Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json)
Hash identifier: UUUJGKdZCeD/etYlN7Jeji0b75u4wXHvX8rJYQv2/E0=
Subject key identifier: C5:B7:73:AB:FB:2C:AD:84:2B:92:04:6F:BA:39:50:57:C2:EA:3B:A3
Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Certificate serial: 019D27E064673763943255EA1CF6C18D578C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
Manifest number: 02EA
Signing time: Thu 26 Mar 2026 02:01:50 +0000
Manifest this update: Thu 26 Mar 2026 02:01:50 +0000
Manifest next update: Fri 27 Mar 2026 02:01:50 +0000
Files and hashes: 1: GoJ7p5byconiGncMqRmL8LXgnE8.roa (hash: ZMKph7pEjMlyasEu5eXgJpQBIoAaFlANMUUEAZTh0+E=)
2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: fdoim271amA+7tBqxCm4lx1lQ3Kya3r8UgNwZubXDOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:64:67:37:63:94:32:55:ea:1c:f6:c1:8d:57:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Validity
Not Before: Mar 26 02:01:50 2026 GMT
Not After : Mar 27 02:01:50 2026 GMT
Subject: CN=c5b773abfb2cad842b92046fba395057c2ea3ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:eb:79:46:ca:75:e9:4c:0b:d0:e6:49:cf:b0:
56:61:88:bd:13:f3:a7:46:31:92:66:d4:fb:44:1c:
b8:27:de:21:a3:0b:b8:eb:52:1b:f1:15:a4:1f:76:
f0:08:87:b0:6b:bb:c2:87:ef:dd:08:60:ad:c4:2a:
04:72:85:22:a0:ba:e0:fd:29:9d:16:d8:9d:0a:43:
9b:58:64:5e:58:95:6b:86:ba:64:ec:8c:fa:c3:26:
ae:66:3b:a3:b2:7a:26:11:21:56:59:75:03:82:65:
ba:ed:dd:ee:8b:06:ba:51:1b:fc:66:6e:4b:b8:d4:
52:41:01:cf:79:85:20:28:b5:35:25:c4:60:66:7c:
2d:86:89:ce:37:bf:5f:d2:2c:23:1c:fc:32:dd:11:
0d:8d:b6:98:cc:98:86:2d:bf:7e:a4:91:57:b5:42:
58:58:c1:ba:85:fb:be:d0:fc:f7:bd:dd:99:fc:92:
c3:bd:99:6a:f4:24:d4:7c:5f:b7:0c:b5:f5:1b:be:
5c:0d:6e:2c:d6:4b:ee:e0:d2:93:5c:4d:b3:ce:6c:
53:9a:af:d8:d8:75:33:bd:24:d5:02:97:68:71:b6:
41:82:e5:e5:8c:c4:4f:ed:6e:d1:78:80:df:5b:62:
43:29:fa:54:47:5d:85:ec:4f:e9:08:76:62:fb:d8:
2b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B7:73:AB:FB:2C:AD:84:2B:92:04:6F:BA:39:50:57:C2:EA:3B:A3
X509v3 Authority Key Identifier:
keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:51:9b:4b:12:ba:50:be:f8:dc:cd:73:91:bc:68:4e:39:30:
ad:73:bf:2c:31:c8:9c:32:12:05:47:f7:b4:e5:d0:a6:4e:f4:
95:06:94:fc:e2:98:2c:cb:13:bb:a8:d4:66:e7:8d:76:e2:5c:
8f:ca:6c:33:1c:9e:6e:dd:c3:43:53:c5:8a:ae:ec:d0:13:a9:
cd:d4:27:5f:9e:1a:6a:95:fa:b0:a6:89:22:bb:76:f4:91:12:
d5:af:68:d4:b1:78:34:37:12:83:5f:c4:45:7f:cd:37:e6:b4:
df:86:27:4b:7a:45:08:ee:ea:dc:b1:51:d4:55:14:4f:ec:85:
c6:25:04:27:d7:8d:fe:94:c7:45:b9:c6:db:98:d6:eb:51:92:
7b:ab:8b:51:4d:ca:9e:4d:31:19:8c:84:5c:dc:26:c7:68:0c:
be:9d:a0:1c:43:f3:e0:ef:78:78:a5:74:36:7e:de:0a:d0:e0:
90:1d:61:0b:ec:a0:18:d3:22:89:2c:23:70:f7:19:04:b1:c9:
3f:d2:ce:bf:19:fd:e5:a3:25:e2:e4:d5:0d:ee:ea:f7:1d:7c:
f0:82:86:92:55:f5:2d:81:0b:61:c3:e1:ba:a5:37:42:69:d1:
ec:97:e5:45:34:5d:9d:50:36:30:0c:d9:69:6f:86:a5:97:6c:
8a:b5:f8:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:56:38 2026 by rpki-client