Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
File: HT0ETAkeiLgLSyaeu3lrPyRUS18.mft (raw, json)
Hash identifier: GuIT9YlabE2xQGKgEKvLQfSOqrKBnk6Z6+FKLTHrzyo=
Subject key identifier: 8C:90:0F:3E:20:97:87:49:77:F5:6D:1C:8E:93:FC:88:CE:92:A3:C1
Authority key identifier: 1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F
Certificate issuer: /CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f
Certificate serial: 019CABD9DF6EACFC8F1050709F5A6F9AAD2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
Manifest number: 08DC
Signing time: Mon 02 Mar 2026 00:01:48 +0000
Manifest this update: Mon 02 Mar 2026 00:01:48 +0000
Manifest next update: Tue 03 Mar 2026 00:01:48 +0000
Files and hashes: 1: CVRiR4PWA5mkMUyfsZHNmuQrLLc.roa (hash: 5ktDsOfkaJ/bYAV74Q0Rw6jgw2aMIQHNLymwbsIWQIk=)
2: HT0ETAkeiLgLSyaeu3lrPyRUS18.crl (hash: DMlZYU56LjPK9CvllrwKQN7MG0FCH0P3cYt+/tN5EwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:df:6e:ac:fc:8f:10:50:70:9f:5a:6f:9a:ad:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f
Validity
Not Before: Mar 2 00:01:48 2026 GMT
Not After : Mar 3 00:01:48 2026 GMT
Subject: CN=8c900f3e2097874977f56d1c8e93fc88ce92a3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cf:fc:ab:c2:61:f9:df:f9:80:70:ce:36:a7:
b3:04:75:ca:94:d3:02:93:99:05:a3:50:86:33:e1:
75:45:b7:92:85:13:ef:b2:7a:e6:76:1f:97:24:87:
75:02:74:bd:88:67:9b:a6:40:b8:cc:32:fa:b2:8c:
80:32:7e:c9:9c:10:c8:74:5a:3a:8e:ba:45:b5:16:
eb:b7:f8:25:42:f0:6c:0c:1a:e1:55:2b:16:90:c5:
28:37:b4:58:c8:4f:d2:8b:7b:3f:33:f8:0f:b3:ed:
9c:08:a2:76:2f:0a:22:8e:a8:1e:14:94:52:da:53:
d3:65:bf:cd:cc:f0:8b:04:be:92:01:76:b0:14:bf:
85:21:fd:f7:50:7f:db:8d:4d:52:0f:8f:e0:45:d1:
8b:97:22:42:56:ec:e4:0d:8b:46:d7:53:fb:51:be:
0e:15:aa:e3:a0:a9:82:80:a1:b5:ca:d0:ef:64:8e:
77:24:07:7e:2f:aa:3c:43:00:06:5c:41:cf:5c:69:
5c:76:fe:40:c3:a5:9d:79:3c:b7:91:dc:e5:4d:1a:
16:db:c2:e0:7b:e4:b7:da:fb:2c:3e:9b:4b:9d:a9:
fe:d2:ce:54:ad:eb:e4:97:14:2b:2e:a1:95:8b:3d:
26:6f:46:c5:fb:d5:cb:d4:a3:f9:f4:b2:0b:2f:e6:
99:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:90:0F:3E:20:97:87:49:77:F5:6D:1C:8E:93:FC:88:CE:92:A3:C1
X509v3 Authority Key Identifier:
keyid:1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:36:9e:73:cf:ed:74:f7:d5:b3:90:2f:a8:54:69:b3:3d:ee:
82:20:dc:67:2f:61:b2:f9:0a:d4:a4:68:ff:b7:82:49:4d:67:
06:d5:50:03:b6:d6:ad:bf:56:e8:5d:e4:e4:3e:64:f9:9b:82:
7d:b8:f3:5e:6f:22:8b:d8:c6:47:17:a1:7d:a9:76:e9:6c:3d:
5b:9b:82:49:89:ef:b1:c7:4e:1c:01:7f:8b:9a:f8:93:be:0d:
49:9f:74:25:2c:77:4a:89:43:c0:c9:7d:09:8b:a1:cb:1a:42:
96:12:c4:23:a5:ed:41:b5:dd:02:62:f7:a1:8e:de:15:6e:ed:
ad:e6:dc:56:5a:6a:d1:a6:37:a8:df:3b:59:06:42:77:21:03:
6a:bd:22:94:9a:7f:86:07:10:dd:e5:e4:e9:27:b9:22:14:ac:
2d:06:d6:1f:8e:8f:0e:d6:d0:ff:15:53:4f:7a:77:e4:79:03:
14:95:8f:e8:51:ec:23:6e:3b:ec:3f:ee:57:0e:a6:2a:7f:51:
a5:05:3d:2e:8f:74:e7:82:3a:58:51:de:da:41:48:ec:35:6a:
12:6f:5d:c9:67:e0:7e:20:ed:63:26:e4:e3:ac:03:84:00:0e:
6c:92:ae:d8:7b:48:e0:21:7d:e0:c9:ae:fa:1b:2e:6e:8e:ae:
7e:92:ca:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:15:33 2026 by rpki-client