Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json)
Hash identifier: C7ZPCwsIEjDFAokOx97VwRR4EQx1pnkLrEXnNVFPb64=
Subject key identifier: A9:DA:F8:8B:60:1A:BE:3F:BD:78:C1:95:A5:C9:0C:62:83:AC:D9:8E
Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Certificate serial: 019D382DE66031FE06F47BE0574C26D112DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
Manifest number: 1167
Signing time: Sun 29 Mar 2026 06:00:25 +0000
Manifest this update: Sun 29 Mar 2026 06:00:25 +0000
Manifest next update: Mon 30 Mar 2026 06:00:25 +0000
Files and hashes: 1: emrBWHMDQOVwYTsWct2B_yzAGwE.roa (hash: WQ3P9C8Hq6K845EddQOdbb1eJKe9f8hodDUHV6czfZw=)
2: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: U/8+oFtG5Vn9HTZYjeBZJFqfslr1FGrHURNq+eAAYvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:e6:60:31:fe:06:f4:7b:e0:57:4c:26:d1:12:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Validity
Not Before: Mar 29 06:00:25 2026 GMT
Not After : Mar 30 06:00:25 2026 GMT
Subject: CN=a9daf88b601abe3fbd78c195a5c90c6283acd98e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:40:58:87:55:fe:06:e8:53:79:4f:b1:6c:38:
f3:dc:9a:b3:7a:96:75:83:90:5d:7b:e1:3d:9f:fc:
dd:de:6f:8a:51:5c:22:4c:d4:5c:a0:6b:ac:09:fc:
54:b3:e4:e0:0f:a6:e7:b3:17:a2:eb:18:75:76:58:
7f:ff:af:22:2a:6f:7c:50:b6:c4:50:8e:59:c6:56:
8c:6f:63:cf:c1:40:5b:6f:a6:a0:65:03:c0:11:45:
77:bb:0c:f4:a9:d4:ef:db:2d:e0:d8:44:76:a0:87:
6e:8e:ba:34:fa:f8:77:dc:ad:90:d3:e5:2c:18:c5:
7d:d9:0b:95:49:e9:a4:a3:a5:1a:ff:1e:67:12:e3:
80:42:9d:4b:95:96:c4:c4:d8:00:d3:ca:19:7f:36:
06:4f:0e:d5:3f:07:ef:80:d2:dd:9b:e0:ff:52:2e:
54:dc:c6:5c:2d:29:d8:e9:87:79:0c:89:73:d9:39:
d2:44:ca:c4:0c:04:5d:1d:4a:27:f7:eb:3f:ba:85:
76:cd:ba:d8:90:8a:d6:4f:8b:61:77:58:76:53:72:
cb:3b:4b:a4:91:82:7e:7d:78:c8:f1:73:b7:d3:ef:
8d:26:d4:22:1f:96:69:34:11:30:25:d4:6f:dd:37:
24:58:b3:0c:bf:28:46:f5:90:7e:59:78:28:56:9f:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:DA:F8:8B:60:1A:BE:3F:BD:78:C1:95:A5:C9:0C:62:83:AC:D9:8E
X509v3 Authority Key Identifier:
keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:d5:f7:02:22:69:a0:f8:5b:aa:55:8b:f8:dd:c1:1c:aa:fb:
3f:64:dc:16:18:de:e7:1b:ae:a8:73:29:f7:94:73:9e:2a:7e:
3f:7f:da:47:e3:0e:00:71:e3:ad:e3:8b:65:33:b5:89:cb:6d:
d4:b0:f4:90:0a:8e:26:9f:20:9c:0e:77:23:19:5e:12:9b:33:
d4:db:ce:1a:f9:82:e3:42:c3:d2:a4:c9:5f:ce:73:ea:35:56:
24:b8:b4:19:1e:3d:be:96:61:86:71:e3:21:9a:33:4d:f6:57:
38:1d:65:0e:26:bc:b6:2b:b8:fd:e5:f0:a8:bc:e6:2f:85:30:
26:4c:37:4f:0b:d1:2e:fe:44:e8:74:55:7c:57:b1:f2:38:00:
1a:fa:26:c9:c7:b6:42:84:65:0e:ac:5f:e5:b6:54:0f:7c:90:
4c:86:0b:1b:4f:ed:f1:ff:0c:92:f6:02:76:4e:8f:04:31:ca:
78:63:00:7f:50:5e:8b:15:87:6f:95:94:a5:34:54:68:74:4a:
75:4f:c5:b3:1f:7d:d2:45:f2:19:19:07:38:52:eb:c2:03:b5:
29:de:07:cf:8a:6b:6b:ea:2c:25:00:25:34:6e:b2:49:76:e4:
b9:79:8a:92:b3:da:82:c7:ce:5d:75:c2:9b:b8:1f:43:06:6e:
68:8a:da:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:38 2026 by rpki-client