Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
File: HzPIww-60mD0qd98O1IGahp7TtU.mft (raw, json)
Hash identifier: Z/kJPjjhmeLbybXD3sc1I0nNBHoxkAGhU4gYT1IdG7Q=
Subject key identifier: 57:00:21:59:93:D8:48:39:AD:8C:D1:6E:E4:87:7C:DC:F4:48:33:91
Authority key identifier: 1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
Certificate issuer: /CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Certificate serial: 019D394133C1265DB96B3FA59EAEF0B55F0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
Manifest number: 024E
Signing time: Sun 29 Mar 2026 11:01:07 +0000
Manifest this update: Sun 29 Mar 2026 11:01:07 +0000
Manifest next update: Mon 30 Mar 2026 11:01:07 +0000
Files and hashes: 1: HzPIww-60mD0qd98O1IGahp7TtU.crl (hash: WapyWvIjamFP4Bk3teU3pNbqVM5I9ZWQgfaf8uf/JjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:33:c1:26:5d:b9:6b:3f:a5:9e:ae:f0:b5:5f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Validity
Not Before: Mar 29 11:01:07 2026 GMT
Not After : Mar 30 11:01:07 2026 GMT
Subject: CN=5700215993d84839ad8cd16ee4877cdcf4483391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:53:cb:16:99:22:4e:d2:50:d3:43:7c:e7:f9:
57:03:04:77:1c:34:0c:a2:48:bf:75:9f:ef:da:80:
e9:35:66:0a:f0:c0:6e:2a:e5:a9:c3:76:ff:30:4a:
f0:30:e1:66:5d:10:64:f3:35:a4:b6:d9:83:19:95:
88:f6:45:78:7f:98:32:5a:aa:3f:11:b2:da:16:9b:
84:60:d8:dd:9e:f1:66:a6:94:fd:2a:27:84:8c:26:
7c:f3:82:db:b5:ea:d5:e5:e0:41:1a:47:96:45:c5:
d1:70:e9:d2:c6:21:be:d8:d0:c8:3c:d6:8d:74:11:
e2:d7:b1:1c:9f:53:0c:c9:2f:d4:1b:fc:14:e8:e8:
d4:58:43:a3:e4:8b:77:5c:b0:19:66:52:ef:3a:e1:
c5:cf:d4:57:3a:97:e9:ca:0a:fc:27:c8:dd:c6:e8:
db:fe:9d:ee:60:ca:d9:2a:e1:fc:1b:4f:26:ef:74:
d4:d5:f0:eb:0b:8a:7c:25:3e:cb:fc:e7:09:29:7c:
ab:84:fa:a7:9a:2a:6a:2b:3f:75:b2:67:c5:e5:b5:
7e:2b:bd:73:be:9c:78:14:e0:9a:80:bc:19:8f:2e:
87:55:72:36:e4:af:a5:5e:2b:68:06:b9:4a:48:ce:
a5:0c:cf:3a:93:66:5a:9a:6a:62:56:7a:99:ca:fe:
e0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:00:21:59:93:D8:48:39:AD:8C:D1:6E:E4:87:7C:DC:F4:48:33:91
X509v3 Authority Key Identifier:
keyid:1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:3f:3c:55:83:e1:cd:68:2c:9b:4e:4d:65:fd:76:b7:c1:80:
27:94:72:78:a5:66:bd:e3:19:fc:e7:c5:a7:3b:fb:01:4a:d2:
60:6e:de:a9:b5:eb:8b:ef:19:fc:26:93:32:eb:be:4a:03:5a:
cc:8a:27:3f:10:7a:45:5d:cb:7d:bc:80:83:c0:83:d3:30:e9:
51:ee:1e:0c:80:ff:d7:a3:cd:b9:dc:61:d5:90:b2:20:26:e2:
a7:9d:cd:7a:36:be:9a:97:f4:36:6e:e4:01:2d:db:db:44:f6:
a3:a0:4c:99:49:b2:7c:df:7c:88:a2:2e:3a:56:4d:3f:c1:5b:
cf:fb:bc:a3:6a:45:52:5d:09:8b:ba:f4:c1:a2:f4:be:15:f0:
60:fb:b5:d9:60:ce:1f:68:d2:e1:ae:3e:36:73:2f:5e:79:3e:
90:be:65:84:f2:93:58:84:68:29:b7:f5:16:d6:db:ef:19:94:
87:65:24:98:11:c8:9a:06:7d:4a:8f:16:f1:35:73:4f:62:ce:
d5:1e:8c:f6:59:96:e1:01:be:e6:fa:ae:e5:87:b3:c4:39:ce:
74:bb:ed:a7:be:f7:f4:e5:9e:ad:3c:1c:c7:b2:77:ff:9d:97:
87:92:e7:4d:7b:35:54:ef:e0:de:a9:7d:86:b1:28:25:57:d8:
66:55:cf:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:15 2026 by rpki-client