Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
File: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft (raw, json)
Hash identifier: RMVa7Gvb334EsF9nWt+bWllhjFFndE+2MWY5qlJTQQI=
Subject key identifier: 1B:F2:5C:73:21:A9:3F:90:53:5B:5F:E0:5A:34:CC:7D:F5:28:84:5C
Authority key identifier: 84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
Certificate issuer: /CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Certificate serial: 019CAA21C678532485FDB1B9CC75B68B0557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
Manifest number: 184D
Signing time: Sun 01 Mar 2026 16:01:06 +0000
Manifest this update: Sun 01 Mar 2026 16:01:06 +0000
Manifest next update: Mon 02 Mar 2026 16:01:06 +0000
Files and hashes: 1: 867F4OQuQLWhRY4aKxKeoxD01B4.asa (hash: +fRCR0HY7fbE+pyBbt7W5yHcfIjIo6aJjDfzPZQv280=)
2: cj-L2rGXvYKYk6a-AdfFlFFwb-s.roa (hash: d08NWXtlSQGeDRPYfCwBaxm1c8qg8kNQWXxjIs+wmGU=)
3: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl (hash: YIAF6poK+rWub/j/MAxkde7/sH9ubIguIUr83zF8rTo=)
4: iqLo87tMFOB-XBrWIzdU46MRBuE.roa (hash: IzYBLEWXA56LUWCfb8F/l/nPeES5nSXV/ENxm4IRlhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:c6:78:53:24:85:fd:b1:b9:cc:75:b6:8b:05:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Validity
Not Before: Mar 1 16:01:06 2026 GMT
Not After : Mar 2 16:01:06 2026 GMT
Subject: CN=1bf25c7321a93f90535b5fe05a34cc7df528845c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fe:82:ad:26:af:db:fb:23:41:d7:c8:2c:0e:
57:04:91:c9:bd:b0:f1:63:aa:23:70:5e:cf:c9:17:
a2:84:56:21:b4:56:5b:ce:42:a2:ad:fc:2d:52:26:
56:9e:43:76:61:d0:55:61:75:d3:11:cc:d3:2e:30:
b2:71:32:7d:44:92:b7:30:9d:eb:c7:f9:68:51:d0:
3f:cc:d5:0a:51:48:2a:ab:01:1c:c2:93:77:a9:4d:
70:d7:4f:52:e3:6d:ed:19:d9:8b:f6:92:66:ad:ab:
ec:d8:60:94:00:95:76:f5:ce:92:75:a2:d8:10:f1:
69:0d:a7:5d:d2:2b:ee:d4:5c:f3:d4:7e:a2:0f:b3:
0a:e6:e7:be:bf:a7:a4:ce:88:05:67:34:14:e2:e9:
83:46:ac:ba:f7:56:4d:fb:60:6e:06:38:08:a4:28:
99:31:73:13:a6:bb:dc:d4:eb:73:f9:a3:74:f9:fe:
80:b2:c8:8a:61:09:21:07:87:fc:4f:23:19:c7:85:
d7:2d:80:08:ce:48:b4:33:b8:be:0d:7c:66:52:18:
98:2f:be:ef:29:26:ce:14:3e:15:ca:8e:4c:ec:8d:
1e:8c:6e:8c:1a:8c:4a:9f:28:ed:8f:b7:d6:1e:96:
c1:29:90:c5:a2:e5:78:26:b5:44:55:86:ec:ec:f0:
6e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F2:5C:73:21:A9:3F:90:53:5B:5F:E0:5A:34:CC:7D:F5:28:84:5C
X509v3 Authority Key Identifier:
keyid:84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:13:b4:60:62:f1:be:a2:67:65:b7:11:3c:96:fb:a7:f7:38:
02:be:c0:cc:7e:4b:f5:bc:b1:9f:1c:c0:58:c5:f8:7a:89:b0:
a5:f8:ed:55:55:b7:67:32:9a:f6:7d:76:1b:42:91:37:6d:df:
d6:2b:d2:17:28:8d:0d:1c:c2:9e:a2:a3:18:11:4e:04:79:2a:
d2:9f:d8:9b:eb:22:cb:0d:f5:a9:26:35:f9:f7:36:00:1d:35:
1f:7a:09:ab:09:ba:60:0d:78:8f:ad:df:46:ff:8b:5b:4c:75:
51:88:ee:61:e2:43:ce:33:6d:3c:c3:3f:37:d7:b1:56:9d:70:
b0:7f:26:55:ef:f4:fd:a1:3d:0c:d5:2b:ef:da:b1:45:3a:4a:
3e:20:d5:39:70:9e:6b:f1:86:42:f7:39:86:a4:d1:c0:e9:9b:
25:56:b8:8b:ee:f4:02:06:dc:93:13:69:0f:a1:ba:da:19:9d:
11:09:ff:d3:77:78:37:57:85:29:7b:cf:5a:7c:f6:80:b4:e5:
31:4f:f4:f6:43:d5:01:1d:ab:6c:0b:7d:e2:b0:22:36:00:51:
64:aa:af:43:b2:01:e9:ea:bb:3b:e2:eb:46:eb:5e:b7:61:e0:
fe:4a:46:4f:39:2c:e6:d4:13:86:bd:61:53:8c:97:8b:e0:2a:
95:43:83:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:14:34 2026 by rpki-client