Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: +5yV9hkhR4rGbzEBiypOh5gpqUtP4OlZ7Kwy8BSeMWU=
Subject key identifier: 80:4A:A1:B6:67:DB:8E:65:11:F8:ED:56:A5:50:FB:A9:F2:8F:65:F3
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 019CAC0FE683E023FC8C4E789DD55C98C29E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 1593
Signing time: Mon 02 Mar 2026 01:00:49 +0000
Manifest this update: Mon 02 Mar 2026 01:00:49 +0000
Manifest next update: Tue 03 Mar 2026 01:00:49 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: t5CmX4J44kp2a4q3nbyo5d0QnDNuQ/MtI5W7urWHXeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:e6:83:e0:23:fc:8c:4e:78:9d:d5:5c:98:c2:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Mar 2 01:00:49 2026 GMT
Not After : Mar 3 01:00:49 2026 GMT
Subject: CN=804aa1b667db8e6511f8ed56a550fba9f28f65f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:39:d4:3d:86:26:3d:13:4c:70:5e:33:a4:
76:92:95:53:94:ad:a5:c4:45:41:80:a7:d0:50:b4:
4d:5c:3d:83:a7:96:ea:09:5f:aa:ba:b1:c8:69:6e:
3a:72:4b:41:c6:ad:95:de:5b:d9:99:2b:83:00:4f:
9e:bd:ce:1f:c5:53:88:cd:b9:6e:e6:cb:c6:12:a8:
15:2d:a7:fa:be:ef:6c:87:a6:02:b5:ef:19:60:52:
e8:c5:7b:bb:8d:39:50:9c:1f:09:b9:89:12:1f:6c:
62:cf:8b:da:20:0b:c2:ed:8b:c3:fc:74:e1:d8:78:
31:23:1c:d0:ac:53:c3:87:aa:09:1c:85:d6:9f:37:
08:2a:1c:70:e7:60:8a:c3:5b:ad:ad:da:62:8a:13:
a2:30:63:8e:7e:54:ff:34:57:2a:49:08:63:b1:0e:
d7:bb:9d:5e:bb:77:1d:5f:8b:9f:ff:5c:a3:0f:d7:
5e:f5:92:b5:c0:65:e0:a6:d6:9a:0e:bc:ca:13:9e:
8f:8d:6d:8d:9c:48:fe:83:36:5d:64:0b:18:c7:53:
66:73:a3:5f:1d:01:5c:dc:5b:5f:77:ee:fb:56:12:
d5:82:74:23:95:de:75:58:d5:92:7d:87:06:54:96:
f5:9c:1c:cb:3f:9a:2f:94:11:23:e6:4a:25:cb:e3:
87:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4A:A1:B6:67:DB:8E:65:11:F8:ED:56:A5:50:FB:A9:F2:8F:65:F3
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:7f:eb:1f:9f:e3:7d:53:3e:d1:fb:9a:36:ec:3c:13:17:95:
69:dd:5f:b7:30:bb:59:0c:4a:61:1b:a5:bf:57:5a:a9:ed:46:
be:f3:01:06:13:90:64:a4:ae:f2:72:93:40:b9:36:68:5b:30:
88:f4:17:7e:3f:12:0c:74:91:92:cf:57:ab:e1:64:00:ca:3d:
26:ea:18:03:9c:f0:7d:74:63:aa:a6:a6:d4:95:df:12:15:37:
97:0a:2e:40:56:02:95:16:f8:9f:e3:4b:2d:ac:7c:d0:fb:91:
e0:70:6c:53:62:af:0f:67:be:1b:12:6c:17:e2:18:df:a7:17:
a3:af:31:14:ca:d4:0c:24:e0:2a:46:bf:88:f7:86:11:6c:e5:
b4:eb:2d:2f:32:8f:3e:7a:40:d4:12:59:b8:6f:65:08:50:30:
7a:28:fe:c6:05:01:be:a6:c1:79:90:f2:d6:3d:69:fd:d8:df:
d4:b9:00:c1:e2:98:e2:2d:7c:02:40:1a:ff:21:55:ba:81:5a:
c6:39:fe:9a:9d:1d:2d:39:ca:f5:5c:3a:73:02:e7:ab:1d:ee:
b5:76:5a:73:5c:e0:c8:34:cf:63:8a:8a:87:33:91:65:a7:0d:
85:a4:3f:44:cc:c0:e5:29:f3:1b:04:0b:ec:42:50:f4:2d:c2:
89:9f:47:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:00:24 2026 by rpki-client