Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: OC4yN3swfUQKRmphXGEtIvxA8jNCez+bbKlIRVY45O8=
Subject key identifier: 06:88:5B:DC:AC:78:FE:5C:89:56:6A:FD:C6:4B:EF:B9:05:7E:BE:D6
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019CAA5901C43040615539BE9115577697FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 17:01:25 +0000
Manifest this update: Sun 01 Mar 2026 17:01:25 +0000
Manifest next update: Mon 02 Mar 2026 17:01:25 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: xLPxVL0LWcwqJ5Sp6hfD6H1nvPtwJUwN3yareIF+DfM=)
2: _SW-efIyZk8frPlLE8yBxAElkiU.roa (hash: iv2POwrNLwDCvtWPf5ONex0CqcvwAdFHiaQ1/D120FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:01:c4:30:40:61:55:39:be:91:15:57:76:97:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Mar 1 17:01:25 2026 GMT
Not After : Mar 2 17:01:25 2026 GMT
Subject: CN=06885bdcac78fe5c89566afdc64befb9057ebed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d4:4c:60:e3:66:13:f5:51:32:46:78:49:0b:
7e:91:ba:6e:e7:d4:7a:b8:1e:9b:9e:e9:43:c9:68:
6f:ca:c6:b4:2c:88:38:d7:b5:c5:ad:9a:11:87:55:
33:17:a5:b1:5d:d6:e5:72:6e:72:1d:60:dd:6d:67:
cf:05:04:29:0d:db:d5:3a:9b:3a:57:ee:9f:0f:63:
00:6b:09:6e:a7:70:37:50:e8:12:4a:1f:d3:f4:d5:
df:77:db:68:36:36:7d:63:f1:0f:a9:9c:05:3c:ae:
6e:ec:05:f9:c6:b3:03:9a:a0:b0:c2:98:66:0c:fa:
00:42:0d:e5:c5:6f:f2:54:b8:1c:e5:9d:ad:2e:8f:
b6:e4:04:fb:d2:e6:b8:7d:02:f7:3b:11:3a:af:6f:
d4:1a:53:98:32:bf:85:92:8c:a4:d5:ed:e1:a0:fd:
32:7f:cf:35:20:5f:96:f1:58:0b:c8:b8:38:b4:0b:
40:60:48:fb:24:fd:b4:02:8f:dd:ff:29:ae:8c:1c:
f6:c5:2b:04:f0:25:7a:04:04:ea:22:ae:3f:18:11:
17:7c:2a:d2:10:82:25:6b:16:e3:56:33:86:6e:2e:
ef:43:ff:55:89:bd:2c:f6:85:ca:ab:15:65:ce:a9:
f0:c5:b1:47:3a:ae:21:38:f8:8d:23:11:4b:cd:ce:
c8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:88:5B:DC:AC:78:FE:5C:89:56:6A:FD:C6:4B:EF:B9:05:7E:BE:D6
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:71:60:54:58:db:d6:1b:e1:8f:8b:7a:e5:00:25:c5:08:7d:
18:34:d9:57:9c:a3:4f:6e:5a:bd:3e:a0:81:ce:a5:05:a5:4f:
05:af:94:7a:64:c4:67:f5:3d:f5:b3:11:b1:37:b1:16:f6:8d:
96:65:7e:b4:a9:3c:28:b9:ad:f8:2a:53:e7:6a:59:4f:c9:d4:
91:14:60:b9:55:77:80:90:3b:6b:50:e8:2c:3e:ce:3a:0a:1e:
0e:6d:22:e4:55:84:3a:2a:37:68:83:e9:c8:1c:8a:33:38:bb:
4a:35:3c:75:f5:99:c3:4e:c8:7e:f5:e7:26:0e:70:f0:6e:2d:
ff:a0:69:a9:34:d9:1a:87:a6:9d:0e:a1:9d:27:f3:33:41:8c:
3a:f8:fe:01:40:31:1d:65:a5:b9:d7:44:0b:ae:13:d3:b7:93:
e7:d6:aa:41:3e:00:e7:6a:c0:d8:c0:54:9e:f0:70:c3:f2:88:
38:53:1f:9a:ab:21:d2:d1:11:b6:19:95:6d:66:8a:6e:12:cf:
9c:8d:90:3a:6d:f5:a6:8e:c2:14:92:d1:83:8f:e4:98:1c:8c:
93:23:87:7c:da:6a:74:80:0b:e2:58:ff:96:a6:b2:06:1c:0b:
01:b7:d7:53:96:cc:19:b7:58:01:a8:70:ae:5c:e0:d6:b3:ee:
3c:12:7e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:43:51 2026 by rpki-client