Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json)
Hash identifier: ICo+piACZtL+wQXXT3R5eaTI3IZdc0AaT2oC65vFDuA=
Subject key identifier: 39:79:21:1B:91:FB:C2:0D:3C:5B:9D:F2:53:22:B4:C6:7D:DE:F0:20
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 019D26CD103F5A6CF98492CE99BAC062F2A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
Manifest number: 13F1
Signing time: Wed 25 Mar 2026 21:01:06 +0000
Manifest this update: Wed 25 Mar 2026 21:01:06 +0000
Manifest next update: Thu 26 Mar 2026 21:01:06 +0000
Files and hashes: 1: IprTwL4Amh5zz4RcQ4eoiHW37Ks.roa (hash: dBtfOnRmy0XmcWX3EB1msTLJV31TMXHtHpcj07KafxY=)
2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: kOTWZjVMOk0Af0cQwfRhyWAwaIhearidi7/gvgzBDDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:10:3f:5a:6c:f9:84:92:ce:99:ba:c0:62:f2:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: Mar 25 21:01:06 2026 GMT
Not After : Mar 26 21:01:06 2026 GMT
Subject: CN=3979211b91fbc20d3c5b9df25322b4c67ddef020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:93:15:4d:44:34:fe:b7:c3:86:95:3d:f8:fb:
a9:4f:e4:46:ec:2b:b0:49:04:4a:cc:5f:20:34:e9:
34:c0:06:ce:eb:97:df:8b:07:2a:21:21:78:34:b2:
c7:97:1c:f7:22:bd:3f:8f:8d:d4:53:00:06:82:58:
1e:04:a8:2d:8d:66:a0:3e:fd:e7:f6:1a:fe:77:db:
da:f2:3a:7c:56:c6:00:b4:50:7a:1e:5b:7d:30:48:
57:2e:9b:bc:f4:4e:55:45:90:f8:97:7d:84:4d:df:
1b:3d:a0:7a:ac:e5:1b:c1:bb:30:d0:36:a8:81:c7:
85:55:98:d3:f7:8f:20:ee:64:da:d0:ad:73:aa:c8:
7c:11:da:a2:e7:bc:00:dd:81:01:ab:e4:e6:78:6b:
5a:04:9f:32:88:11:db:64:18:87:14:13:81:24:9a:
bf:60:7f:6b:03:04:47:a0:fb:d7:12:c6:6e:72:1b:
d8:8e:35:7b:f7:4a:4c:81:45:ce:48:09:b8:5a:5c:
f0:3c:c7:e5:14:e2:72:69:d9:da:6c:33:12:b2:5a:
9f:dd:94:eb:9c:71:68:a3:22:e0:2e:63:78:18:41:
5f:93:03:b9:e6:6a:93:19:a3:48:50:a4:f2:16:0a:
cc:fa:e5:d7:e1:47:83:c6:1f:b0:13:56:92:a0:3f:
64:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:79:21:1B:91:FB:C2:0D:3C:5B:9D:F2:53:22:B4:C6:7D:DE:F0:20
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:6f:37:66:fc:d5:45:b3:d5:8d:6e:4f:df:2c:af:c9:ca:13:
40:e1:de:02:d1:fc:41:7e:a6:69:98:9f:46:63:32:e7:8e:f3:
f8:b9:af:44:c2:ad:2f:7b:71:e2:2d:6b:71:4e:69:d6:b2:be:
5d:a0:dd:bf:2d:cb:e5:30:4b:08:7f:13:d6:02:c5:90:81:7a:
9a:5b:d7:85:38:52:40:9b:d6:4f:24:39:c8:60:0e:b8:6c:b4:
f8:11:96:0c:d6:b5:91:07:e0:da:1a:50:53:05:f7:4f:6b:0c:
4a:9a:b0:ee:e7:48:bf:46:50:61:00:a9:c7:70:b8:b4:1c:70:
36:64:b6:a4:9c:61:01:cf:9c:c0:93:85:4e:45:c6:e5:78:6b:
9f:26:66:48:34:0a:aa:1b:e8:b4:74:b9:6e:a0:e1:d3:16:10:
65:84:4c:e6:db:02:06:a4:7a:28:1c:df:1e:77:57:40:1a:d1:
21:87:5f:ea:2d:12:4a:4d:4d:49:9b:17:91:bc:ab:ee:5f:03:
f5:73:79:e5:c0:b6:41:d1:9c:3a:02:3e:cb:cd:3e:e1:86:4c:
a7:a9:11:79:7e:36:94:4b:da:03:04:23:31:bc:06:a1:43:d5:
8f:0a:76:45:73:2c:66:76:79:d6:a0:7d:f3:5b:45:15:44:be:
d7:57:69:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:52 2026 by rpki-client