Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft
File: HrZXoNY0lwORdiUQFPahX-I8t1w.mft (raw, json)
Hash identifier: ftWEIRg6YQ0s78i7B7ZIM9ZBSa3KRq0ydLl+iGzcoz4=
Subject key identifier: 20:2A:FA:5B:2B:80:6E:53:1B:31:4F:D2:67:10:B6:39:EF:9D:ED:AF
Authority key identifier: 1E:B6:57:A0:D6:34:97:03:91:76:25:10:14:F6:A1:5F:E2:3C:B7:5C
Certificate issuer: /CN=1eb657a0d63497039176251014f6a15fe23cb75c
Certificate serial: 019D38D2DE434D196D72DA54879858A22196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrZXoNY0lwORdiUQFPahX-I8t1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft
Manifest number: F0
Signing time: Sun 29 Mar 2026 09:00:36 +0000
Manifest this update: Sun 29 Mar 2026 09:00:36 +0000
Manifest next update: Mon 30 Mar 2026 09:00:36 +0000
Files and hashes: 1: 3Ct6TkUE2gBFPtDFBHYIYOTGlpw.roa (hash: hacarGD+istChd7yJvqpW0vSFQX9AY4Tmu/s0YEY6RE=)
2: HrZXoNY0lwORdiUQFPahX-I8t1w.crl (hash: lfeX1bQ3/Xxh1hYwZ9rrORiUCjyE43TvnT5q0iMewSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/HrZXoNY0lwORdiUQFPahX-I8t1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:de:43:4d:19:6d:72:da:54:87:98:58:a2:21:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eb657a0d63497039176251014f6a15fe23cb75c
Validity
Not Before: Mar 29 09:00:36 2026 GMT
Not After : Mar 30 09:00:36 2026 GMT
Subject: CN=202afa5b2b806e531b314fd26710b639ef9dedaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bb:1a:a9:f7:6e:aa:dd:1a:c5:e1:43:34:68:
87:c4:d3:95:20:46:f5:7f:0d:7e:d4:3e:2f:43:4a:
63:53:af:dc:b8:e5:27:2c:a4:1e:8b:c3:45:af:5c:
f4:1c:6a:a3:ac:ae:db:10:fa:bf:6a:e5:7b:c1:f2:
c7:fd:30:e5:9e:c4:a8:b2:cd:95:0c:f4:90:1c:ef:
af:0a:3c:2d:4d:33:4c:e4:2a:2a:d7:75:76:2d:d8:
b6:bc:29:83:53:c1:a5:c7:f9:60:b6:74:d7:d9:85:
64:93:a3:4a:25:a0:3a:ad:6c:4c:1f:18:db:a8:e6:
95:87:62:27:77:03:27:b8:d2:34:22:44:b4:5f:04:
6e:71:16:5f:30:8a:5e:5a:f3:80:d5:cc:7b:0c:47:
e8:b8:1e:78:9d:1a:9b:36:58:83:43:14:9a:c9:c4:
ab:e5:46:cc:2d:07:86:d6:99:6f:5b:f3:53:42:96:
67:ac:9e:75:e2:13:9a:50:3f:77:42:62:e6:0f:6c:
9c:aa:e1:91:48:83:bd:22:3e:9e:bf:78:81:f0:6c:
94:39:9e:a0:dd:73:9f:df:9b:cc:fb:d0:93:e0:b2:
99:73:69:f1:bc:82:ba:9f:d6:17:48:4d:58:a8:e5:
f8:70:a2:07:e2:2e:e4:22:31:6d:88:52:de:f8:9a:
e2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2A:FA:5B:2B:80:6E:53:1B:31:4F:D2:67:10:B6:39:EF:9D:ED:AF
X509v3 Authority Key Identifier:
keyid:1E:B6:57:A0:D6:34:97:03:91:76:25:10:14:F6:A1:5F:E2:3C:B7:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrZXoNY0lwORdiUQFPahX-I8t1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:95:ba:bc:cf:c8:c4:f0:92:21:3f:da:39:9f:fc:86:00:d5:
d0:65:3d:5d:34:dd:6c:f6:81:a5:59:bc:38:bd:32:a8:bb:b5:
fc:46:d0:bb:56:a0:8c:9b:63:00:c2:58:ab:ca:2f:b3:41:71:
ef:37:af:41:92:9c:df:de:1f:7e:a7:bb:26:af:85:c0:70:30:
d4:d4:d5:ae:c5:88:12:ea:20:9c:9c:c8:5d:5a:5e:88:d8:6a:
a3:fa:1d:0c:41:d2:52:5e:09:97:d2:dc:c9:06:df:b6:ce:3b:
a0:93:39:2b:e3:fa:26:f1:5f:50:8a:d6:f3:a7:67:ec:16:88:
b2:57:3f:a4:ee:81:f0:4b:58:9b:bd:63:46:5d:6e:48:bd:1b:
9f:98:03:ed:87:3d:13:8f:4d:3f:cd:bb:bc:c3:3f:79:d0:71:
83:e2:42:96:a5:b4:4e:71:32:64:65:81:7d:39:f5:a5:b9:8f:
26:fd:cc:a9:da:0a:f9:5a:8a:87:c9:e1:98:50:fe:78:50:6d:
64:8e:25:09:39:67:18:95:e7:3a:d1:6e:18:d5:43:6c:a9:19:
cb:a3:e0:90:f3:e4:2b:50:9a:0a:a7:67:b6:37:58:5a:d0:9a:
76:9c:d8:6c:19:d9:ae:5a:36:b0:ec:f0:1e:18:e6:9d:84:43:
35:22:9f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:50 2026 by rpki-client