Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
File: HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft (raw, json)
Hash identifier: Fddie07Tzw8z0Obx03HnbjmlRzzGS1Y+cNbWeLRU7kc=
Subject key identifier: 33:F6:ED:E7:B9:8E:37:D5:52:50:89:E3:E7:33:71:E5:3C:55:D5:6E
Authority key identifier: 1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
Certificate issuer: /CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Certificate serial: 019D37F77A2AC0571789872C6EE9836FAC64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
Manifest number: 0F85
Signing time: Sun 29 Mar 2026 05:00:58 +0000
Manifest this update: Sun 29 Mar 2026 05:00:58 +0000
Manifest next update: Mon 30 Mar 2026 05:00:58 +0000
Files and hashes: 1: HJcs-w12XR1Oa3_7Fjrfjatz6Nk.roa (hash: N2c+1xmqIJ2oL3KdyPfmWmiUkJmY9BIkjqzElqkXBQ0=)
2: HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl (hash: tXbJSyoTAJIQi5MZZMnxThvXQKnHIZJLnszx36Dwnr4=)
3: xwRdqXvpZ1E4P0A6zAG37GCYRLg.asa (hash: 4iBkWP8qWume/2A2mXJkWl5EI5fYnKSC+vvo5StFXVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:7a:2a:c0:57:17:89:87:2c:6e:e9:83:6f:ac:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Validity
Not Before: Mar 29 05:00:58 2026 GMT
Not After : Mar 30 05:00:58 2026 GMT
Subject: CN=33f6ede7b98e37d5525089e3e73371e53c55d56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3b:15:f8:ac:b7:3e:bf:53:99:e1:b8:8f:14:
cb:d5:69:b9:8b:b2:b0:8d:9b:37:e4:0d:02:07:30:
e7:35:39:37:84:7e:3c:b6:f8:df:9e:41:89:3a:72:
25:56:3d:8c:9d:19:7b:93:c4:08:39:60:49:26:62:
3f:30:72:d2:4e:6d:76:19:89:83:3b:7a:9c:3a:8c:
9a:5d:32:ef:a2:ec:8f:30:79:35:b0:41:ad:0d:74:
6e:cb:32:97:08:df:28:b5:5b:c4:a6:a5:cb:ca:b7:
cc:eb:6d:03:7a:fd:30:0e:d9:e4:87:26:bc:63:4b:
e9:76:20:cf:cd:aa:7e:14:6b:5f:09:40:f1:33:e5:
0f:5f:9f:22:e4:5f:f2:a1:6d:90:bb:a1:77:14:62:
2f:93:d8:ee:bc:ae:75:ea:2e:1b:80:3c:bc:25:a7:
bb:af:9b:fe:5c:40:80:79:fa:d1:7d:38:84:36:fa:
27:69:a5:fc:c1:d9:7c:b4:94:f6:d4:2b:37:f9:5d:
8c:74:19:84:f3:66:13:ee:eb:0c:eb:0f:b7:a9:55:
ec:2d:98:52:8f:4f:17:d2:36:7e:e1:4f:aa:72:45:
90:3e:b2:8a:f9:26:1f:8b:2c:79:bf:fa:39:f8:6e:
27:f9:cf:ce:3a:3b:00:2e:7b:3e:37:6f:33:de:67:
8e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F6:ED:E7:B9:8E:37:D5:52:50:89:E3:E7:33:71:E5:3C:55:D5:6E
X509v3 Authority Key Identifier:
keyid:1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:7c:f7:bb:71:91:11:fe:57:f7:6a:13:63:a0:0d:6d:6a:44:
4e:77:53:6b:62:b1:fe:c5:83:b3:e3:0b:e8:5e:3e:0b:1b:a8:
98:ac:38:a1:1b:4c:37:1a:db:99:63:e5:73:43:66:2f:df:39:
a3:2e:0c:34:44:74:0a:e7:77:73:68:55:f3:09:42:cb:05:9b:
53:53:b2:be:2c:0f:77:57:d3:00:8a:2a:91:1a:be:f4:61:52:
56:20:a3:a7:45:15:04:4e:0f:2e:b8:4a:9b:36:36:94:e2:a3:
0e:55:1c:5e:e4:58:99:d4:10:3a:94:4e:2d:14:54:3d:16:8f:
ee:36:3c:31:6a:f2:c3:8c:92:c4:b5:01:13:1e:38:ad:35:90:
dc:77:e0:2d:79:74:e2:e0:bd:2d:d6:da:3d:38:15:4d:3b:f8:
ec:26:e4:ea:0d:97:43:da:f0:9a:13:7b:d8:ac:57:f7:71:a0:
eb:66:0d:99:d6:af:7b:63:10:54:ac:a0:38:8e:0b:6c:72:fb:
04:58:e7:d2:6a:2e:fd:f5:b2:22:fb:01:33:2e:e4:9c:74:63:
7e:7e:93:e4:06:e7:b1:ef:56:80:a5:14:35:4a:24:b5:e2:52:
e8:ce:42:76:9b:92:f3:ad:cb:cc:92:3a:b9:92:07:11:8c:6e:
ad:16:17:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:05 2026 by rpki-client