Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
File: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft (raw, json)
Hash identifier: GJjE5wIAqgoATd+0ucYn3nAG/HR95tW054x4YAj6xSg=
Subject key identifier: 79:6F:35:10:0E:FB:1B:9E:AF:B5:95:7A:5F:A8:09:6C:29:31:3C:3D
Authority key identifier: 1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
Certificate issuer: /CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Certificate serial: 019E3260DD0919F68DEC846E786A93ABE492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 20:01:09 +0000
Manifest this update: Sat 16 May 2026 20:01:09 +0000
Manifest next update: Sun 17 May 2026 20:01:09 +0000
Files and hashes: 1: 2r56-7c4rzlH_MkXpf4EVQxFefI.roa (hash: hSJijlNMgIG+anYeveOsK+OFXlzwcZe8DVit+XV01Ts=)
2: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl (hash: c3F3e5RLtkLx0hMK4qXZJ2xiEQYqLKZXOCuT5iPvuGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 20:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:60:dd:09:19:f6:8d:ec:84:6e:78:6a:93:ab:e4:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Validity
Not Before: May 16 20:01:09 2026 GMT
Not After : May 17 20:01:09 2026 GMT
Subject: CN=796f35100efb1b9eafb5957a5fa8096c29313c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:29:5f:af:8d:1f:3f:60:45:ca:b0:69:8a:96:
ec:ef:4a:05:d9:ac:af:cc:19:8d:64:6e:25:20:fa:
96:2c:aa:03:b1:96:c5:23:e3:3d:0c:38:f7:51:2a:
00:91:fc:3b:a9:69:38:b7:6c:ad:08:41:1c:f0:2a:
7f:02:de:5a:d0:3f:94:25:3e:77:f3:78:91:17:42:
82:2e:f9:5a:5c:e5:4d:ef:37:83:fc:51:09:e7:76:
1a:68:38:42:68:f6:de:df:e2:bb:cf:54:47:87:68:
d8:33:ca:12:09:bb:87:1c:c1:9e:63:b2:1a:78:8a:
10:db:35:40:51:2d:ea:8a:c2:ea:30:eb:df:8a:1a:
5a:ba:50:bc:02:d9:3e:47:55:1c:b6:03:02:5b:82:
e9:5c:0b:ac:c5:3b:0b:e0:69:3b:cd:c7:ab:f1:e8:
fe:eb:ea:de:7f:43:66:92:89:ff:0d:44:a8:e1:76:
8b:eb:2a:fc:63:ae:cf:95:38:65:e5:7c:53:db:03:
3c:35:cd:5f:cf:ae:25:e5:4b:1e:a8:45:03:b8:e6:
29:1a:4e:a4:d7:dd:d4:00:b1:5e:54:df:c3:b3:ad:
32:73:c3:d2:68:93:f6:64:b3:6d:80:ce:ff:e2:c9:
a6:88:de:4a:ea:58:3f:a8:26:a2:df:39:47:04:d6:
1f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6F:35:10:0E:FB:1B:9E:AF:B5:95:7A:5F:A8:09:6C:29:31:3C:3D
X509v3 Authority Key Identifier:
keyid:1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:92:14:88:5f:14:e9:10:45:8a:35:1a:83:42:46:0c:48:d7:
81:4a:98:7e:ba:31:f5:51:a0:1b:51:d6:65:d0:98:ff:62:95:
82:54:f6:e5:e7:81:a5:55:5c:ea:2a:60:34:51:80:98:e3:95:
94:20:eb:6f:bd:16:00:17:2e:35:89:45:a6:2d:de:12:ea:03:
3c:0e:28:4f:e2:95:9e:ae:1b:3c:fd:3f:62:a1:71:43:5c:ad:
fc:1c:2c:17:60:72:17:7c:ee:d8:34:35:d1:68:4c:8a:3a:00:
cb:9b:8c:b0:a0:2f:7c:e4:39:10:f5:31:90:d2:ce:84:35:53:
68:ea:cd:4d:90:29:aa:d4:02:9d:c8:a4:72:5a:26:58:ce:d0:
23:23:0f:b7:45:e2:ac:f8:78:da:b3:4b:06:84:67:7f:0c:ba:
4f:da:6c:76:94:93:27:a2:08:bb:b8:89:80:4a:60:a3:1a:ac:
72:b6:91:63:a4:bd:31:3c:63:bc:a0:71:c4:5d:2a:78:a4:49:
6c:c3:ec:22:21:59:bd:2f:6d:b8:82:c2:d6:97:5b:e6:a2:bf:
22:81:2b:0f:c9:c4:0c:cd:1e:b7:65:e5:01:36:7e:34:e9:79:
2e:33:b6:cd:25:fc:3c:59:80:95:cf:b4:62:80:8b:93:c0:04:
41:c6:96:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 01:15:23 2026 by rpki-client