Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
File: HvpZajEmrOApxtcNUpJX4Hs4ugY.mft (raw, json)
Hash identifier: wA/69rUpoV3VI9WJFS5XhoEtsA/B74OH0CiF3yPUhyM=
Subject key identifier: 52:30:95:42:4A:22:C7:15:AA:4B:3C:DE:07:45:D6:D3:CC:2D:69:3D
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 019D205D7A13717C61E2BF95BBAE1343B834
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
Manifest number: 188B
Signing time: Tue 24 Mar 2026 15:01:30 +0000
Manifest this update: Tue 24 Mar 2026 15:01:30 +0000
Manifest next update: Wed 25 Mar 2026 15:01:30 +0000
Files and hashes: 1: 5bPAfHY71g1tz33WhyemzOl8Afo.roa (hash: TP978Gguy7Dyr8s78cghRC57XCgceUKU/R4E1xx5GXM=)
2: FrDGqtAlSdh4w6GnxdkzTd7bHd8.roa (hash: cZLJ2r1Doel5lpVBvhmnLBua06MQetotpEsjgD1nP28=)
3: HvpZajEmrOApxtcNUpJX4Hs4ugY.crl (hash: HJiPxD40RGdddQ1k1dq3ws+GBffyVO4NIOZwtPvrT2Y=)
4: Jgw1Gx1dPclOABYcbQJfITbOPSs.roa (hash: BIdjPDAk2zyiIML1uGPD7J7cytE8YqCkn/DCRcCwXHg=)
5: WmQL_VXpmFEvvoiR5PkxFDta9mk.roa (hash: 17mQDCBUS/Kj6BwRHUdOrAKzENyd7WfmRdfkyMXwsNg=)
6: k0uiX_PSGOLpmHbIawhjH3EL4VU.roa (hash: bIgcQVO40YbjY2beu9BGZjDPrIJm2Cv7wEtLZBhcVvU=)
7: oWfoIebl0vdlosgiWt_PqvTMCvI.roa (hash: sSMkZCHcY8051GIBXnABdJ427F125fjlpin/p+USqXE=)
8: u4N4FwbZU3R4YrPAif2Bhql7uXo.roa (hash: j1Aeh/ewSlpsUAcZ6gs1u3mvHVZZFBD8JqF3ICrH+Og=)
9: ukePksioR9rZ806d8URQYeRLONE.roa (hash: EXhlSdLPcjyLmaBcE0rpgx1b7yqNH2I+X3p7p/NtRc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 25 Mar 2026 15:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:20:5d:7a:13:71:7c:61:e2:bf:95:bb:ae:13:43:b8:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Mar 24 15:01:30 2026 GMT
Not After : Mar 25 15:01:30 2026 GMT
Subject: CN=523095424a22c715aa4b3cde0745d6d3cc2d693d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:10:39:9b:7c:39:b6:38:49:16:a7:75:4d:d3:
71:1e:b0:62:ce:bd:22:85:b0:b7:54:2c:b2:71:ef:
6c:82:ee:c3:51:43:0c:1d:be:f9:e3:71:1b:f5:1e:
f6:6c:b5:19:6b:cc:ed:a3:67:d0:c8:bf:d8:d3:6e:
c0:cb:f9:59:fb:fe:44:7a:74:2c:e1:63:ff:f5:a3:
74:d2:21:63:c8:a5:88:a2:e6:30:af:31:2b:b9:65:
da:bc:74:8b:3b:d4:62:90:a6:df:f4:a5:60:a8:8b:
a0:96:54:e4:f3:5b:9c:9e:fb:f5:79:9e:71:13:e1:
82:ea:29:2e:2a:ad:c5:4a:13:a1:1e:2f:77:31:d3:
0e:3e:72:2e:38:0e:7b:08:e6:2c:50:35:2c:15:40:
a0:67:ed:9e:18:b6:37:15:13:0a:47:46:0b:4c:4d:
cd:28:60:a9:d1:ce:b1:22:85:44:99:cb:87:4a:c6:
f2:60:3f:c6:d9:bd:31:b1:1a:52:2b:42:67:ca:c5:
a6:bf:1d:29:cc:c5:43:ce:b2:3d:e5:4e:e4:af:49:
63:d6:4b:24:8d:46:e1:92:ca:35:b3:51:6e:58:70:
74:29:35:b6:ed:e1:9d:bf:0c:a3:d4:2a:ce:48:2f:
30:c6:22:97:d9:44:f9:a4:fb:e2:01:12:79:bd:4c:
54:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:30:95:42:4A:22:C7:15:AA:4B:3C:DE:07:45:D6:D3:CC:2D:69:3D
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:e9:d8:77:10:3f:91:5b:5b:91:7d:3c:f0:91:96:4d:f7:16:
42:cc:41:2e:44:67:3c:04:a8:32:6d:c0:df:42:d5:d3:87:83:
59:9a:7d:f7:fa:24:bd:ed:36:4c:47:a4:03:f8:60:b7:70:85:
67:41:dc:82:d8:30:fa:f0:24:28:d3:ef:77:8b:8e:bb:94:d9:
22:4a:73:6a:d9:24:5b:6e:7a:23:09:ba:5a:83:6e:67:50:63:
0a:df:50:99:b8:d8:3f:c5:e6:4a:62:34:66:aa:70:c6:57:54:
b7:79:86:d8:c2:73:96:01:7e:70:9f:52:3b:98:83:49:31:3f:
15:5d:31:b9:66:ef:00:a5:05:cd:1b:94:5b:92:28:30:6e:ac:
c9:90:7e:81:77:0b:ee:81:7f:94:fa:de:18:8e:1b:62:7e:8c:
3f:f7:7a:aa:6a:6d:30:42:27:09:01:d1:f5:9b:a1:61:ce:0b:
58:00:5e:5e:16:b7:f8:2b:72:d0:b3:8a:ca:c4:d5:4a:b2:fd:
a4:30:ec:2f:f1:92:9c:3b:24:38:0c:f0:66:98:9e:d8:71:c6:
d1:71:79:c4:fb:82:d1:51:8e:ac:1d:57:c0:e0:53:47:51:b1:
0b:18:d8:1f:9b:ea:8b:4e:19:7d:92:40:a0:41:84:27:24:ba:
bf:ed:62:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 18:25:17 2026 by rpki-client