Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json)
Hash identifier: MRpI/pmvuJu7omc/emNG8xjmDIfy83XQLL18Xkoes6k=
Subject key identifier: 5B:5B:B7:DC:F5:AF:87:87:96:F2:6B:C0:58:CC:01:51:AC:59:7F:FB
Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714
Certificate serial: 019D371B27CF768914E99C67C06409CABB07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
Manifest number: 0680
Signing time: Sun 29 Mar 2026 01:00:19 +0000
Manifest this update: Sun 29 Mar 2026 01:00:19 +0000
Manifest next update: Mon 30 Mar 2026 01:00:19 +0000
Files and hashes: 1: 1-7HFtUN3vZHJP99F9s_042HCi_o.roa (hash: v3oy8qKtaxYoYTFlbLGcHquGHI0mpb7e1cJJAPr+1KI=)
2: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: osSErHuZRz9+8/1IaQeBuB1gT7V13LO0BJpNrbQR0xI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:27:cf:76:89:14:e9:9c:67:c0:64:09:ca:bb:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714
Validity
Not Before: Mar 29 01:00:19 2026 GMT
Not After : Mar 30 01:00:19 2026 GMT
Subject: CN=5b5bb7dcf5af878796f26bc058cc0151ac597ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9d:46:61:cc:94:18:19:27:2a:6b:b1:d7:77:
9f:19:6a:9d:0b:b2:98:4b:e8:14:f5:90:48:89:ed:
64:b6:64:0d:c5:26:08:6f:55:62:7d:36:1d:c5:17:
0c:0d:1d:78:09:da:b4:a9:0d:be:1f:91:ee:be:54:
1a:dd:26:13:7b:90:53:62:7f:a5:a4:ee:fc:83:09:
a9:dc:3a:87:38:fb:a5:c4:ed:22:a4:44:6c:aa:d9:
c5:01:79:2f:5b:2f:94:2f:d4:05:c9:e1:6f:41:9b:
54:6d:38:79:d6:59:1f:c3:93:70:85:9c:d8:f1:87:
df:e0:ad:96:f9:32:64:52:7d:98:e6:a2:09:15:18:
5b:8d:6b:f7:6a:59:83:8d:4b:67:b6:85:55:3c:05:
a7:2d:f1:57:a5:d2:5c:39:92:e2:24:23:f3:bf:e2:
fc:16:6d:d9:58:17:c9:dd:6c:70:c6:3c:75:db:d9:
b3:2b:32:1d:55:90:d5:f9:74:79:a2:91:3e:ee:71:
c3:9c:c0:a2:57:58:24:34:7e:61:bb:b5:bd:90:3e:
f5:98:c1:d2:d0:92:5e:ca:f4:50:e7:71:0f:59:8d:
39:74:57:90:21:1a:42:fe:1b:75:36:08:4d:5b:32:
b6:8b:a5:a8:1f:90:62:a9:b9:a5:98:59:95:af:9a:
5d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5B:B7:DC:F5:AF:87:87:96:F2:6B:C0:58:CC:01:51:AC:59:7F:FB
X509v3 Authority Key Identifier:
keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:67:f6:e8:3b:6c:7b:81:c5:d4:25:73:4f:ef:58:f6:32:97:
4c:7c:26:7f:c3:6f:76:d5:dc:d9:44:bb:6c:0c:8f:25:40:e7:
61:a5:75:ef:2a:07:79:31:a8:73:8c:07:da:06:c2:d1:4d:88:
3e:ef:5d:73:e5:7b:8b:1f:ff:f2:6a:01:f6:f7:e4:90:6c:ee:
e4:cf:d5:2a:e9:02:83:9c:7a:35:66:07:37:5d:8a:5b:e9:e5:
c6:47:47:b5:fd:e8:55:ca:bd:05:bc:ec:cc:4f:f2:e5:d4:15:
40:84:b3:71:b8:40:15:9a:b7:d3:f2:c9:e5:1d:24:8b:33:77:
39:19:13:19:be:5b:49:f3:c6:76:2b:60:27:2e:27:fe:ec:23:
77:21:cc:76:8c:13:7c:75:c1:0d:dc:4b:03:41:b6:f3:5f:05:
b6:85:cb:05:9a:0f:ea:c0:16:dc:de:94:c6:4d:05:a3:b5:6f:
75:a7:73:e1:c9:7b:7a:d2:7c:f4:85:f1:8f:94:cd:04:e9:b1:
53:ff:a2:4e:d6:ac:aa:c9:79:60:f4:4e:35:26:d5:d2:85:f9:
89:9f:33:ae:ba:da:95:91:31:9b:87:d0:a1:f7:5c:4c:23:67:
a5:e0:ce:f5:76:56:36:3f:8e:3e:98:86:29:cc:d6:99:0e:25:
48:80:6d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:36 2026 by rpki-client