Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: XyEveczP/y4wRFs78+UxPC4hu8qyGyOJaLFIEx9bf9w=
Subject key identifier: 8A:63:71:EE:EA:A3:60:D0:40:A0:55:14:7A:62:9D:DD:EB:B9:87:9A
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 019CAD90543B1666E4D61BAF7F3B3CA769C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 095E
Signing time: Mon 02 Mar 2026 08:00:42 +0000
Manifest this update: Mon 02 Mar 2026 08:00:42 +0000
Manifest next update: Tue 03 Mar 2026 08:00:42 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: bxmgfnmCocoI5qQx+9qj0jH7onpMi8vh9goQq/G7kIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:54:3b:16:66:e4:d6:1b:af:7f:3b:3c:a7:69:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Mar 2 08:00:42 2026 GMT
Not After : Mar 3 08:00:42 2026 GMT
Subject: CN=8a6371eeeaa360d040a055147a629dddebb9879a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:48:a4:82:96:1a:0c:89:3c:53:78:a1:93:40:
ee:35:b8:43:d0:1a:de:fb:d6:e5:df:3c:fa:4c:4e:
b2:43:48:2e:5d:fb:89:13:9a:5e:7f:b7:24:44:6e:
b6:02:15:12:3f:65:86:ce:b4:ae:a2:08:de:29:8e:
52:7c:89:a9:06:23:c4:f5:1c:91:14:e3:a4:a1:da:
51:ec:7f:f9:2f:36:2e:a7:e1:af:34:ce:cb:b0:73:
8c:e0:c1:ed:18:bd:07:e4:dd:80:cf:1d:6e:4d:cb:
2d:5f:c4:b5:50:e3:a9:e7:d1:16:ea:00:69:5c:96:
74:b4:b4:10:b6:c1:39:85:65:d4:4d:c9:ee:5e:cf:
0f:75:75:e4:b2:c1:a0:e5:2d:d0:6f:da:27:80:1b:
17:0f:26:47:0f:b0:d8:54:1b:64:72:26:9a:b7:e7:
42:2c:54:c2:a8:96:2b:3a:f0:5d:28:cd:ce:73:4e:
aa:2d:c1:88:d1:7f:72:e6:f0:5f:01:19:f8:65:32:
e9:a1:d1:03:4b:7a:45:0b:ef:d0:85:20:00:6a:da:
ed:5f:4d:8f:f4:f9:95:72:96:ef:87:67:ea:2c:8a:
53:83:b0:c9:72:29:55:e2:e2:5a:61:b9:30:b2:65:
f3:17:88:93:8f:95:24:5a:9d:56:0a:f0:e4:08:09:
3f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:63:71:EE:EA:A3:60:D0:40:A0:55:14:7A:62:9D:DD:EB:B9:87:9A
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:df:a0:23:2e:5e:d0:77:9a:61:d7:43:4d:c2:f8:91:30:66:
bc:a6:fb:1d:ad:fc:4e:6b:5b:a7:b1:ae:7f:e6:5d:a4:ef:16:
23:f1:9f:71:05:66:5b:fa:e2:39:2f:d7:39:ac:c0:ad:b3:d1:
e4:ff:fd:fe:b7:f4:fe:7b:8c:09:de:8b:08:f5:b3:d8:42:fb:
68:3f:b8:8c:c9:7f:d6:52:cb:ca:12:42:45:d1:b7:c2:29:4b:
b5:7c:ba:7a:c1:23:30:62:a1:f3:3f:f5:42:e4:22:5d:d2:5c:
8c:7e:7c:a1:90:a3:05:55:39:aa:81:64:c9:c5:a4:7f:af:7f:
04:1c:7e:f3:db:03:d5:d7:ec:d6:75:79:55:4e:3a:e7:da:30:
b7:95:fc:22:ef:9b:62:aa:d5:d7:a7:ec:2e:68:8f:0d:4e:9c:
0e:24:11:6e:ac:3f:34:48:d0:a9:24:dc:a0:78:f2:24:a2:80:
02:ec:90:8d:ef:b2:ae:90:c7:68:88:9c:ef:86:c9:34:d0:51:
8c:c2:2d:81:5b:79:3a:bf:70:7f:a9:f0:b7:30:d6:93:1e:5a:
b1:fe:fc:8f:8f:a0:94:49:7d:72:e4:39:c3:d7:61:10:64:26:
6e:b9:39:fa:14:e9:00:0a:9b:27:e4:73:60:2f:de:46:da:09:
b1:c6:91:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:16:07 2026 by rpki-client