Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
File: hto1bCqGENEdNM24pH0rkFGfvTU.mft (raw, json)
Hash identifier: A+Obh+0pnXzw71XAYjwbho+ORM0tEgp6Anixur7j6Tc=
Subject key identifier: 5C:70:99:20:37:72:8A:0C:46:39:3D:16:A4:06:EB:36:10:32:93:2A
Authority key identifier: 86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
Certificate issuer: /CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Certificate serial: 019CAD22584850176909EEF910CFA6447E83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
Manifest number: 154E
Signing time: Mon 02 Mar 2026 06:00:34 +0000
Manifest this update: Mon 02 Mar 2026 06:00:34 +0000
Manifest next update: Tue 03 Mar 2026 06:00:34 +0000
Files and hashes: 1: IDPY6eTDdLBQuL9VGAcEC-fDNk4.roa (hash: /GSM9iyQcMrc7fSWc8netDxH1YSxmTdh4UOLgqibrf0=)
2: hto1bCqGENEdNM24pH0rkFGfvTU.crl (hash: kSRLtR+CvANhF7r1qly7PY+GAG0/HpqAAGSXGi+sZjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:58:48:50:17:69:09:ee:f9:10:cf:a6:44:7e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Validity
Not Before: Mar 2 06:00:34 2026 GMT
Not After : Mar 3 06:00:34 2026 GMT
Subject: CN=5c70992037728a0c46393d16a406eb361032932a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a7:4e:02:e1:d8:95:97:0f:d3:f3:10:a2:ec:
ed:02:3a:89:26:29:34:85:70:66:4a:b5:2f:7b:d2:
1f:ef:72:40:c1:ac:26:cb:63:f9:de:20:ba:2c:89:
f6:c2:b5:67:59:ec:7f:da:2e:4f:1f:cd:56:53:d7:
29:48:a7:cd:45:9f:a9:fe:6d:da:48:8e:27:2c:c6:
d6:f8:39:25:0c:55:37:17:25:44:86:dc:af:d9:30:
76:c9:2c:fe:6c:ea:ca:b3:90:38:43:0d:a3:b0:c6:
f6:8a:75:d1:7d:29:89:ed:22:d4:d7:b1:a3:ce:be:
7a:9a:ca:b4:22:eb:89:a5:ec:68:38:19:92:2e:38:
6d:a2:7c:74:d7:52:31:fd:8f:8e:9b:9d:de:84:74:
e4:88:12:65:3e:f1:2e:d1:4b:5c:7e:0c:45:06:34:
09:28:90:f5:25:31:0e:f6:3d:52:ab:bc:84:a7:2d:
83:e4:ee:b2:19:26:e4:a3:b6:cb:c0:33:3e:ff:49:
29:aa:1d:0b:81:05:b6:ec:e4:4b:3e:d8:fa:77:59:
4c:15:7c:63:14:44:f0:30:3c:25:ac:08:6d:85:12:
35:4f:fb:f0:5f:bb:24:76:1f:4a:b4:17:6d:2e:f9:
19:5e:4f:ce:79:cc:ad:ec:0d:36:94:cf:f7:99:14:
e9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:70:99:20:37:72:8A:0C:46:39:3D:16:A4:06:EB:36:10:32:93:2A
X509v3 Authority Key Identifier:
keyid:86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:fe:d5:3d:52:08:76:f5:1a:37:15:92:7c:88:a7:13:eb:d7:
fe:fd:76:b7:04:e9:81:c9:60:30:b2:43:69:4c:ea:1b:e5:04:
