Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
File: hnkOzbhqxvqivMfusg0nTPpGULA.mft (raw, json)
Hash identifier: lPs8UZuXE7TibZw1Ue3Fkecm7GGwBUTePN9+hIqonaQ=
Subject key identifier: 78:2B:98:CB:7A:F9:31:BD:54:F3:B1:DE:84:08:7B:3E:5C:D2:E6:8B
Authority key identifier: 86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0
Certificate issuer: /CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0
Certificate serial: 019D33760A17F61E4B98E223ABF826ABA744
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
Manifest number: 0266
Signing time: Sat 28 Mar 2026 08:01:07 +0000
Manifest this update: Sat 28 Mar 2026 08:01:07 +0000
Manifest next update: Sun 29 Mar 2026 08:01:07 +0000
Files and hashes: 1: 2dAucBc06xa-RSOd-82T94ffkQs.roa (hash: qBoTXVzjJUJQzxt6M9jxa+Sec2XF+7kt7/vpuSj2zhw=)
2: hnkOzbhqxvqivMfusg0nTPpGULA.crl (hash: B+ad268w2RlKiG1o3vIkx0o9/bMXFFuz7rhJy+FFNck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 08:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:76:0a:17:f6:1e:4b:98:e2:23:ab:f8:26:ab:a7:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0
Validity
Not Before: Mar 28 08:01:07 2026 GMT
Not After : Mar 29 08:01:07 2026 GMT
Subject: CN=782b98cb7af931bd54f3b1de84087b3e5cd2e68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:f4:ac:38:1c:21:35:18:f4:e0:1c:ca:1c:
43:d3:08:58:ef:a1:f5:e8:b8:83:a6:95:af:71:36:
35:2f:10:0f:fd:a0:71:0d:6b:9c:48:a8:3d:b4:25:
81:a3:27:31:f5:0b:4a:61:fd:b1:a1:02:7e:c1:e3:
2d:36:cf:5c:6a:2b:40:ff:5a:aa:2c:2b:b8:a0:44:
b1:8f:48:85:10:17:07:e5:43:ec:4f:98:90:2f:78:
68:dc:c6:3f:a4:be:2a:45:8c:16:b6:e1:b9:72:4d:
19:0e:02:c0:b6:71:fd:f9:69:dc:4b:ea:02:9a:a6:
1d:3d:39:f3:f7:56:a6:2c:82:86:5f:eb:bd:ba:f6:
2b:09:dc:ea:90:e9:55:45:3b:16:f6:db:72:c9:34:
84:9c:ab:e0:34:cf:d7:e4:c6:4e:ef:45:67:3d:fd:
aa:0c:e9:af:82:24:f8:2d:f7:30:01:e0:a7:7b:21:
e3:c6:a8:d4:e6:2d:08:38:f6:6c:01:0d:59:27:08:
9f:e7:51:b0:9c:c2:b9:d7:ea:4f:3f:19:1e:ef:c0:
40:de:04:a7:65:4f:cb:f6:d4:4b:06:58:ac:29:47:
58:69:92:f1:c2:c1:7f:ce:1e:83:0d:06:5e:28:30:
11:31:f8:b0:8d:c7:1d:83:03:a6:74:b0:20:3f:54:
89:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2B:98:CB:7A:F9:31:BD:54:F3:B1:DE:84:08:7B:3E:5C:D2:E6:8B
X509v3 Authority Key Identifier:
keyid:86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:35:b3:12:13:98:eb:0f:6e:54:35:18:b6:c8:54:12:12:92:
e8:23:50:2b:f2:13:b7:5d:ab:0f:63:07:c2:db:1d:c9:ef:0d:
79:15:31:9d:ad:66:b0:5f:c1:d0:93:4c:d0:81:30:97:12:67:
49:16:d5:3c:1c:93:3f:f1:e2:77:c9:fd:c9:2d:2f:8b:19:4d:
84:47:34:ab:6c:18:bb:9d:0e:68:45:1b:43:7f:05:aa:29:7c:
fe:ca:c8:dd:6d:cf:00:f4:30:fb:d9:c1:89:4b:c2:31:0c:53:
5f:0e:cb:59:4a:d7:c7:38:34:fb:bb:a3:61:03:5d:2f:13:aa:
a2:ec:d0:1d:07:31:61:5c:f5:4f:c4:76:96:8a:4a:69:63:af:
91:88:45:67:d1:7b:6b:bc:27:a0:fc:69:1b:39:e7:e2:0c:ac:
43:fb:b4:b7:80:93:53:da:35:d3:19:23:9e:be:18:08:48:6c:
48:b1:db:4c:7d:25:32:0e:fe:ca:e1:08:05:35:92:40:43:cc:
3e:66:5b:c7:4e:c7:68:c9:97:48:fe:ce:dd:bc:49:9a:49:46:
d5:bf:2b:d9:df:bb:84:c6:52:eb:89:76:fb:f6:ce:31:80:33:
68:7a:d5:cc:81:7f:36:92:c2:a0:3b:23:28:90:21:03:1a:86:
62:72:a0:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:26 2026 by rpki-client