Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
File: HNq3BST9UTE7hPXY9GNio9jICBQ.mft (raw, json)
Hash identifier: XA2oZRsxBprPCktFcMt8TmRf8gNThTlQognKYVbOXOA=
Subject key identifier: 49:A5:A6:9E:2E:85:A1:36:CD:79:B9:CC:A8:05:2A:F0:1D:7B:CA:E4
Authority key identifier: 1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
Certificate issuer: /CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Certificate serial: 019CAB34635447AB433B678FE0F1407C1AF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 21:01:02 +0000
Manifest this update: Sun 01 Mar 2026 21:01:02 +0000
Manifest next update: Mon 02 Mar 2026 21:01:02 +0000
Files and hashes: 1: HNq3BST9UTE7hPXY9GNio9jICBQ.crl (hash: MJ55YhYlzJYpL9O0sQ9AyUZ3RrBvpM5/LQ8zpi+3zSA=)
2: wJTOj0mEUrIF3Tlq4qTWWTuOppI.roa (hash: w9rdqk85HiQNy+SgpZs0zo1ZOjcfj7xojv16EEwMZF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:63:54:47:ab:43:3b:67:8f:e0:f1:40:7c:1a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Validity
Not Before: Mar 1 21:01:02 2026 GMT
Not After : Mar 2 21:01:02 2026 GMT
Subject: CN=49a5a69e2e85a136cd79b9cca8052af01d7bcae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9c:89:31:cf:9d:d0:18:c4:58:32:6b:9d:b1:
07:f7:a4:86:0e:8f:85:0d:e0:b8:00:f9:13:19:6f:
c4:8d:71:77:64:1d:f8:69:d4:3e:27:12:3b:97:d7:
b9:b4:47:04:8f:fc:d3:89:de:da:a5:b7:c9:c6:ba:
72:8b:d0:11:88:ec:b6:f2:e5:5a:d3:5b:45:81:a2:
e0:9f:58:20:92:e2:9e:b2:df:bf:f3:8c:32:d5:04:
66:c3:24:43:d3:29:93:19:6c:1a:b1:d5:3b:61:15:
3f:3d:60:fd:01:7a:62:93:59:c5:4c:c2:3d:6b:7c:
46:50:d4:e5:80:03:60:72:74:ce:4f:5a:8d:2b:3b:
5e:4a:c2:f6:1b:9e:c3:49:06:83:b5:fa:b8:30:80:
06:45:40:80:21:33:4e:fb:e1:78:59:db:e9:91:73:
b9:d1:6a:af:82:7d:85:eb:76:ef:ab:23:5b:1a:af:
85:8a:8e:c9:fb:59:d8:ec:fa:d9:c3:71:52:90:aa:
3c:34:1b:15:64:70:af:2a:5c:91:81:a0:8a:eb:a2:
48:a4:7f:68:5b:d0:43:d2:ad:0c:1a:0a:25:85:a5:
56:40:10:e3:11:67:49:7d:ce:c8:ca:60:d1:2d:74:
04:a0:7b:e7:09:e2:1d:e8:cf:f0:8a:4d:78:5c:54:
f5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A5:A6:9E:2E:85:A1:36:CD:79:B9:CC:A8:05:2A:F0:1D:7B:CA:E4
X509v3 Authority Key Identifier:
keyid:1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:da:36:ad:a2:74:e7:f5:78:f9:96:f4:be:86:d6:39:dd:3b:
0f:f1:23:a0:34:0e:09:0e:65:77:69:d9:55:f0:29:d8:2a:ef:
98:c7:85:ea:06:c3:5f:a6:35:87:56:4b:4e:96:da:09:fa:f8:
