c:13:53:51:3f:33:24:7d:48:46:bc:dc:94:
bc:97:ed:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:04:22 2026 by rpki-client