Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: VAds6h41MAWz/5NXBPnbZJtmZjBoJJIHFD+UVDAA8co=
Subject key identifier: E3:3A:3D:05:C5:12:FA:6A:59:20:6D:14:0D:8C:83:72:83:EA:15:BB
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 019D382DCB4771B1C74229B49C0B7EEEAFA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 0BAA
Signing time: Sun 29 Mar 2026 06:00:18 +0000
Manifest this update: Sun 29 Mar 2026 06:00:18 +0000
Manifest next update: Mon 30 Mar 2026 06:00:18 +0000
Files and hashes: 1: GPPNPmR8KUY_sEY8Xyw8dhEolxg.roa (hash: JjmXr+ibRaRGfx0pfBbomv1IH9Jgiuy25aSKoWiXJmg=)
2: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: EICCcrzGFaepdhUnSj285R+cpKPMGqF3T4v66+QWxuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:cb:47:71:b1:c7:42:29:b4:9c:0b:7e:ee:af:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: Mar 29 06:00:18 2026 GMT
Not After : Mar 30 06:00:18 2026 GMT
Subject: CN=e33a3d05c512fa6a59206d140d8c837283ea15bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:73:fd:e9:5b:fe:8e:02:6d:d6:4b:8b:8c:a2:
1a:f6:d7:0b:fa:b7:74:72:e2:71:e5:95:46:f7:74:
be:a3:c9:b3:0d:c0:4a:fd:55:8d:65:f5:c6:78:cd:
46:3b:fa:4a:27:55:94:cf:17:57:61:f5:73:ca:aa:
27:88:95:45:84:f9:ba:5d:4f:ff:c6:94:42:4d:4c:
9e:41:82:9e:e8:ad:7a:5f:48:08:4b:3f:47:46:1c:
5f:4a:7f:00:0c:3f:d5:b0:32:16:54:9c:5f:ab:26:
d1:8d:23:2a:a6:4b:56:0b:4d:96:39:7a:9a:b9:e3:
81:67:fa:be:37:98:8f:11:c9:f9:cc:2b:97:1a:b9:
f3:61:bc:eb:8e:84:e5:70:57:79:fe:ae:14:35:c2:
3c:84:e6:d5:65:9b:11:35:4e:7d:4c:01:6d:1f:f1:
fd:cb:e7:89:2f:b7:6b:6c:33:29:67:2c:4a:6b:3a:
5a:08:52:0b:04:cb:a1:47:5d:68:af:b0:5d:96:31:
61:6f:7d:38:65:f1:54:89:80:a8:95:46:9e:ed:fe:
d8:1e:ce:7d:48:8d:e7:98:24:4a:53:5c:46:31:f5:
da:4e:af:48:6f:a0:ed:a6:47:58:d4:35:64:19:e3:
f8:56:b3:80:59:3a:20:ce:b6:84:0d:b6:97:f0:03:
bb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3A:3D:05:C5:12:FA:6A:59:20:6D:14:0D:8C:83:72:83:EA:15:BB
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:b9:6d:38:01:fd:49:7b:4e:4c:74:88:4a:20:f0:4b:25:21:
46:91:98:bc:11:7e:7d:d6:b5:de:01:d0:15:1e:9f:89:72:ad:
58:5b:21:07:8c:e5:4a:66:e5:13:02:da:6b:f0:9c:90:28:7d:
80:25:2b:4e:f2:80:ec:f9:c3:54:0f:ea:c4:0e:b9:18:dc:a6:
65:1e:e2:3d:ee:30:79:25:bc:5d:9c:71:79:dc:f8:ae:2d:44:
50:e2:7a:22:cb:10:4d:fb:83:10:32:bd:9c:f1:b9:6b:71:b9:
55:33:4c:e5:2c:a9:6e:02:fc:72:2e:2b:34:84:c9:f9:c2:70:
11:98:30:c3:e1:04:4f:93:90:b4:3a:d4:83:30:d2:70:0d:a3:
3b:0b:87:86:54:fa:49:3d:37:ea:3c:ec:48:31:f5:de:06:54:
e3:76:85:fe:e1:5c:d2:02:e2:bb:13:d2:b4:73:98:95:2c:9e:
14:85:e2:47:8f:16:9d:8a:72:c5:bb:ab:76:5e:53:ab:9f:c1:
91:88:8f:5e:0b:b6:6d:c3:0b:2e:fe:bf:b9:2e:9f:8a:3c:05:
c7:f0:8f:f9:93:e5:c2:8b:7f:53:c5:45:9e:d6:17:10:7a:e8:
2a:26:c7:f9:d8:be:dc:77:de:a3:ed:15:a3:d0:bb:13:e8:51:
f0:e0:43:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:50:58 2026 by rpki-client