Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: 2Au75t6ZdCL53ZA0wU/omCTPs+EOPofp2JQZN50hCqo=
Subject key identifier: 2B:3A:AB:68:69:E1:08:4F:05:B3:CE:6B:33:F8:FE:94:C5:AB:DF:32
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019CAB347BBBA8CEFAF17163382412837229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 045C
Signing time: Sun 01 Mar 2026 21:01:09 +0000
Manifest this update: Sun 01 Mar 2026 21:01:09 +0000
Manifest next update: Mon 02 Mar 2026 21:01:09 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: x72lrQaYL9Y0zuE6NvdiN0RuaIz//0XggR4fuVJA/PY=)
2: dyF34pZ8GCNuzl4YTk3EiPwDm3c.roa (hash: m2G1ChPDfy1n+0PrTlF39X/Rm+KnLUW3QVpj1zhgqDI=)
3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:7b:bb:a8:ce:fa:f1:71:63:38:24:12:83:72:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Mar 1 21:01:09 2026 GMT
Not After : Mar 2 21:01:09 2026 GMT
Subject: CN=2b3aab6869e1084f05b3ce6b33f8fe94c5abdf32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b2:59:b8:43:39:cc:02:77:6d:9b:35:22:f8:
69:12:9e:8d:57:cb:47:b0:8a:74:11:f2:ee:9d:03:
f0:32:eb:42:5e:98:f6:34:6e:82:55:f9:05:ce:76:
68:bd:19:c3:f6:ad:9b:5a:5e:8a:07:66:b8:56:07:
a8:17:29:23:ee:4e:45:c8:74:c7:b5:06:75:1c:b2:
a7:a9:d8:e5:62:52:10:d5:1c:45:3e:b6:84:eb:a8:
5c:4c:d2:b6:3f:dc:46:4b:cd:7f:de:5c:a6:31:28:
95:9b:aa:aa:5f:a0:78:d9:e5:fc:a1:cf:0a:b0:5c:
89:fa:78:63:58:c4:19:a6:fa:81:fc:9c:59:28:d6:
f6:fe:b6:bd:ea:7e:03:b1:3f:94:13:59:cb:66:1f:
7f:0d:52:27:93:d6:0d:f6:49:ee:ce:52:20:94:78:
27:e6:ad:4f:ff:50:1f:7b:e5:53:0c:90:34:c7:26:
96:d6:32:95:26:2c:c6:36:6b:5a:a3:4d:00:7c:a4:
ae:2f:dc:25:1c:e3:0d:20:be:64:11:42:d5:ce:55:
80:9a:14:40:36:d1:7f:a5:df:86:63:12:8c:fb:66:
f7:f9:1a:ee:4b:e2:e8:d7:ce:6b:11:d6:45:22:cb:
de:2a:1a:8d:ea:12:cb:26:ae:7e:3e:4b:5e:f2:81:
76:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3A:AB:68:69:E1:08:4F:05:B3:CE:6B:33:F8:FE:94:C5:AB:DF:32
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:86:21:d5:d8:a7:52:76:50:55:82:ef:56:8a:62:12:22:df:
7c:37:09:03:37:43:12:80:07:7e:0a:50:13:f7:78:02:c8:72:
90:5c:f7:e8:38:44:4b:d8:27:77:f5:d4:e0:ad:dd:5b:dc:d4:
c3:49:73:69:aa:46:1d:f8:5d:e3:e1:f1:70:2b:e3:84:a8:23:
f3:69:dc:72:d2:cb:a5:c5:b6:22:f7:df:91:81:d1:cd:dd:e2:
70:b5:20:77:90:8e:7a:25:e7:01:ad:a0:9d:4f:8f:5c:0c:14:
9b:8d:8b:49:3d:46:f0:4a:13:77:8d:7c:34:6a:f4:ad:6d:74:
23:86:1b:2a:c4:1f:f0:ff:e3:2c:96:4e:3e:49:82:a6:ae:f3:
2b:7a:e4:61:74:4e:73:00:47:62:80:e4:2e:56:7e:ab:3b:5f:
be:85:78:1f:74:a1:07:ed:1e:4f:07:82:80:40:05:72:b6:e3:
a5:e9:f6:d5:07:34:b1:61:b5:52:67:89:e6:0e:49:50:d3:8e:
63:b6:34:9d:e8:b6:16:44:5d:85:e4:0e:3a:7a:ae:4e:7d:77:
42:b5:96:f2:35:e4:6f:52:de:ba:64:d4:ef:d6:cf:8b:0c:a7:
89:2b:6d:c1:61:f6:80:aa:8d:dd:ae:cf:65:52:c1:92:aa:00:
8a:c4:88:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:26:27 2026 by rpki-client