Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
File: Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft (raw, json)
Hash identifier: 95IOtwUGaTzTquZSFT4adFbFCw99/vaVl+LvE9gmqww=
Subject key identifier: ED:EC:EE:BD:B0:B5:65:94:EA:B0:C3:99:3A:BC:4C:DA:B6:B6:89:18
Authority key identifier: 1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
Certificate issuer: /CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Certificate serial: 019D39AF2A4E4FB7E8433032F6BFEF4918E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
Manifest number: 0EBE
Signing time: Sun 29 Mar 2026 13:01:14 +0000
Manifest this update: Sun 29 Mar 2026 13:01:14 +0000
Manifest next update: Mon 30 Mar 2026 13:01:14 +0000
Files and hashes: 1: Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl (hash: rTaYVVi0gPtupYmioob6LN+KonFwlGpS9rrTPLB7rU4=)
2: m3UA_nkf1VwU3ag8qI5g5Qt-9tA.roa (hash: lDuAUkNMZFlM3dVZhNno1BqGdq4IWHifd59bAym6MAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:2a:4e:4f:b7:e8:43:30:32:f6:bf:ef:49:18:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Validity
Not Before: Mar 29 13:01:14 2026 GMT
Not After : Mar 30 13:01:14 2026 GMT
Subject: CN=edeceebdb0b56594eab0c3993abc4cdab6b68918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a5:34:12:e4:7b:3d:0e:8b:ed:7c:37:7f:ef:
b0:7c:2d:bd:99:37:84:b7:84:24:cf:fb:38:49:69:
73:9b:60:48:a4:b2:ab:de:bd:70:e1:23:24:45:17:
77:ef:19:1d:61:d1:02:ad:ba:ff:ec:11:08:37:d8:
96:8b:28:21:ed:d9:88:6c:8a:1e:3f:31:e5:00:9b:
da:99:81:4a:0f:b4:bc:f0:54:7e:3b:22:9e:25:18:
9e:43:50:5f:4a:12:25:ac:90:ea:98:46:cf:c3:25:
59:78:a8:28:ff:a1:eb:7f:ab:78:96:f1:c4:0d:b4:
e8:84:9c:af:1a:46:10:9d:80:e3:88:ae:43:bf:74:
b5:c0:4d:17:ef:4c:32:f8:76:a0:cc:79:07:d8:e6:
d8:6c:a7:15:81:db:02:bf:f0:5c:37:c0:c7:87:a5:
68:6d:5b:a9:6d:08:93:06:b1:89:3c:76:09:56:3e:
7c:f1:44:e7:c6:34:d9:1f:ef:72:05:c0:da:eb:73:
36:b6:cd:e9:17:2c:2c:c7:11:1a:a8:94:f7:93:e5:
e8:1e:54:71:ab:e9:84:3c:c3:7a:c3:00:3e:ad:ed:
6a:28:73:57:80:1e:17:18:60:1d:90:64:3c:65:0c:
bd:62:2a:84:d4:42:ac:8b:10:26:6f:43:d0:3d:1c:
87:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:EC:EE:BD:B0:B5:65:94:EA:B0:C3:99:3A:BC:4C:DA:B6:B6:89:18
X509v3 Authority Key Identifier:
keyid:1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:22:93:1c:eb:7d:ab:00:1d:f9:7b:59:7b:14:05:55:42:09:
6f:3f:bb:51:65:c8:bd:36:a3:b9:a9:94:bb:af:41:92:f1:c4:
91:ae:ce:f3:2c:40:fb:6e:5a:3d:bc:cd:f0:04:73:2d:ad:b7:
2f:33:80:4d:82:35:3c:c5:d2:e4:26:cc:4d:82:d4:cb:87:56:
a0:a7:7d:87:77:e5:72:50:38:89:8b:72:44:33:a1:e1:c0:52:
ca:8d:5a:94:cf:d3:75:69:1e:2c:3c:1a:83:3a:78:24:01:6a:
f2:f8:b6:d0:e2:44:8a:df:d5:6c:85:47:1e:71:60:5c:0f:4e:
26:17:8d:92:0c:ec:5c:c1:c4:5b:a8:b9:84:a3:4d:87:13:2d:
8f:0f:97:88:de:e3:de:94:65:95:79:3e:d8:31:ea:32:2b:08:
99:dc:78:e7:c5:20:25:4e:4f:4f:c4:53:36:8d:f4:31:c9:94:
bd:01:fa:6e:49:2d:ee:a2:8f:d3:f3:0f:f2:17:05:24:a2:ec:
61:cf:89:58:22:45:c9:50:eb:b8:07:83:18:99:af:b7:6e:f1:
72:e1:8b:e8:44:3e:c5:b7:4e:28:72:43:15:f3:64:1e:0f:83:
ef:2a:a0:9a:08:59:f5:fd:68:be:d7:bb:95:94:85:db:2c:b1:
00:46:d5:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rypOT7foQzAy9r/vSRjgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNDdlMmJmMzk3NDcyMWVhZmJmYjhjMzFmYzUyNzMwMzlk
NTA1ZjMwHhcNMjYwMzI5MTMwMTE0WhcNMjYwMzMwMTMwMTE0WjAzMTEwLwYDVQQD
EyhlZGVjZWViZGIwYjU2NTk0ZWFiMGMzOTkzYWJjNGNkYWI2YjY4OTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16U0EuR7PQ6L7Xw3f++wfC29mTeE
t4Qkz/s4SWlzm2BIpLKr3r1w4SMkRRd37xkdYdECrbr/7BEIN9iWiygh7dmIbIoe
PzHlAJvamYFKD7S88FR+OyKeJRieQ1BfShIlrJDqmEbPwyVZeKgo/6Hrf6t4lvHE
DbTohJyvGkYQnYDjiK5Dv3S1wE0X70wy+HagzHkH2ObYbKcVgdsCv/BcN8DHh6Vo
bVupbQiTBrGJPHYJVj588UTnxjTZH+9yBcDa63M2ts3pFywsxxEaqJT3k+XoHlRx
q+mEPMN6wwA+re1qKHNXgB4XGGAdkGQ8ZQy9YiqE1EKsixAmb0PQPRyHPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO3s7r2wtWWU6rDDmTq8TNq2tokYMB8GA1UdIwQY
MBaAFB5H4r85dHIer7+4wx/FJzA51QXzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9hZmExMDYtNmFmOC00MzEwLWI0ZDQt
ZTM2OWQ2NjAyZTZmLzEvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9hZmExMDYtNmFmOC00MzEwLWI0ZDQtZTM2OWQ2NjAyZTZm
LzEvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAayKTHOt9
qwAd+XtZexQFVUIJbz+7UWXIvTajuamUu69BkvHEka7O8yxA+25aPbzN8ARzLa23
LzOATYI1PMXS5CbMTYLUy4dWoKd9h3flclA4iYtyRDOh4cBSyo1alM/TdWkeLDwa
gzp4JAFq8vi20OJEit/VbIVHHnFgXA9OJheNkgzsXMHEW6i5hKNNhxMtjw+XiN7j
3pRllXk+2DHqMisImdx458UgJU5PT8RTNo30McmUvQH6bkkt7qKP0/MP8hcFJKLs
Yc+JWCJFyVDruAeDGJmvt27xcuGL6EQ+xbdOKHJDFfNkHg+D7yqgmghZ9f1ovte7
lZSF2yyxAEbV5A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:44:50 2026 by rpki-client