Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
File: hnkOzbhqxvqivMfusg0nTPpGULA.mft (raw, json)
Hash identifier: kPZiSOYG6ti9TB7rqxsTg4mG1QNG1N8wqBZiRPurHXU=
Subject key identifier: CF:29:6D:C7:FD:7E:2E:DF:36:42:55:46:F9:B3:0F:4C:9A:A1:98:71
Authority key identifier: 86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0
Certificate issuer: /CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0
Certificate serial: 019D39413C245D78CDBE48B74A9003DCD8B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
Manifest number: 0269
Signing time: Sun 29 Mar 2026 11:01:09 +0000
Manifest this update: Sun 29 Mar 2026 11:01:09 +0000
Manifest next update: Mon 30 Mar 2026 11:01:09 +0000
Files and hashes: 1: 2dAucBc06xa-RSOd-82T94ffkQs.roa (hash: qBoTXVzjJUJQzxt6M9jxa+Sec2XF+7kt7/vpuSj2zhw=)
2: hnkOzbhqxvqivMfusg0nTPpGULA.crl (hash: O5ikkHqxnWx6Pp3R9Ws9VXtSe25O1Gu5FdnpMqKbnhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:3c:24:5d:78:cd:be:48:b7:4a:90:03:dc:d8:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0
Validity
Not Before: Mar 29 11:01:09 2026 GMT
Not After : Mar 30 11:01:09 2026 GMT
Subject: CN=cf296dc7fd7e2edf36425546f9b30f4c9aa19871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:01:fb:87:2d:99:0e:a2:f9:63:af:7b:c5:b6:
7e:44:b6:81:93:ec:fe:84:85:2c:1c:86:5d:46:08:
f1:36:3a:88:e3:9d:b2:79:0c:28:ce:55:83:f8:f0:
c8:33:53:38:d2:b1:27:1a:8c:60:97:15:a2:a0:d2:
80:88:02:72:84:c0:e2:82:12:a1:bd:fb:0d:dc:83:
90:1d:7d:1b:d8:08:cd:b2:1b:19:63:ab:6f:5b:f6:
ef:f4:cf:8b:ab:cd:4c:30:fc:46:77:6f:8f:68:92:
cd:0e:72:f4:4c:8c:b8:e6:a3:2b:e7:06:9b:78:f2:
2e:4b:d2:f1:bc:20:7d:3b:75:bb:d9:dc:95:5b:55:
ac:7d:58:e4:46:39:18:bf:0b:95:23:1b:68:7e:a1:
64:76:21:08:15:7c:ec:0b:3f:22:e3:d6:11:57:71:
d5:f1:64:63:ab:c8:24:0f:09:a0:db:37:12:12:e2:
ab:34:55:10:a1:58:bb:ad:81:df:7f:d6:e2:81:0b:
dd:f0:d4:70:53:53:e5:4e:03:c5:a8:cc:59:4f:4d:
f7:d5:5d:08:5e:e6:15:ef:42:af:5d:55:56:cb:99:
e7:66:07:4b:93:0b:47:0f:e2:02:b1:67:10:cd:7c:
18:a0:70:75:05:ec:1f:dc:12:56:f5:b1:b3:be:3f:
d0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:29:6D:C7:FD:7E:2E:DF:36:42:55:46:F9:B3:0F:4C:9A:A1:98:71
X509v3 Authority Key Identifier:
keyid:86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9e:9b:81:c4:9a:cd:f6:1b:45:d9:90:6a:bf:b1:a4:df:fb:
40:a1:a1:03:14:bb:9c:70:89:a9:97:c9:2c:70:35:70:1a:d8:
38:cc:22:f5:be:cf:59:ab:7b:f1:6d:44:a5:3f:d5:05:af:70:
fd:59:54:18:5b:28:79:63:7d:32:68:41:20:db:fb:ae:48:00:
43:d8:18:f4:04:c5:b3:c7:ef:e8:c5:bf:7a:52:6d:93:d8:f7:
13:a6:22:88:13:a7:17:94:f5:4a:1d:13:57:3f:4a:de:55:4c:
39:34:69:e0:09:4c:6e:e1:f6:8c:20:2b:33:53:df:28:0f:5c:
9a:cb:6e:6e:ba:50:02:ff:54:99:de:3e:a4:62:d1:b3:6d:a4:
3d:3f:f2:be:1e:0e:d2:1a:4d:e5:52:81:a0:3a:87:ed:a4:5a:
7b:22:e7:d1:0e:4f:72:4a:69:1a:d1:dc:60:e8:a6:77:5f:aa:
13:81:92:85:5a:ab:1b:e7:85:2e:db:15:76:69:fa:7f:cd:ee:
aa:00:26:73:86:3c:cb:97:b4:e1:db:f6:fe:9f:75:9e:7f:2b:
d9:d0:0c:e1:0b:d3:52:9e:64:6b:0c:83:91:6a:e5:2a:61:75:
2b:10:8f:f9:91:b4:fd:fa:de:4b:9e:f9:d6:c0:25:4a:e1:09:
d1:ec:35:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:15 2026 by rpki-client