Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
File: uwKqn6RfyXvbLm3I_Ap_A3HITek.mft (raw, json)
Hash identifier: M1f51TKqNY+PvZ9BYBiB7pi2GlonqqIUi2UNpRbftXU=
Subject key identifier: C6:97:BC:07:AA:26:B9:D0:F4:B4:13:82:7A:67:12:FE:72:8C:99:2F
Authority key identifier: BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
Certificate issuer: /CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Certificate serial: 019D38D381CDDE55CC37E4A9E592D84D6ED8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
Manifest number: 043B
Signing time: Sun 29 Mar 2026 09:01:18 +0000
Manifest this update: Sun 29 Mar 2026 09:01:18 +0000
Manifest next update: Mon 30 Mar 2026 09:01:18 +0000
Files and hashes: 1: FStRWITrx7mXYLP1GLGN2-na9w0.roa (hash: 9Kguvpi0MkdObkp26nsq/5tht75+Q0yDWXnyUXnDBmI=)
2: uwKqn6RfyXvbLm3I_Ap_A3HITek.crl (hash: ZGSYRlUaVqy17V7CYXx2pxaEmbqGXmNX38PcTapRlAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:81:cd:de:55:cc:37:e4:a9:e5:92:d8:4d:6e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9
Validity
Not Before: Mar 29 09:01:18 2026 GMT
Not After : Mar 30 09:01:18 2026 GMT
Subject: CN=c697bc07aa26b9d0f4b413827a6712fe728c992f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e1:fc:db:21:69:11:cc:b2:ab:c9:aa:2a:25:
cb:16:b8:b8:be:d4:82:eb:b7:00:b9:2f:82:33:d6:
d2:50:d3:73:35:9c:36:de:e8:ff:25:d8:24:49:1a:
d7:68:ef:b3:ed:e2:97:11:8a:2d:97:2f:8f:23:2b:
d7:b0:cb:fb:96:30:12:f7:dd:65:e6:c7:1a:1e:a5:
3f:66:fd:d2:67:5a:95:6a:5e:d6:15:e1:ab:dc:75:
ac:c5:8e:09:7d:e5:4e:80:e6:26:20:e6:fd:cc:06:
5f:11:a7:63:0b:5c:02:44:6d:01:52:2f:9e:81:8a:
9b:5c:c1:2e:15:67:ac:57:18:8e:83:94:83:42:65:
af:d0:80:78:ca:34:78:82:e1:71:75:05:17:2a:f2:
90:df:55:12:1f:cf:bd:bb:0b:25:43:99:7a:b7:74:
22:16:c1:2c:6b:0c:e0:72:4b:d5:f0:62:7d:38:9b:
14:af:bb:68:d4:fe:24:de:ee:c6:9c:fe:e4:d9:85:
46:ab:0e:35:71:72:29:7a:68:fd:22:3d:2a:34:ed:
15:0d:5a:df:bd:82:94:68:82:0f:dc:57:3f:78:07:
aa:27:e1:dc:cb:52:13:c4:35:01:eb:cc:25:28:eb:
75:29:7f:1c:67:e9:b1:9a:1a:e4:41:4d:65:c9:3c:
55:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:97:BC:07:AA:26:B9:D0:F4:B4:13:82:7A:67:12:FE:72:8C:99:2F
X509v3 Authority Key Identifier:
keyid:BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:ba:ed:d3:c7:b5:2b:4e:1e:bd:18:c1:fa:a3:86:5e:a0:98:
88:07:f5:0e:ed:7f:4b:c0:da:18:5c:c1:70:c8:c6:00:17:31:
55:79:44:eb:c6:3b:fc:42:fc:43:c9:0d:0a:4a:cf:84:45:1a:
32:7d:e9:81:c2:9a:b2:0e:d7:de:2b:35:eb:9a:f7:7c:1f:89:
1d:c9:bd:9a:d4:58:43:58:e5:6b:cd:f7:d9:9f:33:b4:48:1e:
ba:82:9c:e1:33:ea:00:8f:f1:de:11:be:06:13:22:df:62:0c:
4d:f8:da:20:34:3b:a7:39:83:2b:5e:79:06:13:ce:ae:f5:2e:
8f:ed:41:d5:c7:1e:60:48:58:f4:a2:d2:53:04:58:05:3d:3b:
fc:f8:32:7b:a0:3a:78:63:cd:35:c2:25:6e:87:83:20:a1:09:
8b:ab:70:40:79:c2:fa:5e:84:2e:ca:59:37:18:31:7c:54:4b:
4f:7a:22:64:2f:0b:28:ea:d4:f2:36:ac:57:a0:a9:3e:34:ce:
ea:b7:59:5a:43:75:8b:dd:d8:9c:0f:73:70:bd:9a:b1:76:02:
69:a6:2e:4c:e5:ce:b7:b4:18:cb:12:fc:aa:c2:31:a1:e8:db:
e3:60:93:2a:dc:5b:b3:dc:4f:1a:a5:57:a2:bc:e0:f4:9d:75:
30:3a:de:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0404HN3lXMN+Sp5ZLYTW7YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiMDJhYTlmYTQ1ZmM5N2JkYjJlNmRjOGZjMGE3ZjAzNzFj
ODRkZTkwHhcNMjYwMzI5MDkwMTE4WhcNMjYwMzMwMDkwMTE4WjAzMTEwLwYDVQQD
EyhjNjk3YmMwN2FhMjZiOWQwZjRiNDEzODI3YTY3MTJmZTcyOGM5OTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5uH82yFpEcyyq8mqKiXLFri4vtSC
67cAuS+CM9bSUNNzNZw23uj/JdgkSRrXaO+z7eKXEYotly+PIyvXsMv7ljAS991l
5scaHqU/Zv3SZ1qVal7WFeGr3HWsxY4JfeVOgOYmIOb9zAZfEadjC1wCRG0BUi+e
gYqbXMEuFWesVxiOg5SDQmWv0IB4yjR4guFxdQUXKvKQ31USH8+9uwslQ5l6t3Qi
FsEsawzgckvV8GJ9OJsUr7to1P4k3u7GnP7k2YVGqw41cXIpemj9Ij0qNO0VDVrf
vYKUaIIP3Fc/eAeqJ+Hcy1ITxDUB68wlKOt1KX8cZ+mxmhrkQU1lyTxVlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMaXvAeqJrnQ9LQTgnpnEv5yjJkvMB8GA1UdIwQY
MBaAFLsCqp+kX8l72y5tyPwKfwNxyE3pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQt
YWMxODNhOWFkZWIxLzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQtYWMxODNhOWFkZWIx
LzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZLrt08e1
K04evRjB+qOGXqCYiAf1Du1/S8DaGFzBcMjGABcxVXlE68Y7/EL8Q8kNCkrPhEUa
Mn3pgcKasg7X3is165r3fB+JHcm9mtRYQ1jla8332Z8ztEgeuoKc4TPqAI/x3hG+
BhMi32IMTfjaIDQ7pzmDK155BhPOrvUuj+1B1cceYEhY9KLSUwRYBT07/Pgye6A6
eGPNNcIlboeDIKEJi6twQHnC+l6ELspZNxgxfFRLT3oiZC8LKOrU8jasV6CpPjTO
6rdZWkN1i93YnA9zcL2asXYCaaYuTOXOt7QYyxL8qsIxoejb42CTKtxbs9xPGqVX
orzg9J11MDremA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:35 2026 by rpki-client