Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: axd/a1lpYfDYz1B8i8xeiUdZxlMjLLbBgWEKyzWX3bM=
Subject key identifier: 2B:67:79:CD:EA:38:17:11:4D:F2:03:91:FE:D3:80:33:BE:08:97:27
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 019D29299182EBCD403E99503A4BFDB791B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 1264
Signing time: Thu 26 Mar 2026 08:01:23 +0000
Manifest this update: Thu 26 Mar 2026 08:01:23 +0000
Manifest next update: Fri 27 Mar 2026 08:01:23 +0000
Files and hashes: 1: cuE4TW5rh-XwN9tNjWmFmQtIPFU.roa (hash: NU4Otp39oKMhqOc0L+AnrGl6IMBfgna2IPqlcLesd28=)
2: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: X/MM/XlrGh7S9ONZblg60d5+VGxoTGHhNWRMMCZ4eTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:91:82:eb:cd:40:3e:99:50:3a:4b:fd:b7:91:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Mar 26 08:01:23 2026 GMT
Not After : Mar 27 08:01:23 2026 GMT
Subject: CN=2b6779cdea3817114df20391fed38033be089727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b0:6e:73:38:1a:ac:40:df:c1:5b:dc:09:ad:
78:2a:9c:d9:c2:cf:75:dd:65:2b:4f:1a:0e:1e:90:
70:5e:25:89:9a:3d:e9:07:8f:28:74:10:99:52:ad:
ab:3f:95:c2:64:bf:de:6c:1e:3c:15:ce:b4:19:36:
36:02:32:24:6b:c8:dc:8c:56:d5:f6:ce:f5:59:b0:
97:25:c8:49:f9:cd:a4:ba:cf:7a:4c:fe:84:38:e6:
29:01:9d:30:c4:c6:82:91:ba:87:34:91:5c:6b:84:
cc:72:93:b0:8c:1f:52:ef:39:31:47:17:b4:8c:76:
ae:35:e9:c4:50:be:a7:e2:08:8b:af:4b:63:86:12:
cb:10:03:87:9b:62:8c:c6:d4:1d:33:33:ca:0e:1a:
4f:06:f7:88:04:73:e2:37:cf:89:bb:3c:a9:1e:be:
87:7a:62:93:35:ee:74:90:68:ba:bd:79:05:c0:81:
c0:f0:f1:4e:24:9a:59:85:cc:a6:80:7e:a2:31:10:
75:e2:91:6c:3d:87:b7:6b:8e:ef:0a:ac:a0:82:23:
6c:df:a4:78:e3:2e:43:08:dd:fe:8a:1d:98:49:1c:
f1:d3:19:c0:35:cd:eb:6a:cd:19:b2:53:81:fc:8f:
90:0a:86:9c:d1:65:20:c2:d4:44:5f:5c:b5:81:10:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:67:79:CD:EA:38:17:11:4D:F2:03:91:FE:D3:80:33:BE:08:97:27
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:75:bf:bf:de:a1:23:c8:4f:6f:52:ed:15:68:bb:f7:a3:7d:
f6:8d:07:8a:e5:d5:4a:57:7b:91:68:5c:f6:bb:53:9c:2a:3e:
9c:fb:11:1e:d6:bd:f4:f5:9e:b9:1a:51:c7:29:f0:f5:30:1c:
56:ff:f7:be:24:57:40:46:df:e7:ad:91:5a:ef:50:78:7f:ef:
48:37:f9:28:f4:70:08:b3:02:5f:44:f8:39:39:1f:8b:5e:37:
b5:64:b2:a5:20:0b:5f:1e:77:5f:59:0f:b6:e5:de:16:a9:17:
58:28:29:6c:1a:e6:ff:0f:58:a6:58:5f:c7:76:72:db:d1:3c:
54:76:7d:cd:09:26:6d:fb:10:d0:86:b4:9d:55:01:09:f2:9c:
19:18:4b:82:2e:d0:5a:c5:ac:4a:5b:d0:07:52:b0:5e:f1:21:
9e:90:e8:29:a5:85:6f:1c:39:3e:4b:16:30:a5:67:42:1c:b0:
ca:f6:eb:97:a1:93:5b:c0:f7:67:2f:c3:42:fb:8e:f2:d7:d0:
79:7e:cb:9a:ab:f3:41:ae:28:bf:c0:8b:72:5e:ab:e3:32:38:
a4:5b:51:7b:d5:6a:b2:df:54:bc:6e:6f:ca:63:fc:af:2c:84:
44:74:97:08:aa:1b:de:e9:01:56:83:c4:62:fe:4e:7d:1d:6d:
d3:e0:06:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:44:38 2026 by rpki-client