Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
File: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft (raw, json)
Hash identifier: XYynKvbY0ulfoku2VCT6bi7WNnAJHyLroEkapI1gZ0E=
Subject key identifier: 68:8D:CF:F7:3B:90:92:46:A6:18:84:6E:06:7E:93:E7:6F:FB:36:48
Authority key identifier: 1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
Certificate issuer: /CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Certificate serial: 019D394155B0B6D90585C260156120B147D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:01:16 +0000
Manifest this update: Sun 29 Mar 2026 11:01:16 +0000
Manifest next update: Mon 30 Mar 2026 11:01:16 +0000
Files and hashes: 1: 2r56-7c4rzlH_MkXpf4EVQxFefI.roa (hash: hSJijlNMgIG+anYeveOsK+OFXlzwcZe8DVit+XV01Ts=)
2: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl (hash: ZoPcnHRVSwpcd3pBGxABx1fJKIJCH88u+blhWSSfwf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:55:b0:b6:d9:05:85:c2:60:15:61:20:b1:47:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Validity
Not Before: Mar 29 11:01:16 2026 GMT
Not After : Mar 30 11:01:16 2026 GMT
Subject: CN=688dcff73b909246a618846e067e93e76ffb3648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:29:22:95:ff:55:3f:0a:5d:4c:69:4a:43:93:
47:af:81:dd:6c:5e:8e:cc:e3:0b:d0:da:2a:b4:57:
9f:63:a7:d1:0d:35:be:ea:59:31:06:3f:c5:6e:75:
b1:2b:81:8d:13:b1:14:6f:35:8a:a1:bc:f1:68:d2:
23:b2:5f:94:e1:ab:13:99:79:0b:74:17:2b:25:a9:
36:32:30:c1:7f:91:38:1d:28:3b:a2:19:55:c7:90:
24:f1:61:8b:93:12:23:d8:9b:f5:33:8f:37:b5:7a:
09:7a:b0:8b:f9:aa:96:fc:b6:0d:c2:68:6d:7b:5c:
ad:36:b1:d7:3c:90:43:0d:29:51:dc:18:8c:33:1e:
a8:16:2e:ad:b7:6c:34:14:00:38:30:62:57:f1:43:
ad:05:72:98:9b:aa:f9:bc:a9:df:8c:4b:d8:c9:a3:
9b:37:72:8f:65:32:e3:a0:7a:d2:f2:ad:a5:f5:73:
8c:17:38:e2:5f:a5:e4:33:82:fd:7a:f9:c2:ca:77:
bc:69:c3:94:ac:e7:e3:6b:f3:32:48:0c:66:16:24:
a5:eb:98:0a:9f:94:6f:f5:32:86:ff:d0:19:47:49:
b8:54:0d:91:8b:52:34:92:4c:d0:c8:bb:94:14:85:
76:88:27:09:20:17:f3:73:f7:b6:e0:ab:40:1e:48:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8D:CF:F7:3B:90:92:46:A6:18:84:6E:06:7E:93:E7:6F:FB:36:48
X509v3 Authority Key Identifier:
keyid:1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:e0:ba:40:e9:32:b0:0c:ef:94:82:6b:a2:5f:47:0a:8e:19:
d5:2a:a1:fe:59:f9:75:c4:a4:20:af:48:b6:3b:df:6e:cd:fc:
40:e9:df:c1:02:d2:35:d9:72:76:09:db:f7:12:f1:ff:f7:76:
92:26:65:80:25:af:4c:9d:aa:ed:b0:e9:16:80:a1:23:a5:15:
1d:75:37:cc:67:ca:13:6e:ed:c6:34:e6:d5:1e:07:57:20:dc:
bb:ee:c6:33:98:12:0c:7b:f8:a4:d8:e4:99:8e:0a:f2:b7:5a:
fb:35:63:60:45:8a:f9:60:a7:db:d0:37:f2:0f:7d:00:74:b2:
d2:55:ab:b2:1c:0b:12:7e:d8:de:ea:c5:a8:62:d3:f0:f9:5d:
17:10:51:a7:4f:fe:aa:bf:47:cf:08:95:ab:4d:9b:e8:b6:3b:
3f:29:9b:5c:ca:00:b7:37:b1:2d:ef:a1:69:02:05:f3:38:54:
83:3f:2a:5a:ae:a3:ec:70:ce:03:b6:3f:53:4e:69:e3:1e:8b:
4e:02:05:31:51:20:7d:aa:52:bf:1e:32:a2:4b:f0:e9:44:3c:
fb:98:47:21:38:56:98:8b:16:a6:31:be:05:dd:23:b9:76:df:
2a:35:ce:7d:91:15:79:13:9f:6c:0e:36:02:d3:0f:ed:fb:5d:
ed:07:ec:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:22:02 2026 by rpki-client