Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
File: hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft (raw, json)
Hash identifier: lmdQ2l5l2I+y1e6d3jkOVH9+GjNAJsmeTiXf/TKPV8Q=
Subject key identifier: 3B:3E:E8:E4:3F:0B:F1:31:0B:E2:43:5A:0A:BD:F0:52:C7:1E:11:52
Authority key identifier: 84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
Certificate issuer: /CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Certificate serial: 019D254C5308B797A708E6A806121FED641D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
Manifest number: 1339
Signing time: Wed 25 Mar 2026 14:00:52 +0000
Manifest this update: Wed 25 Mar 2026 14:00:52 +0000
Manifest next update: Thu 26 Mar 2026 14:00:52 +0000
Files and hashes: 1: hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl (hash: SZAqqj9YSo+ggl1UPKr4B67snwf2hSn44Epi9qfmkik=)
2: zJjfRJOT22lkDtk4Md7fI6mwZxg.roa (hash: hqAeygJ8Uol5cY/fADfXwnwvoVyU7MDQFKGg1laAxik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:53:08:b7:97:a7:08:e6:a8:06:12:1f:ed:64:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Validity
Not Before: Mar 25 14:00:52 2026 GMT
Not After : Mar 26 14:00:52 2026 GMT
Subject: CN=3b3ee8e43f0bf1310be2435a0abdf052c71e1152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3c:fb:de:07:ea:5e:38:a4:80:89:b7:25:6b:
e2:16:70:df:f9:62:80:41:85:0d:14:e8:28:fd:33:
92:c7:75:dc:ca:6b:8c:cc:a6:b7:ed:30:f7:a8:4b:
3f:63:e3:c2:6a:6e:1a:75:70:61:8b:ac:20:67:cc:
e1:8e:02:4e:05:1a:7d:5e:23:01:c8:3f:af:f2:c0:
bd:28:40:d5:e8:7a:3e:6e:fc:62:fe:d9:00:2f:dd:
36:db:6f:17:31:47:c6:6d:4b:d8:9c:94:f1:6c:ef:
78:6c:dd:f8:59:c1:65:35:31:97:58:d5:37:cb:7d:
a8:df:8f:c9:92:3f:2d:b3:73:c4:48:e0:b0:3e:50:
d3:18:5c:29:a4:f3:da:a8:64:62:0f:d8:68:81:a6:
f7:6b:6b:31:17:e7:e3:35:53:0c:de:0a:49:32:9f:
87:a8:91:10:6f:14:ca:0b:02:89:d4:4c:c7:d7:4f:
8c:f8:b1:e1:39:01:4d:e7:5d:e4:f9:a8:59:a5:f6:
9e:c7:b6:ee:2e:c9:f7:8e:24:40:b3:32:9c:20:7e:
f0:94:b6:d8:4b:2c:71:51:63:2c:34:92:f3:ef:49:
ba:73:f6:7e:be:4a:ed:36:b4:00:00:1d:d3:20:75:
89:3e:53:ba:85:2b:e3:9d:0b:36:33:50:cc:86:dc:
4a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3E:E8:E4:3F:0B:F1:31:0B:E2:43:5A:0A:BD:F0:52:C7:1E:11:52
X509v3 Authority Key Identifier:
keyid:84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:25:75:9d:49:ff:ce:e3:96:ef:ae:ef:70:cd:9f:b7:a3:b1:
1b:e4:34:30:cd:df:40:d6:c8:ad:bc:37:ac:06:8a:7a:b0:d6:
bd:78:0f:20:1e:6d:60:c7:bb:3a:40:da:f6:96:c6:3f:a0:88:
8c:03:d5:74:d5:e6:f2:f9:d3:94:40:76:b1:24:e9:cc:89:61:
ad:28:6d:49:fd:06:dc:09:17:b4:8f:13:2d:ef:95:98:3c:a3:
b2:35:6a:ce:e4:56:e4:21:5d:82:0c:c7:fb:7c:af:8b:6a:7a:
bd:77:2c:4b:46:5f:00:03:43:a4:da:da:40:a0:b8:cf:41:5e:
31:86:18:17:c3:41:0a:b7:fe:2d:e3:58:96:e4:74:19:5a:41:
8f:43:dd:45:46:88:9b:0a:36:d3:e5:4f:58:e8:e0:5a:90:76:
4a:90:44:19:e2:c2:f4:57:49:09:0e:d1:40:96:ea:a3:63:13:
b9:c8:fa:69:0c:a6:13:fb:3b:48:e6:74:4a:d5:63:0c:36:2b:
a4:6b:5f:e5:2b:81:38:29:c9:88:91:f5:a9:e2:62:3b:65:dc:
a2:66:be:67:2a:70:64:4f:48:72:d4:10:12:aa:aa:c9:20:b5:
20:d2:98:a2:fd:eb:58:cf:0c:71:04:67:4b:bb:f9:c2:f0:23:
07:f5:12:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:53 2026 by rpki-client