Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
File: HGnHYzivyQhbj71mm4t0vXqS1DE.mft (raw, json)
Hash identifier: J9ezh08qY4mlQuAkHpDEyXppaEIaV5Db4gAejSn6yzY=
Subject key identifier: 6E:34:51:5D:95:3C:B1:15:93:14:EA:E3:94:4D:2E:4F:F5:62:94:FD
Authority key identifier: 1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31
Certificate issuer: /CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431
Certificate serial: 019D37F72E99C2D38E19B009E3B496E9418D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
Manifest number: 157C
Signing time: Sun 29 Mar 2026 05:00:39 +0000
Manifest this update: Sun 29 Mar 2026 05:00:39 +0000
Manifest next update: Mon 30 Mar 2026 05:00:39 +0000
Files and hashes: 1: HGnHYzivyQhbj71mm4t0vXqS1DE.crl (hash: ecRsRtxOYAvCsxdqQcfITalWCWNvst2zg4mT8Md5PVo=)
2: WAiJPERlMEAh5qrgyMMcndKbs6c.roa (hash: zfIldmOVBvuxzGlnGLqlwDlsMvOVa6R4F1tNInZRtk4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:2e:99:c2:d3:8e:19:b0:09:e3:b4:96:e9:41:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431
Validity
Not Before: Mar 29 05:00:39 2026 GMT
Not After : Mar 30 05:00:39 2026 GMT
Subject: CN=6e34515d953cb1159314eae3944d2e4ff56294fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b6:28:f4:fd:5c:4b:ef:3f:49:92:1a:c0:2b:
37:05:ff:8b:c3:db:01:ee:ae:00:96:04:c3:c9:c6:
9d:06:ac:46:d2:dc:e8:9c:e8:5f:e7:6e:a8:0b:4c:
70:e2:4c:0c:26:18:d6:d2:8b:da:db:9a:4f:e5:2f:
bf:68:a0:ba:84:6c:70:fe:8f:d0:7f:85:20:d5:f2:
41:d6:38:6c:60:5b:13:16:fb:d3:d5:3c:e9:9b:78:
f1:07:b5:ba:10:00:15:8b:6d:50:cf:18:4c:ed:f9:
23:fa:26:df:ac:9e:97:0f:64:47:80:16:89:64:5c:
38:e5:d3:59:81:28:f5:59:de:37:f3:f6:53:fd:6b:
42:d9:84:14:f2:2d:48:13:c8:75:49:e2:8f:c9:ee:
9d:9d:c2:56:2b:5a:b0:da:0f:41:dc:af:a0:86:93:
63:dc:74:5e:a3:93:02:40:f2:7d:15:90:fe:33:43:
b5:5c:29:16:2b:f1:6d:ef:57:fb:23:25:49:b8:fd:
e2:4f:1f:e8:38:a9:74:71:0a:b3:e5:27:a0:76:55:
c0:f9:24:77:8c:a3:27:90:10:90:f8:e8:b9:b3:bd:
7d:a4:88:66:70:a7:71:53:b8:cf:f2:74:34:e2:d5:
20:9c:b6:8c:b7:22:bb:90:3c:97:fb:5b:b4:28:1e:
0c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:34:51:5D:95:3C:B1:15:93:14:EA:E3:94:4D:2E:4F:F5:62:94:FD
X509v3 Authority Key Identifier:
keyid:1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:46:d5:91:5a:77:b3:bf:45:5d:30:61:7e:3c:ff:54:99:58:
b9:06:1c:5f:0a:4f:0a:4e:0f:f4:05:2e:a5:5c:cd:9d:d4:62:
0d:91:09:ec:30:8d:91:99:01:e7:7e:8a:65:21:dc:0c:a2:e7:
76:97:db:0e:26:61:68:1f:f3:ce:17:2c:c6:fd:c7:a4:db:e8:
6d:bb:60:de:ff:31:3e:33:f6:00:08:f8:85:3b:28:62:80:d7:
15:d5:e9:2d:e7:f4:db:3e:c4:4a:12:d5:aa:ab:fb:cf:b7:e5:
81:38:01:c7:8f:5b:86:8d:c8:f4:c8:bb:b9:9b:20:ab:10:22:
88:9e:dd:83:ec:59:85:fe:22:6e:73:74:14:75:62:63:f4:69:
c9:fa:6c:54:22:a3:c6:0a:c2:34:6a:dd:9a:0c:5d:b3:fc:b3:
18:da:6c:44:55:42:e2:76:d6:fa:4b:5a:47:8c:47:45:19:c8:
e1:d0:ab:7e:c4:27:93:9c:9d:ed:a1:be:29:11:75:d7:b0:2e:
c3:d1:6e:77:6b:ca:b4:be:98:30:90:53:4b:a8:d1:fb:60:31:
28:df:1f:c2:87:b6:96:76:d0:4a:26:cd:e3:33:84:4e:69:7e:
ed:62:d2:e0:c3:c1:38:ba:13:3a:b4:ef:da:eb:1e:8d:72:d4:
f7:18:b2:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039y6ZwtOOGbAJ47SW6UGNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjNjljNzYzMzhhZmM5MDg1YjhmYmQ2NjliOGI3NGJkN2E5
MmQ0MzEwHhcNMjYwMzI5MDUwMDM5WhcNMjYwMzMwMDUwMDM5WjAzMTEwLwYDVQQD
Eyg2ZTM0NTE1ZDk1M2NiMTE1OTMxNGVhZTM5NDRkMmU0ZmY1NjI5NGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7Yo9P1cS+8/SZIawCs3Bf+Lw9sB
7q4AlgTDycadBqxG0tzonOhf526oC0xw4kwMJhjW0ova25pP5S+/aKC6hGxw/o/Q
f4Ug1fJB1jhsYFsTFvvT1Tzpm3jxB7W6EAAVi21QzxhM7fkj+ibfrJ6XD2RHgBaJ
ZFw45dNZgSj1Wd438/ZT/WtC2YQU8i1IE8h1SeKPye6dncJWK1qw2g9B3K+ghpNj
3HReo5MCQPJ9FZD+M0O1XCkWK/Ft71f7IyVJuP3iTx/oOKl0cQqz5SegdlXA+SR3
jKMnkBCQ+Oi5s719pIhmcKdxU7jP8nQ04tUgnLaMtyK7kDyX+1u0KB4MDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG40UV2VPLEVkxTq45RNLk/1YpT9MB8GA1UdIwQY
MBaAFBxpx2M4r8kIW4+9ZpuLdL16ktQxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9hMjA4OGItYTEyNi00YmE2LTg3MWMt
NTc1OWI0MjdmNGQxLzEvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi9hMjA4OGItYTEyNi00YmE2LTg3MWMtNTc1OWI0MjdmNGQx
LzEvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW0bVkVp3
s79FXTBhfjz/VJlYuQYcXwpPCk4P9AUupVzNndRiDZEJ7DCNkZkB536KZSHcDKLn
dpfbDiZhaB/zzhcsxv3HpNvobbtg3v8xPjP2AAj4hTsoYoDXFdXpLef02z7EShLV
qqv7z7flgTgBx49bho3I9Mi7uZsgqxAiiJ7dg+xZhf4ibnN0FHViY/RpyfpsVCKj
xgrCNGrdmgxds/yzGNpsRFVC4nbW+ktaR4xHRRnI4dCrfsQnk5yd7aG+KRF117Au
w9Fud2vKtL6YMJBTS6jR+2AxKN8fwoe2lnbQSibN4zOETml+7WLS4MPBOLoTOrTv
2usejXLU9xiyqg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:55:23 2026 by rpki-client