Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
File: HpUuiDc295y9nFZHBL88NmIbjso.mft (raw, json)
Hash identifier: FKLpspaXQKvgmm5J11+WUPspsVjnq4po3jsYOJcsfck=
Subject key identifier: 48:50:13:6D:1C:83:ED:25:EE:6B:03:5C:36:27:69:40:6C:F5:D4:9A
Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Certificate serial: 019D38D29C1401A6DCFF36A40FDD440DD787
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
Manifest number: 1894
Signing time: Sun 29 Mar 2026 09:00:19 +0000
Manifest this update: Sun 29 Mar 2026 09:00:19 +0000
Manifest next update: Mon 30 Mar 2026 09:00:19 +0000
Files and hashes: 1: 1cwCMtAIvTWCxyP_Iez-RNBZ-5I.roa (hash: DIWs3NXNIaM1l1Z4VPA1y0AbQE6IAqLDJXzdXYBdRAU=)
2: HpUuiDc295y9nFZHBL88NmIbjso.crl (hash: L9QaOl6ZY1oQtE+jwDAAicETbEDN35D3gp1xy3WdsKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:9c:14:01:a6:dc:ff:36:a4:0f:dd:44:0d:d7:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Validity
Not Before: Mar 29 09:00:19 2026 GMT
Not After : Mar 30 09:00:19 2026 GMT
Subject: CN=4850136d1c83ed25ee6b035c362769406cf5d49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a8:22:05:c1:ec:37:61:3a:e5:6c:4c:8d:87:
33:8a:1b:71:d3:ac:32:fd:83:2d:37:73:3c:af:d9:
d9:6d:91:2f:af:1e:4b:1c:82:60:54:9d:17:45:81:
e8:96:67:2b:4f:95:1d:bd:f7:28:ce:a9:ce:23:19:
03:07:4c:22:52:5a:f7:a9:c3:cd:9c:0e:8b:7e:51:
94:70:5e:38:db:38:0d:45:5a:31:ee:0b:c6:5b:73:
21:90:6e:19:00:14:3e:96:f4:4e:03:88:96:eb:f7:
b7:ba:e6:ff:ac:7c:8b:a5:cc:bc:f2:c5:4a:e7:ca:
ee:99:c1:5a:d5:39:86:a0:7d:0f:e0:5e:30:ae:62:
46:c1:2a:72:a5:c2:48:0b:96:a1:12:48:54:a1:e1:
9b:4e:f4:e9:11:b5:dd:bb:64:dc:b1:08:b7:ad:39:
df:87:46:e2:a2:5a:b2:c3:51:27:13:7d:9c:f3:09:
d9:f8:d2:84:35:86:6f:71:a5:b2:ce:a0:5f:a1:d5:
99:38:06:d2:13:c7:d2:b0:72:49:20:f6:96:63:4b:
95:e3:69:70:35:43:6e:a0:26:18:7f:13:6e:0b:7f:
88:19:92:5b:ee:b2:5b:71:7b:54:f4:47:bb:14:2c:
b8:6e:96:c7:56:72:5a:ad:20:be:27:81:21:16:95:
11:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:50:13:6D:1C:83:ED:25:EE:6B:03:5C:36:27:69:40:6C:F5:D4:9A
X509v3 Authority Key Identifier:
keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:58:8f:a1:21:4e:96:6c:a7:75:7a:84:b1:10:ce:23:88:a8:
ea:d8:fe:91:36:c9:0a:93:29:a1:71:3b:ac:cd:5b:ff:b4:dd:
68:8b:b9:1a:ce:c6:85:15:55:fc:65:07:7a:10:09:e0:8e:bc:
dd:84:a8:f3:c1:98:23:70:66:31:74:c7:ff:de:81:1b:5a:6b:
65:fd:98:10:46:22:e1:3c:21:ca:b6:22:5a:4a:b9:de:a1:40:
a9:27:06:54:8c:6b:9e:c3:58:40:31:4b:70:0b:51:ef:68:b9:
40:24:58:68:e6:77:ce:43:f1:8b:81:9d:9d:f0:c4:52:dd:87:
90:21:c2:2d:8c:be:43:aa:10:89:bd:48:4a:fe:8d:b9:85:09:
02:b6:47:4f:dd:e4:0a:15:bc:30:95:71:84:c3:04:56:52:84:
10:79:42:cd:9b:26:1c:48:38:9b:00:21:d8:4b:4c:52:0b:ec:
b4:79:b3:77:74:ba:fb:a6:fa:bc:78:5b:49:87:31:c8:81:d7:
53:8d:2c:6c:d8:84:c9:ae:ed:2c:e2:8d:4c:77:f8:0d:61:19:
ea:56:a1:2c:15:fc:6d:c7:66:d6:52:f1:f8:a7:42:d4:c8:2b:
0c:69:08:3d:3b:71:0f:60:99:64:4c:26:fd:98:c1:50:12:32:
b3:aa:ab:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:54 2026 by rpki-client