Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json)
Hash identifier: aLuiYc28TdJk+uHUsa3Tw/QY/d19nmkvYG1OGv2A+e4=
Subject key identifier: B7:2E:41:16:89:E5:86:07:CE:E7:02:89:0C:79:33:9B:F8:95:0A:D0
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 019D382E6354864397A03C8D2303B36BA35B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
Manifest number: 13FA
Signing time: Sun 29 Mar 2026 06:00:57 +0000
Manifest this update: Sun 29 Mar 2026 06:00:57 +0000
Manifest next update: Mon 30 Mar 2026 06:00:57 +0000
Files and hashes: 1: IprTwL4Amh5zz4RcQ4eoiHW37Ks.roa (hash: dBtfOnRmy0XmcWX3EB1msTLJV31TMXHtHpcj07KafxY=)
2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: nWv85djPdKIi0c9sVZWKoHmvAc9xbnFCQCUnuYP0zRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:63:54:86:43:97:a0:3c:8d:23:03:b3:6b:a3:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: Mar 29 06:00:57 2026 GMT
Not After : Mar 30 06:00:57 2026 GMT
Subject: CN=b72e411689e58607cee702890c79339bf8950ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:81:8e:7f:40:d8:0d:58:0f:ac:47:e3:43:
cc:fc:b4:e5:05:9b:2f:54:47:ef:d7:07:24:69:39:
8f:2a:4d:43:f0:ee:ed:5a:fc:18:98:cf:a6:cc:d6:
e6:1f:d3:3e:ea:a6:5d:c9:e6:88:76:ba:98:99:74:
0f:11:79:c2:c5:13:09:37:8c:17:50:db:9d:6e:20:
cb:c8:72:33:73:da:40:e3:7a:4b:38:de:38:5f:b8:
9a:ea:fc:8e:03:ea:b1:1d:e2:15:02:69:8f:49:d7:
af:d1:35:55:7c:e6:6b:5e:ac:f2:75:36:11:cf:28:
9e:35:2b:50:97:cb:d3:bc:cd:67:a4:20:e0:11:25:
f4:06:82:2b:2a:66:b6:9b:90:4c:ac:16:7f:b9:12:
a3:f8:52:59:b0:9b:d5:01:8a:45:e0:54:6b:c9:50:
b5:95:e4:6e:85:f2:66:68:cf:51:5c:c2:d4:6e:5a:
94:86:42:2b:63:6a:1e:ff:70:d8:15:d2:82:17:71:
f9:1b:6b:42:15:16:1c:ba:0d:4a:b7:7a:21:69:05:
57:ac:a0:aa:3c:75:4b:c5:2c:00:51:6c:df:75:69:
f5:00:51:04:da:63:40:c6:b6:00:df:09:bd:83:a3:
cf:03:09:7c:cf:2e:4f:1a:89:74:12:77:88:2b:84:
63:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2E:41:16:89:E5:86:07:CE:E7:02:89:0C:79:33:9B:F8:95:0A:D0
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:93:51:38:59:e1:76:aa:6d:09:0f:c8:15:80:27:4e:02:2b:
9d:ee:aa:2c:eb:92:8a:aa:20:92:3f:0b:95:a2:06:0b:9f:17:
1a:ff:c9:1e:7d:07:17:52:bb:69:30:1c:70:5c:50:3b:98:be:
a1:eb:07:59:a6:50:ff:31:a2:e0:47:d9:b7:ec:f3:21:71:f7:
20:b2:06:23:51:b8:9e:42:af:97:e7:09:81:c3:00:ec:51:33:
5e:2a:f4:d6:d2:45:2a:b8:d2:f9:2e:27:92:dc:b4:cc:a4:a8:
40:b8:a0:d8:e2:7f:8f:6a:96:51:bd:92:97:d0:37:3f:9f:23:
91:48:eb:13:56:80:ff:21:f7:66:70:2e:00:e3:02:d5:92:a3:
41:24:7f:b9:34:2f:fe:68:b3:c1:89:a4:20:51:d8:b7:51:aa:
4b:16:c1:5c:83:b3:d0:4b:b3:e4:42:a1:11:50:db:a1:fe:bc:
2a:6d:b7:e8:99:11:a8:95:6d:c1:00:24:45:7f:48:f1:12:88:
6f:64:f7:36:a2:e9:d0:29:3b:9c:c7:7e:be:55:1f:76:88:2b:
fd:7b:d1:51:7f:a3:ea:2e:2b:19:2c:f2:d1:fe:76:8d:ba:63:
8f:09:aa:ad:b8:0b:b6:55:13:c0:92:0d:ff:7e:0d:b9:19:08:
31:5f:fb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:43:21 2026 by rpki-client