Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
File: hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft (raw, json)
Hash identifier: RytgbqXhIGTbboUssDENl4FqiSu3f5Cc832aIVtIwfw=
Subject key identifier: 6B:1B:77:BA:0B:81:8E:3D:3F:FD:84:6B:E0:4F:DD:1C:87:67:F3:98
Authority key identifier: 84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
Certificate issuer: /CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Certificate serial: 019CACEB5474CF069707DC1430CA872AADDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
Manifest number: 12E2
Signing time: Mon 02 Mar 2026 05:00:29 +0000
Manifest this update: Mon 02 Mar 2026 05:00:29 +0000
Manifest next update: Tue 03 Mar 2026 05:00:29 +0000
Files and hashes: 1: MRe9Jn2vQUNBgH-RANmr0FhgGxI.roa (hash: rNl8kN+vuqRjmFOphk7qL6AzwoKLgjg4geeKr4yHMYs=)
2: hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl (hash: 9MJ4eFfE1Go6IPRzdx+lGbJkT/XohPBKpO42eEVeKEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:54:74:cf:06:97:07:dc:14:30:ca:87:2a:ad:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Validity
Not Before: Mar 2 05:00:29 2026 GMT
Not After : Mar 3 05:00:29 2026 GMT
Subject: CN=6b1b77ba0b818e3d3ffd846be04fdd1c8767f398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:94:6e:b4:5c:56:5a:03:be:38:5d:50:24:dc:
9b:b3:14:b3:54:f7:b4:24:bd:17:3c:2b:ea:6b:fb:
16:42:08:9f:b5:3b:2a:ee:7a:59:82:88:c9:8b:2b:
2a:b9:b7:ce:5a:49:0d:ef:3c:cf:67:5c:d5:a3:1d:
71:71:eb:f5:66:83:42:ab:27:32:06:37:d9:17:8f:
3b:68:f4:c3:be:bb:78:af:f7:2a:d0:92:15:4e:a6:
8f:b7:a0:1e:1d:78:eb:25:3a:66:44:a2:55:2d:93:
e9:60:dc:6a:83:b4:46:62:9e:58:85:fe:d2:4b:9d:
c6:d4:65:76:8e:36:74:e9:48:ba:42:b9:e4:0c:68:
6c:8d:14:b0:e9:d1:24:f9:05:87:90:4c:e1:a8:2a:
26:c6:d3:0d:75:66:b7:20:56:4c:2d:cd:c1:22:0b:
16:b9:65:a6:35:6e:93:5a:42:14:85:00:5b:65:62:
32:eb:f2:a8:a4:80:1b:e1:58:d9:5b:fc:03:92:45:
56:69:71:7c:08:95:22:42:40:6f:75:d2:7b:70:5c:
2d:2c:1e:6d:5a:18:1d:51:dd:02:36:de:16:51:3c:
6b:96:d5:1d:bc:d7:b5:57:55:b7:3a:05:eb:53:19:
bf:1c:4f:00:16:6a:c5:39:f2:b2:6b:11:63:58:86:
e5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1B:77:BA:0B:81:8E:3D:3F:FD:84:6B:E0:4F:DD:1C:87:67:F3:98
X509v3 Authority Key Identifier:
keyid:84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:c1:5e:83:43:c5:5f:01:a3:18:e2:b1:c1:84:6e:73:d8:71:
75:b5:33:70:41:5a:1d:dd:99:66:a3:08:9c:be:76:56:6c:22:
1f:99:62:49:d2:3d:1e:ae:94:11:a6:c2:d5:15:50:ba:5c:03:
f5:8c:8b:a7:e1:df:f0:3b:e1:b5:6f:10:9b:4c:04:dd:a7:31:
66:3c:66:82:8a:64:69:52:a0:bb:a6:c1:c8:88:cc:4f:71:4e:
fb:5b:40:31:a2:be:f5:e2:4d:e7:f8:98:b5:70:5b:d9:75:4e:
a0:71:5f:1b:f1:5b:38:c9:5d:35:8f:f4:c6:5e:68:16:05:99:
f7:9c:8c:dc:d1:67:c0:98:c1:03:a2:aa:7a:51:78:8a:7e:c3:
41:d2:65:20:6c:68:a9:1c:ce:30:b3:ce:ef:33:42:06:87:23:
44:93:80:bd:37:00:eb:d9:b5:ed:4b:14:56:ec:aa:b8:8b:13:
dd:ac:c1:e2:df:f5:93:eb:44:ca:36:0e:7e:59:a6:3d:94:9d:
74:e9:83:81:7f:eb:74:3e:23:88:c8:99:b0:da:09:a6:79:d1:
cd:2e:6e:41:b5:80:76:ce:ea:1f:a6:0c:7b:28:2f:63:fa:37:
80:4c:21:11:4d:43:01:71:af:cb:0e:36:96:00:52:6b:2a:8c:
78:c6:84:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:28:37 2026 by rpki-client