82:99:18:57:43:4c:1e:1a:fa:59:e4:e4:df:0a:a7:64:36:77:
c0:8b:61:19:59:7e:1f:4f:1b:09:65:00:2e:21:34:b4:98:b3:
01:d2:b8:fc:20:60:15:0b:72:3a:70:82:49:73:cb:be:4b:c9:
4a:f9:52:a5:7d:df:b9:ed:f6:50:73:56:51:6d:9c:8c:9d:c9:
67:7b:b2:2d:e9:b0:5a:b8:4c:38:7c:4a:0e:b9:2e:80:fc:30:
c0:4b:f0:08:8e:7d:4f:ff:40:59:4c:05:44:d5:e8:61:47:7d:
55:67:79:a0:9e:16:5a:c6:24:7b:b2:a1:73:f3:d1:55:49:bd:
b4:16:ba:fa:28:93:9e:ca:a5:c7:2a:59:84:4a:b0:c7:cf:c9:
8d:17:d7:32:fc:9e:84:4c:a3:77:30:94:7b:49:f9:2c:3f:b1:
41:1e:60:8f:3e:27:d7:2c:c2:79:f7:6b:67:25:7c:c6:eb:eb:
10:3b:99:41:c2:32:55:8f:ad:76:7f:9a:f2:68:90:e1:8b:04:
09:21:75:e6:d3:34:c3:77:4b:c4:49:04:d8:28:50:d1:1e:90:
88:65:b8:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytIlhIUBdpCe75EM+mRH6DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZGEzNTZjMmE4NjEwZDExZDM0Y2RiOGE0N2QyYjkwNTE5
ZmJkMzUwHhcNMjYwMzAyMDYwMDM0WhcNMjYwMzAzMDYwMDM0WjAzMTEwLwYDVQQD
Eyg1YzcwOTkyMDM3NzI4YTBjNDYzOTNkMTZhNDA2ZWIzNjEwMzI5MzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqdOAuHYlZcP0/MQouztAjqJJik0
hXBmSrUve9If73JAwawmy2P53iC6LIn2wrVnWex/2i5PH81WU9cpSKfNRZ+p/m3a
SI4nLMbW+DklDFU3FyVEhtyv2TB2ySz+bOrKs5A4Qw2jsMb2inXRfSmJ7SLU17Gj
zr56msq0IuuJpexoOBmSLjhtonx011Ix/Y+Om53ehHTkiBJlPvEu0UtcfgxFBjQJ
KJD1JTEO9j1Sq7yEpy2D5O6yGSbko7bLwDM+/0kpqh0LgQW27ORLPtj6d1lMFXxj
FETwMDwlrAhthRI1T/vwX7skdh9KtBdtLvkZXk/Oecyt7A02lM/3mRTp1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFxwmSA3cooMRjk9FqQG6zYQMpMqMB8GA1UdIwQY
MBaAFIbaNWwqhhDRHTTNuKR9K5BRn701MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRvMWJDcUdFTkVkTk0yNHBIMHJrRkdmdlRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9jZmZkYjItZGU4Yy00Yzc4LTgxMzIt
OGE5NjYwNGM4MjZkLzEvaHRvMWJDcUdFTkVkTk0yNHBIMHJrRkdmdlRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi9jZmZkYjItZGU4Yy00Yzc4LTgxMzItOGE5NjYwNGM4MjZk
LzEvaHRvMWJDcUdFTkVkTk0yNHBIMHJrRkdmdlRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArP7VPVII
dvUaNxWSfIinE+vX/v12twTpgclgMLJDaUzqG+UEgpkYV0NMHhr6WeTk3wqnZDZ3
wIthGVl+H08bCWUALiE0tJizAdK4/CBgFQtyOnCCSXPLvkvJSvlSpX3fue32UHNW
UW2cjJ3JZ3uyLemwWrhMOHxKDrkugPwwwEvwCI59T/9AWUwFRNXoYUd9VWd5oJ4W
WsYke7Khc/PRVUm9tBa6+iiTnsqlxypZhEqwx8/JjRfXMvyehEyjdzCUe0n5LD+x
QR5gjz4n1yzCefdrZyV8xuvrEDuZQcIyVY+tdn+a8miQ4YsECSF15tM0w3dLxEkE
2ChQ0R6QiGW4jQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:01:49 2026 by rpki-client