1d:3c:58:7d:eb:3b:05:8f:03:e9:9d:f7:bb:d2:9a:5b:63:c8:
8f:6c:f8:c3:58:59:34:97:1d:ba:50:a2:20:15:28:4a:f6:e6:
43:83:de:77:18:a3:93:37:c5:59:41:6e:d7:e3:51:8e:f6:f3:
11:96:bf:31:f3:b8:c1:20:a6:fc:93:27:54:4d:fe:3f:82:e3:
a4:c8:6d:fc:90:72:f7:8f:50:de:68:5a:e1:5d:30:0f:94:1b:
64:eb:af:cb:94:5a:34:ea:6a:15:7b:9a:98:a9:76:ce:a4:0d:
76:ef:b6:56:aa:e5:69:3a:80:62:f5:8e:1a:68:33:cd:ee:50:
67:ab:4f:5f:1f:f2:f2:1b:5e:85:3f:c7:7b:45:a8:24:c8:59:
f5:3e:56:37:93:cc:1f:85:c3:11:f5:97:04:68:c8:cb:21:b6:
38:cd:73:88:b7:06:56:ce:e2:f9:79:c9:9a:e4:c3:03:74:ca:
70:ef:c3:91:29:80:f3:5b:f0:ec:9a:5e:7a:fc:a2:cd:53:5d:
52:e9:b6:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNGNUR6tDO2eP4PFAfBr3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjZGFiNzA1MjRmZDUxMzEzYjg0ZjVkOGY0NjM2MmEzZDhj
ODA4MTQwHhcNMjYwMzAxMjEwMTAyWhcNMjYwMzAyMjEwMTAyWjAzMTEwLwYDVQQD
Eyg0OWE1YTY5ZTJlODVhMTM2Y2Q3OWI5Y2NhODA1MmFmMDFkN2JjYWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypyJMc+d0BjEWDJrnbEH96SGDo+F
DeC4APkTGW/EjXF3ZB34adQ+JxI7l9e5tEcEj/zTid7apbfJxrpyi9ARiOy28uVa
01tFgaLgn1ggkuKest+/84wy1QRmwyRD0ymTGWwasdU7YRU/PWD9AXpik1nFTMI9
a3xGUNTlgANgcnTOT1qNKzteSsL2G57DSQaDtfq4MIAGRUCAITNO++F4WdvpkXO5
0Wqvgn2F63bvqyNbGq+Fio7J+1nY7PrZw3FSkKo8NBsVZHCvKlyRgaCK66JIpH9o
W9BD0q0MGgolhaVWQBDjEWdJfc7IymDRLXQEoHvnCeId6M/wik14XFT1eQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEmlpp4uhaE2zXm5zKgFKvAde8rkMB8GA1UdIwQY
MBaAFBzatwUk/VExO4T12PRjYqPYyAgUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSE5xM0JTVDlVVEU3aFBYWTlHTmlvOWpJQ0JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8xOTAxN2EtNGZjYy00ZmFkLWE1NzIt
OTlmNjkzZTQ1MDYxLzEvSE5xM0JTVDlVVEU3aFBYWTlHTmlvOWpJQ0JRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8xOTAxN2EtNGZjYy00ZmFkLWE1NzItOTlmNjkzZTQ1MDYx
LzEvSE5xM0JTVDlVVEU3aFBYWTlHTmlvOWpJQ0JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATNo2raJ0
5/V4+Zb0vobWOd07D/EjoDQOCQ5ld2nZVfAp2CrvmMeF6gbDX6Y1h1ZLTpbaCfr4
HTxYfes7BY8D6Z33u9KaW2PIj2z4w1hZNJcdulCiIBUoSvbmQ4PedxijkzfFWUFu
1+NRjvbzEZa/MfO4wSCm/JMnVE3+P4LjpMht/JBy949Q3mha4V0wD5QbZOuvy5Ra
NOpqFXuamKl2zqQNdu+2VqrlaTqAYvWOGmgzze5QZ6tPXx/y8htehT/He0WoJMhZ
9T5WN5PMH4XDEfWXBGjIyyG2OM1ziLcGVs7i+XnJmuTDA3TKcO/DkSmA81vw7Jpe
evyizVNdUum2pg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:57:10 2026 by rpki-client