Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
File: hTodtQq3cdy1KTZ92VGmfKzEhSc.mft (raw, json)
Hash identifier: DNk/hfUTBX+3xqMoXXP7umoaa82jcj44FCI8p01QcKA=
Subject key identifier: 74:8E:0D:B7:F6:6E:82:4B:DB:13:FD:45:85:2A:12:72:B0:5D:F6:C1
Authority key identifier: 85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
Certificate issuer: /CN=853a1db50ab771dcb529367dd951a67cacc48527
Certificate serial: 019CABA258F31ECA509BCA465EA87B8B9DDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 23:01:09 +0000
Manifest this update: Sun 01 Mar 2026 23:01:09 +0000
Manifest next update: Mon 02 Mar 2026 23:01:09 +0000
Files and hashes: 1: ClZipqAtGVJ2H4srpt_UxqUYg7k.roa (hash: gRSN7asX/fb1bF2/3SBjZi8n62BnbOxEncNI/Hx/1K0=)
2: hTodtQq3cdy1KTZ92VGmfKzEhSc.crl (hash: QNVqhpVfuf3lq9RARcmVOo+IaEz5vI0TmYltN7rRAXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:58:f3:1e:ca:50:9b:ca:46:5e:a8:7b:8b:9d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853a1db50ab771dcb529367dd951a67cacc48527
Validity
Not Before: Mar 1 23:01:09 2026 GMT
Not After : Mar 2 23:01:09 2026 GMT
Subject: CN=748e0db7f66e824bdb13fd45852a1272b05df6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fb:ce:c1:3a:67:85:b7:82:ae:27:b7:33:2e:
00:68:91:a0:4b:66:48:84:fb:3e:b1:56:93:cc:ed:
fe:e1:82:0c:42:90:69:84:6d:5c:75:8b:5d:14:94:
96:6c:3b:03:73:da:85:e5:62:2d:64:ab:b3:a6:01:
4f:dd:07:73:41:65:0a:b9:a7:43:53:21:cf:10:07:
8c:54:6c:5c:52:c6:a1:f1:d6:de:2b:dd:e4:63:e5:
00:88:bb:7c:e9:d0:80:af:cc:ab:be:1d:7b:3d:92:
e0:8f:92:0e:aa:71:44:42:09:16:8d:c3:dc:ed:ec:
a8:67:96:1b:e7:1c:0d:61:1b:8d:5a:dd:40:e6:e1:
18:63:24:3d:67:51:21:8a:67:8f:af:ce:71:1f:33:
df:d7:bc:e7:f6:8d:a7:3c:ea:a3:91:88:ac:ed:63:
7b:a3:5c:99:70:8b:4a:9d:1b:02:e3:09:51:4b:2e:
f2:8e:0c:b1:f5:22:fb:8d:c0:cf:a9:51:d1:62:cb:
c9:07:43:53:db:e5:c1:16:c6:28:66:85:3f:be:c5:
83:95:77:56:ab:80:3a:5f:c4:d4:eb:f5:6c:41:88:
87:58:ca:8a:aa:f5:ea:c1:06:61:25:f0:9e:c9:d7:
17:db:34:f4:82:84:77:98:0b:6b:8e:31:0f:29:58:
c5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8E:0D:B7:F6:6E:82:4B:DB:13:FD:45:85:2A:12:72:B0:5D:F6:C1
X509v3 Authority Key Identifier:
keyid:85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:de:80:b7:c1:c1:5d:5a:db:fc:5d:d0:15:39:97:62:7e:11:
2e:d8:c6:1d:25:75:b3:c7:1c:26:de:18:a7:54:8e:e1:b6:e8:
b7:37:c7:9d:7d:ad:78:3f:90:1c:15:1d:74:96:ae:33:39:c5:
9b:f2:20:e2:e8:f1:40:a0:2d:81:3a:9f:f4:42:8f:26:a5:74:
85:1b:cf:4e:2e:aa:3f:fd:a2:da:94:a7:80:bc:f5:98:3c:a1:
8a:be:6e:77:18:bd:7f:a3:0d:b4:9e:47:64:b9:85:3b:c0:c0:
26:68:bc:4f:f2:92:8e:aa:18:b0:d5:ce:86:8b:1f:7f:c8:a4:
fa:f2:9f:37:d5:bd:5a:3b:e1:92:2b:23:44:0c:04:ce:61:64:
6b:f3:c8:ca:e5:c4:84:b8:a4:1c:bb:3e:a5:f8:87:1b:4e:7e:
96:a1:2c:4d:60:1b:4d:8a:3a:d1:31:9a:f1:25:37:5d:a8:4d:
65:d9:89:df:6f:bf:57:ab:b0:65:29:7a:5e:be:f8:84:a2:8d:
e9:93:8c:f6:ca:48:c5:fb:7f:6d:26:a4:0b:c6:2c:ab:86:76:
34:57:6e:81:09:53:03:94:26:b6:5a:51:ab:6e:48:f0:cb:86:
79:0d:54:74:56:5f:17:2c:2f:31:b7:d0:90:00:12:99:fd:06:
3a:63:82:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:43:26 2026 by rpki-client