Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: XQmWku/O2/mNiOmO4bMAdg2Uzg1971xuNdS/vttylhY=
Subject key identifier: 9F:F4:C7:3A:0B:46:F8:11:68:69:33:AA:D6:FB:B2:B6:1A:64:68:DA
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 019D3940B8A862DCAC36A8BC70A90AA246DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 06F8
Signing time: Sun 29 Mar 2026 11:00:35 +0000
Manifest this update: Sun 29 Mar 2026 11:00:35 +0000
Manifest next update: Mon 30 Mar 2026 11:00:35 +0000
Files and hashes: 1: OpVP9Jc1xVaXbqJf86X7XVLPEVg.roa (hash: hPcfxfvwY6smKQuTD+0Hf69aqpf3jRgfObWjITTCQao=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: K+Gp4z6ykyoIMTIzMtHb4zGzexw6xzyQmW+lhA01EMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:b8:a8:62:dc:ac:36:a8:bc:70:a9:0a:a2:46:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Mar 29 11:00:35 2026 GMT
Not After : Mar 30 11:00:35 2026 GMT
Subject: CN=9ff4c73a0b46f811686933aad6fbb2b61a6468da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:39:98:41:8d:37:91:14:0b:8d:b2:23:e1:45:
cf:cc:d1:6c:de:f4:86:20:8f:8e:14:dc:0d:5e:6e:
dc:ef:3d:8e:aa:a2:c0:b9:96:be:0f:81:00:4b:2f:
95:ea:be:0f:10:77:4e:7c:ea:79:cd:3d:06:3f:f0:
34:b6:7f:8c:2b:9a:d9:c6:ee:d9:5b:fe:7a:8e:a0:
53:49:a8:88:a0:35:f1:45:a3:39:72:a2:50:1a:3d:
a0:1e:2a:38:64:dd:53:78:8d:b2:74:51:0f:4b:e0:
c0:e7:0c:c1:18:25:fc:bb:54:77:9d:43:9f:7a:97:
70:fd:e3:94:71:2a:a1:65:ae:6d:64:b6:67:eb:95:
ca:52:50:f2:16:90:8c:7b:73:ef:39:fe:9a:2a:a7:
c4:97:d2:0b:69:45:05:2d:29:e4:98:b3:b2:b1:25:
eb:31:df:72:95:94:06:99:0d:78:ab:8d:f7:1d:4b:
9e:2b:5d:55:1e:a8:6d:c0:d6:77:ee:2c:3b:2d:b2:
56:ca:49:7b:8f:80:90:97:f1:93:bd:84:c6:f0:13:
c2:73:33:97:24:9d:ca:a4:d8:15:44:45:d5:ef:37:
c2:e7:f5:74:47:ea:ce:3d:09:3a:20:fb:09:17:54:
da:7c:82:84:4e:ba:4c:72:46:61:9c:e0:5e:13:6b:
9a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F4:C7:3A:0B:46:F8:11:68:69:33:AA:D6:FB:B2:B6:1A:64:68:DA
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:1b:68:da:84:c8:9c:35:85:b8:68:94:b3:56:93:01:a1:78:
22:3d:fe:17:5a:00:36:d1:ec:6b:04:d4:b4:b3:65:7e:9d:b0:
ad:3e:f2:6a:5d:16:57:67:45:97:60:d8:f4:a7:78:5c:33:4f:
8d:90:6a:42:b0:b7:93:d7:d0:fe:b0:ec:17:94:ed:01:67:38:
f6:2e:bd:e9:7d:3f:3e:b5:ca:15:55:56:da:b3:a5:80:69:5a:
b7:14:79:67:71:2b:56:87:28:8c:85:ed:38:2d:89:0f:a2:a8:
ed:fd:df:6c:71:03:7e:ea:33:76:4a:af:a9:bb:7f:d3:d6:15:
55:20:70:f1:2d:f3:06:af:b5:7b:04:5b:ff:b3:bb:8f:1f:3c:
f0:a7:fc:59:54:01:a5:d1:12:3c:9f:9a:13:40:b9:eb:20:ed:
d6:c6:7f:a2:f1:1f:13:2d:77:b8:3b:df:9d:70:0e:34:36:fd:
e5:af:96:90:00:2f:22:08:6b:81:d3:15:38:58:ab:ab:a4:f6:
5e:1f:a5:87:bb:b8:27:a3:e4:a1:10:97:e4:60:a8:60:ba:b0:
61:31:e7:cf:e5:a1:e3:82:7e:b1:6a:9e:a5:07:0a:ce:68:3d:
74:3f:c2:12:5f:c5:71:fd:c8:da:ec:a8:7c:8e:09:de:41:4b:
aa:55:62:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QLioYtysNqi8cKkKokbaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NzU4ZDhhN2VkMjFhNzQxNzJjY2VlYzMzOGM2NGQzNmIw
Mzc4ZDQwHhcNMjYwMzI5MTEwMDM1WhcNMjYwMzMwMTEwMDM1WjAzMTEwLwYDVQQD
Eyg5ZmY0YzczYTBiNDZmODExNjg2OTMzYWFkNmZiYjJiNjFhNjQ2OGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zmYQY03kRQLjbIj4UXPzNFs3vSG
II+OFNwNXm7c7z2OqqLAuZa+D4EASy+V6r4PEHdOfOp5zT0GP/A0tn+MK5rZxu7Z
W/56jqBTSaiIoDXxRaM5cqJQGj2gHio4ZN1TeI2ydFEPS+DA5wzBGCX8u1R3nUOf
epdw/eOUcSqhZa5tZLZn65XKUlDyFpCMe3PvOf6aKqfEl9ILaUUFLSnkmLOysSXr
Md9ylZQGmQ14q433HUueK11VHqhtwNZ37iw7LbJWykl7j4CQl/GTvYTG8BPCczOX
JJ3KpNgVREXV7zfC5/V0R+rOPQk6IPsJF1TafIKETrpMckZhnOBeE2uaNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ/0xzoLRvgRaGkzqtb7srYaZGjaMB8GA1UdIwQY
MBaAFIZ1jYp+0hp0FyzO7DOMZNNrA3jUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQt
Y2RhY2I4NDY3MTg3LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQtY2RhY2I4NDY3MTg3
LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJxto2oTI
nDWFuGiUs1aTAaF4Ij3+F1oANtHsawTUtLNlfp2wrT7yal0WV2dFl2DY9Kd4XDNP
jZBqQrC3k9fQ/rDsF5TtAWc49i696X0/PrXKFVVW2rOlgGlatxR5Z3ErVocojIXt
OC2JD6Ko7f3fbHEDfuozdkqvqbt/09YVVSBw8S3zBq+1ewRb/7O7jx888Kf8WVQB
pdESPJ+aE0C56yDt1sZ/ovEfEy13uDvfnXAONDb95a+WkAAvIghrgdMVOFirq6T2
Xh+lh7u4J6PkoRCX5GCoYLqwYTHnz+Wh44J+sWqepQcKzmg9dD/CEl/Fcf3I2uyo
fI4J3kFLqlVijg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:52 2026 by rpki-client