Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json)
Hash identifier: EyKKeDQ2fZ6JxdBcxJMzHHd9RAjeTRoeeub+tzZ2e4Y=
Subject key identifier: 1D:58:81:5C:E8:B7:1E:7D:6C:22:70:C5:4A:DB:D5:F2:E5:04:ED:34
Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Certificate serial: 019CABA21C1C0E901241909C7EF6E30BCA7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 23:00:53 +0000
Manifest this update: Sun 01 Mar 2026 23:00:53 +0000
Manifest next update: Mon 02 Mar 2026 23:00:53 +0000
Files and hashes: 1: RRtvAei28-EijoPUYUDN7514nwo.roa (hash: D/rcxbsVh++CM30mNeuIG2vWOtaiLF/fHXsAMj0/18k=)
2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: c6DRQirx2aBk9/YxIcUzKAyJLSpXXZdPAO3A4GfX884=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:1c:1c:0e:90:12:41:90:9c:7e:f6:e3:0b:ca:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904
Validity
Not Before: Mar 1 23:00:53 2026 GMT
Not After : Mar 2 23:00:53 2026 GMT
Subject: CN=1d58815ce8b71e7d6c2270c54adbd5f2e504ed34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:8a:44:cf:8f:0a:cb:50:e2:81:e2:75:a6:26:
a5:24:30:a4:95:c4:6d:73:44:8a:1d:4c:44:a8:a9:
93:89:bf:50:3f:c7:79:53:e5:2f:53:cb:8e:55:66:
14:b4:66:bf:cc:01:02:ae:5f:ee:bd:78:3a:36:22:
20:58:da:06:6d:aa:a9:6e:32:4a:bb:0f:e2:58:20:
64:ff:25:7e:9a:de:27:f8:5c:26:08:63:fd:9b:fb:
8a:e6:c7:d5:ae:a8:b5:8e:79:0b:70:37:e0:dd:5d:
7e:f8:4b:89:c7:8b:8a:84:91:f2:97:a7:04:46:20:
06:f4:7a:99:63:0c:b7:ae:54:aa:ee:22:73:72:58:
9d:16:a1:86:70:55:cd:6c:01:f6:ad:d3:e3:d1:c5:
14:d1:a4:d1:e1:05:25:3a:2e:de:42:12:6e:09:ac:
b5:21:0c:c4:c8:31:02:01:4d:43:34:87:99:84:2c:
21:20:7f:5b:34:4e:c8:bf:6e:81:4f:39:0d:7a:c6:
5f:fa:5e:a3:22:37:4d:04:d4:58:7f:8d:71:2a:67:
c6:5e:f7:b4:46:c3:46:91:db:87:a2:d2:25:8d:c2:
60:cf:db:9c:82:f2:98:15:0d:bf:8e:e5:c4:77:6d:
df:71:26:44:a8:f2:5a:3d:8e:9f:af:56:32:60:00:
97:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:58:81:5C:E8:B7:1E:7D:6C:22:70:C5:4A:DB:D5:F2:E5:04:ED:34
X509v3 Authority Key Identifier:
keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:a3:c9:42:b9:2f:7c:fb:64:d8:db:4f:69:bc:69:72:02:52:
a8:09:8b:6e:28:da:d6:6b:ad:43:ce:fa:ad:93:74:5d:46:36:
ae:a3:c3:e9:0f:2d:d8:fc:05:c5:75:d5:aa:db:53:07:5a:93:
3a:1c:56:29:b6:66:76:d1:ac:04:30:fa:11:b3:ac:ee:3c:8f:
71:ae:76:2e:b2:4f:de:22:f8:73:4c:d5:08:b3:f9:6a:94:8d:
71:ef:bc:98:25:a8:d3:75:5b:69:1c:b2:6d:bf:fb:7e:15:bf:
2c:b5:da:e6:e4:7a:d9:2e:8f:89:a7:05:45:c3:aa:e2:fe:9e:
31:b3:b5:43:1c:5f:fd:89:4c:7f:fc:c0:07:21:0c:da:c1:87:
bc:5b:72:60:88:41:45:d3:8c:4c:c7:18:4b:ae:77:ab:04:de:
e8:47:2d:de:01:4c:61:e7:01:88:62:30:26:16:f3:0f:bc:38:
6c:b9:dc:45:92:74:74:dc:c7:52:72:9e:7e:27:1a:16:38:cb:
90:e8:07:98:59:82:99:65:e9:14:cc:6c:62:6c:05:e8:32:c6:
86:34:87:9d:60:f8:ea:c8:46:58:57:a5:5b:16:af:48:de:15:
fc:1d:d7:4d:7d:96:9a:b3:21:54:3d:d3:ba:b0:dd:e9:3d:05:
95:d1:0a:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:39:00 2026 by rpki-client