Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
File: hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft (raw, json)
Hash identifier: 5NuGkalzUvJEecb4yssJGtls1XQBTZbkNmEnt2tA3Xc=
Subject key identifier: 54:E1:95:14:ED:29:B0:7B:08:D9:E5:6A:37:98:3B:0B:11:E3:9F:FC
Authority key identifier: 85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
Certificate issuer: /CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Certificate serial: 019CAF47978F70563BEC2DC84640C1589170
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 16:00:30 +0000
Manifest this update: Mon 02 Mar 2026 16:00:30 +0000
Manifest next update: Tue 03 Mar 2026 16:00:30 +0000
Files and hashes: 1: hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl (hash: 6zcpVZIDb8HvQzAiM0G8K0ZtAv8ZMpMCc7qGZrVk1fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:47:97:8f:70:56:3b:ec:2d:c8:46:40:c1:58:91:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4
Validity
Not Before: Mar 2 16:00:30 2026 GMT
Not After : Mar 3 16:00:30 2026 GMT
Subject: CN=54e19514ed29b07b08d9e56a37983b0b11e39ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:09:72:1d:ee:ff:69:de:58:45:95:9a:f6:dd:
c6:25:18:ce:6f:47:78:69:af:60:46:84:d0:1a:9f:
59:65:3d:bc:b5:73:27:09:44:fb:4b:1c:57:a0:25:
08:2e:37:dc:38:63:ae:ea:69:fe:9e:dd:d2:a4:3d:
7a:75:b0:57:0a:f5:a9:6e:08:6a:6c:c1:5f:43:08:
e5:c3:77:99:e7:fd:8b:6f:93:9e:7c:a1:a6:4a:e8:
02:dc:b8:8d:8a:ba:04:1f:bc:dc:db:03:03:17:4a:
c4:7c:35:2b:c7:e3:ac:91:fe:9d:f4:30:04:b0:a6:
c2:ab:4c:70:15:c1:71:aa:5b:5f:be:e5:43:fa:7a:
60:91:50:73:95:fc:29:b7:51:f9:47:87:0a:71:6f:
4d:c1:6f:4a:78:75:5a:95:e1:76:01:cb:ce:e9:8c:
97:af:45:a7:e7:49:81:31:ca:9d:8e:83:94:c6:da:
c7:f5:71:55:a9:01:09:9a:ba:64:ce:a6:c7:c5:9f:
c6:83:ea:e2:17:b1:80:6d:90:a2:7f:78:c4:35:b1:
9a:30:a8:87:47:5b:69:c9:30:d1:b0:c5:35:ff:b5:
ee:2f:74:1f:c2:1e:12:38:99:02:ac:60:5a:bb:98:
59:cd:f5:2f:3b:80:a6:7e:26:ff:60:d9:cf:be:84:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E1:95:14:ED:29:B0:7B:08:D9:E5:6A:37:98:3B:0B:11:E3:9F:FC
X509v3 Authority Key Identifier:
keyid:85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:73:57:02:01:6c:49:8a:8d:2e:e2:6a:cb:55:6a:d7:a6:ab:
3e:47:30:e1:4a:e2:7f:54:95:11:42:0f:79:32:88:38:7c:69:
f9:de:2a:fc:5c:18:68:4f:74:14:c4:25:63:46:e0:a5:cc:39:
e6:f5:40:3f:44:61:30:6b:dc:95:00:9b:1d:65:cd:78:60:82:
33:65:81:00:b8:d6:4d:a1:53:78:97:fa:e9:11:e9:73:e0:26:
86:68:46:a2:fb:69:e2:04:9a:57:93:a0:6c:bc:1c:6a:d1:0d:
f6:67:a9:d6:99:7c:f9:05:bb:be:ab:51:5c:6b:ca:c4:91:31:
90:23:70:d0:bb:47:7a:00:35:53:a3:e1:57:5d:70:7c:db:b2:
11:74:c0:2b:46:27:b1:b9:cc:6a:74:bc:68:a4:fe:58:fd:50:
06:4b:23:b8:94:b4:d9:98:bc:78:91:ef:fe:c0:e8:47:8f:66:
8f:e2:e6:f8:20:36:30:48:6e:52:c1:98:0c:6a:04:e3:29:22:
67:3f:8a:6d:32:51:06:5b:ad:3f:5b:6e:7e:c6:c7:18:89:2f:
7e:a8:b3:56:a5:8a:c4:be:f7:4e:d4:56:b7:3a:40:f3:ba:df:
30:41:02:3c:b5:43:4a:ba:c0:22:c2:ee:f6:83:15:f3:eb:16:
12:c1:21:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:41:54 2026 by rpki-client