Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
File: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft (raw, json)
Hash identifier: S0/BV3iBjAck55jkQB5sYLvqr0fJuFwYd19enSyQdOE=
Subject key identifier: AB:FB:46:41:A5:90:C6:48:18:BF:7A:40:9C:4F:59:2E:B9:F5:E0:16
Authority key identifier: 86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
Certificate issuer: /CN=86c62c6962ea33029b480260989e1851c3252171
Certificate serial: 019D37C07FDA922B04E56AA4CC93661C69F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
Manifest number: 041F
Signing time: Sun 29 Mar 2026 04:00:55 +0000
Manifest this update: Sun 29 Mar 2026 04:00:55 +0000
Manifest next update: Mon 30 Mar 2026 04:00:55 +0000
Files and hashes: 1: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl (hash: 3l4FsoCCxau3FMpwB31wd9rBpT9X6hngOECisXfM5LA=)
2: wwU1S55C4yLYaQjdeeCtJMW97Ds.roa (hash: jlSPnAdZGybw8CZHpy8KeBi6D61DmXXCG5VqfHvBTME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:7f:da:92:2b:04:e5:6a:a4:cc:93:66:1c:69:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86c62c6962ea33029b480260989e1851c3252171
Validity
Not Before: Mar 29 04:00:55 2026 GMT
Not After : Mar 30 04:00:55 2026 GMT
Subject: CN=abfb4641a590c64818bf7a409c4f592eb9f5e016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:32:6a:34:6c:ee:76:05:4e:29:96:c2:53:
1f:e4:71:e0:e9:1d:c0:66:5e:ba:22:7f:db:c4:82:
3c:aa:45:9f:de:6c:43:cf:2d:f1:59:45:d5:56:e3:
1c:27:51:48:f3:9c:bc:ad:a2:25:47:2e:fc:7d:84:
d6:fb:d1:c3:69:21:24:11:88:cf:81:ea:79:e1:77:
2f:74:6b:ff:0a:73:88:e1:e3:0e:af:40:46:62:ab:
c7:f3:77:1c:4a:2b:81:f7:1c:19:76:31:14:b3:2f:
aa:3e:d4:07:b5:7c:d7:95:48:bf:47:26:b5:56:f5:
0d:bd:53:9f:d3:93:8a:e4:31:76:2f:fe:1a:33:9d:
b4:da:66:ac:2e:3e:76:d6:1f:65:a2:74:cf:4a:47:
36:a2:ab:7e:d6:35:7c:93:8f:54:d5:06:db:c1:27:
58:d1:e4:26:4c:94:d9:c4:21:10:59:74:3b:d0:f7:
12:af:72:87:8d:93:91:83:d4:18:de:bc:91:22:5f:
db:19:92:73:50:31:5a:49:cc:28:a5:84:4c:d4:67:
1b:33:2a:10:cf:f1:f7:1c:de:d9:84:5d:cd:ae:50:
0e:3a:47:ed:55:9d:16:6a:95:f3:10:98:12:42:1b:
76:ec:50:9a:9d:90:5d:cc:8d:25:e2:ea:c8:76:fa:
4b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FB:46:41:A5:90:C6:48:18:BF:7A:40:9C:4F:59:2E:B9:F5:E0:16
X509v3 Authority Key Identifier:
keyid:86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:40:ce:c3:4d:2f:99:93:8f:ef:e8:5b:8e:2d:ca:81:71:89:
ca:aa:6c:55:c5:a5:7d:20:4c:9b:0d:a8:21:38:c8:b5:2d:ad:
c8:f1:4f:37:da:dd:c5:3e:ad:0b:42:34:cb:af:5b:60:70:c7:
2d:8d:53:79:87:07:83:f9:6b:4f:e6:d5:e7:a9:09:c0:d9:08:
ea:ca:95:aa:fe:70:68:e2:c7:92:13:96:f5:4f:fc:90:f5:8d:
f9:9d:8b:4c:7f:28:39:5b:42:a6:b1:fd:cd:1f:e7:bd:5e:ff:
fe:4b:f8:0b:2b:22:7d:0d:e1:62:55:cb:79:e7:80:91:55:db:
30:55:65:ba:46:61:a0:32:b7:2f:36:16:8a:d1:54:f3:98:7d:
0f:07:70:5f:aa:fd:5b:22:5b:10:a2:d1:f8:2f:56:4e:a6:3c:
b8:4a:66:f8:1c:cb:95:71:77:43:68:3c:b0:44:8d:4d:fa:96:
1d:0b:9a:bc:bb:7f:80:ba:d2:94:ab:1f:0d:fd:fa:51:72:5f:
39:bc:2d:db:eb:d8:06:3f:d1:53:46:0b:e3:cb:a5:5f:54:d8:
a4:13:80:71:72:85:9b:a7:44:21:70:43:22:60:64:91:a4:6c:
a0:e4:22:d5:f6:09:46:d2:c0:47:d1:8e:6b:0f:97:04:8f:fe:
40:e6:30:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:08 2026 by rpki-client