Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
File: hugNGBwlPRTaHgupwdVmb1Ym1YE.mft (raw, json)
Hash identifier: mki7XZ3V21Yy8ExAL3x/1rQTpEfEJmesYz0jNIgU8PI=
Subject key identifier: 60:B5:7E:CA:24:A5:B1:D6:21:42:8F:E2:06:44:A2:93:8F:73:4C:7C
Authority key identifier: 86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81
Certificate issuer: /CN=86e80d181c253d14da1e0ba9c1d5666f5626d581
Certificate serial: 019D3789480B9394E284A17B48880175AE5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
Manifest number: 02B4
Signing time: Sun 29 Mar 2026 03:00:36 +0000
Manifest this update: Sun 29 Mar 2026 03:00:36 +0000
Manifest next update: Mon 30 Mar 2026 03:00:36 +0000
Files and hashes: 1: Q0BAQv9Y2KCGzUH12IIJCejGo9E.roa (hash: ZXRjv/WoTKdvC9GZzFdW6WbAOuxyKMhJM7y9cqTP30I=)
2: hugNGBwlPRTaHgupwdVmb1Ym1YE.crl (hash: c0BDaMCur639ZTea+b66MKFK9YEjjnbch9Mrdjkz/xk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:48:0b:93:94:e2:84:a1:7b:48:88:01:75:ae:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e80d181c253d14da1e0ba9c1d5666f5626d581
Validity
Not Before: Mar 29 03:00:36 2026 GMT
Not After : Mar 30 03:00:36 2026 GMT
Subject: CN=60b57eca24a5b1d621428fe20644a2938f734c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3b:b7:2d:bc:d4:59:c6:e8:f3:b8:fc:9d:29:
4a:a4:c9:d7:57:d5:3e:76:c6:83:31:5a:90:56:49:
e9:35:99:22:5c:86:41:75:22:1b:d0:60:ff:80:3e:
1a:94:58:04:33:be:bb:7c:8b:c1:29:17:6f:39:e2:
0d:a3:0d:0c:1a:ed:8f:8a:0f:6b:2b:f6:9b:f7:3a:
d5:3b:79:6f:c6:b3:b2:ab:e1:b5:0f:0d:fd:db:bc:
c7:80:a3:8c:8e:3d:e5:b6:5e:df:0f:f6:f7:35:29:
11:e8:d4:62:8f:73:e6:a7:3f:43:2f:76:fd:eb:3f:
7c:0a:6e:48:17:15:5f:46:0e:ef:62:fb:d7:91:38:
6d:d4:95:c1:5a:b6:92:d2:eb:54:6a:1f:ec:0a:aa:
3f:c1:c8:c5:71:dc:6b:f4:7a:ac:1c:33:12:ea:ab:
e4:6d:2c:56:3f:f1:e5:e3:ed:9d:d8:13:48:e3:cd:
a7:ed:aa:a5:62:59:b6:9c:4b:78:f4:47:9e:4f:c0:
80:b1:89:55:b3:55:dc:d3:17:cf:e1:1a:5d:9c:65:
69:8b:b8:4e:ad:49:04:e0:9d:11:31:6b:23:3e:b0:
cb:95:c4:3d:89:16:74:79:ec:f6:47:f6:51:16:45:
29:8e:08:6d:30:2d:08:5f:a6:3e:0e:34:7e:a0:ee:
b5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B5:7E:CA:24:A5:B1:D6:21:42:8F:E2:06:44:A2:93:8F:73:4C:7C
X509v3 Authority Key Identifier:
keyid:86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:94:77:97:2c:50:e7:e7:cd:dd:c7:0c:1e:fb:27:fb:5b:d8:
02:ef:d9:f2:9a:87:96:ce:75:8c:3b:89:1d:a7:e8:05:2b:37:
b4:12:26:c0:f6:2a:97:95:7b:84:ce:91:82:48:d9:67:1c:89:
73:88:93:f2:d8:96:9b:6c:0a:45:7b:b2:85:a5:c9:f1:20:dd:
ee:25:03:e0:eb:82:80:13:52:2c:4f:72:ec:a9:3d:86:39:a8:
5d:17:98:c5:37:75:21:67:64:55:7d:85:3e:25:fd:db:70:c6:
e9:51:be:6b:3c:c6:56:87:e6:f9:8f:8a:e2:5f:87:1a:6d:14:
dc:f9:03:a5:29:51:bf:5c:96:a3:1b:86:2e:b0:f4:4a:2f:e2:
1d:d6:fa:21:d5:0d:a2:15:7d:37:47:33:18:3d:d9:6b:f9:00:
94:43:af:28:c8:38:6b:b0:66:18:3f:bd:91:95:cb:30:3d:e9:
c4:cf:3a:33:ee:21:d2:d0:54:44:e1:8d:82:ca:a1:01:17:0a:
90:df:a1:5b:11:8e:88:a4:64:2c:c9:3d:00:f1:16:a6:31:2e:
c9:39:2e:ff:32:64:ca:ce:e0:ab:e6:1c:5f:7a:51:b0:88:e6:
2e:6b:3c:23:9f:7e:8f:ed:c6:33:28:0f:fd:62:bd:77:d1:de:
ca:ee:7e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:57 2026 by rpki-client