Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
File: HzPIww-60mD0qd98O1IGahp7TtU.mft (raw, json)
Hash identifier: FLtGgbpAXNCcKOue79urQWCqGra/hfYoIfC1CBnV/pY=
Subject key identifier: 51:DD:0C:B2:B7:B2:42:96:CD:9A:89:7C:0D:30:76:21:1B:49:05:39
Authority key identifier: 1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
Certificate issuer: /CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Certificate serial: 019D27DF598E5E5C6F3E78A51E4F258B1C2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
Manifest number: 0245
Signing time: Thu 26 Mar 2026 02:00:41 +0000
Manifest this update: Thu 26 Mar 2026 02:00:41 +0000
Manifest next update: Fri 27 Mar 2026 02:00:41 +0000
Files and hashes: 1: HzPIww-60mD0qd98O1IGahp7TtU.crl (hash: 6RZD1GMV+x+8PYvBcrUo93wMM+GdqGh/d69UXtvarlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:59:8e:5e:5c:6f:3e:78:a5:1e:4f:25:8b:1c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Validity
Not Before: Mar 26 02:00:41 2026 GMT
Not After : Mar 27 02:00:41 2026 GMT
Subject: CN=51dd0cb2b7b24296cd9a897c0d3076211b490539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c4:5a:a6:b2:6b:1d:ce:d0:53:af:68:74:ea:
a3:2d:2b:f2:3c:fc:0a:b0:55:43:5a:db:74:04:4f:
ee:22:a4:6e:47:4d:ed:a8:65:93:96:43:50:08:27:
ee:d4:fa:88:38:dc:1a:60:36:8f:5a:70:b5:56:b3:
9b:0e:98:d3:70:20:8a:04:1a:ad:22:56:aa:96:78:
5c:e9:89:24:8d:1f:02:27:83:7b:24:69:06:ec:d1:
8b:cb:d2:21:24:df:7a:85:49:63:7c:e6:ed:f8:04:
65:f9:97:0b:a3:73:97:cd:80:18:4c:51:09:e3:98:
40:ee:82:c7:40:5a:d3:6e:90:1f:13:8b:b0:dd:65:
94:72:21:61:c6:41:5e:03:d3:60:78:65:57:a4:bc:
aa:9b:54:81:0f:c3:4c:a4:a5:76:1c:f0:54:86:76:
34:e4:26:78:76:dd:a3:61:19:72:be:de:ec:71:22:
2f:a9:a3:f5:d4:13:34:47:b0:84:89:52:c2:12:8a:
e5:5e:ab:71:14:02:d4:ff:fb:81:77:4e:2f:cf:ef:
6f:a9:d6:90:e5:b8:63:a9:87:1b:54:97:0a:84:46:
6f:df:e7:11:99:7b:43:5c:f0:70:c4:25:a9:4f:67:
ba:84:76:09:7d:8c:18:3c:dd:3c:03:bd:04:ce:09:
d9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DD:0C:B2:B7:B2:42:96:CD:9A:89:7C:0D:30:76:21:1B:49:05:39
X509v3 Authority Key Identifier:
keyid:1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:27:fe:e7:24:24:84:1d:44:4b:8e:55:27:b0:9d:51:30:26:
c1:8c:f0:81:fb:f1:cc:8c:0a:70:a6:08:e0:21:48:14:c4:71:
e6:87:65:e4:6b:d2:cf:91:1b:a6:f1:66:06:38:d8:f1:1e:a6:
81:15:a1:dd:da:f5:35:39:eb:03:17:0f:89:b3:23:69:60:fd:
8f:f4:f8:c9:93:16:95:47:7e:b0:c5:7b:29:e1:18:a6:ad:a6:
53:b7:fa:65:96:c0:83:b5:6f:7e:1c:6a:02:b0:93:9a:33:e8:
88:da:26:ee:0c:a0:18:e4:f7:8a:3b:22:44:24:5d:02:98:43:
51:a5:9c:ae:c3:b4:5a:b8:79:d2:4a:ab:32:6a:25:97:2b:52:
95:37:3e:fb:8d:1b:f4:ec:7e:99:0f:c4:9b:2c:f0:8e:f7:69:
f2:01:ed:55:0b:fc:c4:d1:5d:21:8e:66:44:c4:d9:33:1d:8f:
e3:b2:b3:0f:58:71:60:9d:9a:56:8d:9a:00:0c:81:60:ca:c4:
10:f5:81:39:28:78:bb:21:01:f4:b7:49:1e:53:ed:3e:7f:fc:
22:ac:ff:6c:57:38:7f:16:1b:b7:19:ab:6d:cc:56:9e:5b:4b:
e2:6a:e6:c9:10:f6:75:c3:65:da:fa:47:16:ad:73:66:09:99:
cf:b4:57:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n31mOXlxvPnilHk8lixwuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMzNjOGMzMGZiYWQyNjBmNGE5ZGY3YzNiNTIwNjZhMWE3
YjRlZDUwHhcNMjYwMzI2MDIwMDQxWhcNMjYwMzI3MDIwMDQxWjAzMTEwLwYDVQQD
Eyg1MWRkMGNiMmI3YjI0Mjk2Y2Q5YTg5N2MwZDMwNzYyMTFiNDkwNTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMRaprJrHc7QU69odOqjLSvyPPwK
sFVDWtt0BE/uIqRuR03tqGWTlkNQCCfu1PqIONwaYDaPWnC1VrObDpjTcCCKBBqt
Ilaqlnhc6YkkjR8CJ4N7JGkG7NGLy9IhJN96hUljfObt+ARl+ZcLo3OXzYAYTFEJ
45hA7oLHQFrTbpAfE4uw3WWUciFhxkFeA9NgeGVXpLyqm1SBD8NMpKV2HPBUhnY0
5CZ4dt2jYRlyvt7scSIvqaP11BM0R7CEiVLCEorlXqtxFALU//uBd04vz+9vqdaQ
5bhjqYcbVJcKhEZv3+cRmXtDXPBwxCWpT2e6hHYJfYwYPN08A70EzgnZuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFHdDLK3skKWzZqJfA0wdiEbSQU5MB8GA1UdIwQY
MBaAFB8zyMMPutJg9KnffDtSBmoae07VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9lYWRlOTgtNGUxZC00Yzk4LTg1MDkt
MTM0NDE1ZmUxNWQwLzEvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS9lYWRlOTgtNGUxZC00Yzk4LTg1MDktMTM0NDE1ZmUxNWQw
LzEvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbif+5yQk
hB1ES45VJ7CdUTAmwYzwgfvxzIwKcKYI4CFIFMRx5odl5GvSz5EbpvFmBjjY8R6m
gRWh3dr1NTnrAxcPibMjaWD9j/T4yZMWlUd+sMV7KeEYpq2mU7f6ZZbAg7Vvfhxq
ArCTmjPoiNom7gygGOT3ijsiRCRdAphDUaWcrsO0Wrh50kqrMmollytSlTc++40b
9Ox+mQ/Emyzwjvdp8gHtVQv8xNFdIY5mRMTZMx2P47KzD1hxYJ2aVo2aAAyBYMrE
EPWBOSh4uyEB9LdJHlPtPn/8Iqz/bFc4fxYbtxmrbcxWnltL4mrmyRD2dcNl2vpH
Fq1zZgmZz7RXBw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:51:47 2026 by rpki-client