Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
File: HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft (raw, json)
Hash identifier: 9hEZ3Ox85CFhX1FZKiIUaWpMcT+b2OOC8CS+0QKkjQw=
Subject key identifier: C1:B2:55:C6:DD:6B:78:A0:C4:5B:F4:E5:81:44:44:9E:7B:85:74:E5
Authority key identifier: 1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
Certificate issuer: /CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Certificate serial: 019CAC47628D3419E919A601FB5055C0433B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
Manifest number: 08C1
Signing time: Mon 02 Mar 2026 02:01:25 +0000
Manifest this update: Mon 02 Mar 2026 02:01:25 +0000
Manifest next update: Tue 03 Mar 2026 02:01:25 +0000
Files and hashes: 1: HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl (hash: Zp8WD5VRaLdevsDsELQMV1gwfHkwFwtSuwV0mBlwNPA=)
2: K3dVJzjb4UxWNn2q6SzagSp02Oo.roa (hash: vSuxNcyOp/bZV6+vMViNTDz5yQOhdkZ3pxgYsBeSdRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:62:8d:34:19:e9:19:a6:01:fb:50:55:c0:43:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Validity
Not Before: Mar 2 02:01:25 2026 GMT
Not After : Mar 3 02:01:25 2026 GMT
Subject: CN=c1b255c6dd6b78a0c45bf4e58144449e7b8574e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a2:52:ba:23:44:73:17:2f:e5:2e:31:4a:4f:
44:75:3a:20:ed:c0:07:73:ce:32:dd:b3:77:0e:c0:
83:88:35:03:47:89:9c:e2:46:e9:da:4e:62:ab:4a:
e8:92:fa:5c:13:a6:8b:29:6b:78:93:6b:56:a4:b4:
16:4e:3e:e3:f1:d4:74:d1:89:b7:c6:51:13:19:e4:
6e:4c:19:9c:b1:23:e6:7b:6c:c3:1b:b3:55:61:34:
70:e3:f9:66:82:56:d1:7f:91:6d:7c:b4:e6:97:ce:
bd:4b:bd:f4:cd:e7:6f:d7:14:e0:38:7f:c5:5e:05:
31:9b:62:99:d8:a4:7a:4d:18:66:f7:e9:db:c8:79:
a0:0b:93:32:e3:98:0c:1c:ee:65:90:ca:45:9b:22:
5a:93:36:65:d5:a3:57:3f:77:94:72:24:be:3b:d8:
fa:43:b8:bb:8d:0d:36:9b:b3:d3:52:d3:c6:a0:5f:
30:ac:66:8e:f6:eb:be:c6:2f:0f:7a:1b:e9:68:c2:
fb:5f:24:fa:da:76:50:a5:84:5e:5a:1b:21:b9:28:
7d:36:26:1c:e2:11:e7:4f:ae:40:bb:dc:3d:46:e1:
cc:5a:35:50:97:38:79:22:38:52:c6:60:56:62:3f:
f7:24:b0:1f:1d:07:9f:3b:81:04:87:41:ba:6d:51:
77:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B2:55:C6:DD:6B:78:A0:C4:5B:F4:E5:81:44:44:9E:7B:85:74:E5
X509v3 Authority Key Identifier:
keyid:1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:75:c0:60:e1:1d:72:19:d4:a6:ba:52:07:8c:19:d9:a9:0c:
e1:0c:50:3f:e0:fe:e9:99:0e:73:7c:d0:73:29:40:39:ad:48:
4d:1a:17:f1:87:0b:35:76:8f:20:63:1f:5d:09:de:c7:34:ee:
06:7e:94:cc:f0:64:b0:3b:80:da:5f:4b:ab:bc:30:d9:7b:b5:
1c:df:4c:62:80:99:ea:b6:4b:42:4d:ca:27:4b:67:44:00:05:
21:23:19:68:03:3f:a1:b1:dc:9a:a7:51:d2:d1:11:4e:e9:1d:
40:22:c1:0c:67:0e:e3:63:0b:b5:17:4e:d7:af:60:41:88:8d:
ca:bc:77:02:a1:03:fb:d6:ae:fb:5b:0b:40:2b:a3:b2:a9:82:
e7:e0:ec:d3:fe:86:8b:a0:48:e7:c0:eb:f2:d8:90:2f:a3:91:
51:2c:4e:15:77:f3:ed:6e:9d:fe:1d:2d:8c:d0:30:08:f6:26:
48:92:e8:b1:1c:b6:0d:7c:8e:8e:b7:54:a1:ac:fb:3b:87:de:
c1:f2:36:f5:4f:11:4c:34:18:03:f5:51:6a:69:4e:f2:4a:30:
96:61:b3:7a:93:34:42:d0:bf:08:11:39:36:92:c5:75:46:f4:
cb:65:9d:1c:61:12:d4:77:10:2a:cf:96:90:cf:45:ca:ba:5c:
7e:23:56:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:20:54 2026 by rpki-client