Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
File: hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft (raw, json)
Hash identifier: 9fyieltvBEgtLJt2rSya1bOJAjHpaNIYrDDa1E05hH4=
Subject key identifier: BC:72:93:C6:04:AA:7F:E0:10:6E:09:FC:2B:FF:B7:B6:9B:45:6F:9B
Authority key identifier: 86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
Certificate issuer: /CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Certificate serial: 019E2023DCC5CC1AFEA442321DC2550FEB94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
Manifest number: 010F
Signing time: Wed 13 May 2026 07:01:21 +0000
Manifest this update: Wed 13 May 2026 07:01:21 +0000
Manifest next update: Thu 14 May 2026 07:01:21 +0000
Files and hashes: 1: PnZoP9c_MUx8bGVjWDH4QemT8Oc.roa (hash: N/n/c2ZTM9Bt63EXnz2HQd3THkOEOxgNYjeKCIXt71Y=)
2: hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl (hash: tGHADfzIzmOZ1vkhR+xGtCejULqB3u8BKtG0Mp45HQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:dc:c5:cc:1a:fe:a4:42:32:1d:c2:55:0f:eb:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Validity
Not Before: May 13 07:01:21 2026 GMT
Not After : May 14 07:01:21 2026 GMT
Subject: CN=bc7293c604aa7fe0106e09fc2bffb7b69b456f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7d:5c:4b:7d:3f:df:2f:0b:b4:f9:28:61:18:
fd:61:dc:f2:b5:8c:43:53:53:7d:0f:b2:d5:17:62:
a3:b6:14:91:8a:cd:fd:a5:42:8a:6b:83:e7:30:6b:
15:8a:cf:38:d0:50:c8:9d:a0:84:91:52:6f:e6:da:
44:07:fd:d6:2b:4a:71:a2:24:43:a1:57:fb:81:50:
00:38:7f:62:c1:dc:65:c7:34:04:54:43:b5:22:f1:
79:7c:a8:62:20:05:44:a5:7b:fa:7d:4d:e3:a9:15:
80:db:b6:d1:7f:3f:21:40:29:e9:2c:14:00:ac:2d:
03:ea:3e:50:de:5f:ee:89:f5:30:9f:6d:1b:42:a8:
d8:f4:0c:62:32:e8:9e:69:80:fe:0f:c2:0b:41:76:
9d:1a:ef:f7:69:ba:87:78:c6:b3:04:72:9d:42:41:
60:95:30:be:d8:6f:6d:0b:3c:ec:34:d3:f1:0e:25:
cb:59:28:a7:0d:d9:4f:ec:3a:1c:f9:a4:af:4a:63:
ba:c8:06:40:9e:79:90:1f:b9:2a:a7:a4:80:f8:15:
79:50:01:eb:d1:5a:86:39:3e:93:e2:9d:37:1c:36:
fd:f6:c0:a6:ca:46:42:ca:42:c8:67:57:9c:1b:42:
b9:69:93:9c:d6:38:14:36:d4:23:13:af:cc:d4:f0:
96:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:72:93:C6:04:AA:7F:E0:10:6E:09:FC:2B:FF:B7:B6:9B:45:6F:9B
X509v3 Authority Key Identifier:
keyid:86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:ab:c4:59:48:62:37:b7:f8:e4:8e:39:9f:3d:25:6f:81:5f:
c5:6d:2a:7b:f6:ca:db:46:0b:c2:ba:c8:1b:ad:03:75:0c:fd:
90:1e:78:11:91:00:1a:45:3d:46:f0:a7:b3:40:be:bc:23:f5:
b7:96:5d:a4:2f:75:5a:ac:97:dd:e7:76:26:ab:ca:4a:cf:aa:
f5:70:9f:49:82:fc:5b:2f:34:63:f8:48:0d:88:fc:d1:3c:20:
8e:81:7b:e9:f6:17:2c:66:33:54:1f:1a:b6:12:57:b9:44:ca:
ba:ca:63:da:22:04:12:1f:fa:32:66:77:bf:f4:75:7f:c3:c8:
cf:90:5b:63:09:de:b9:d5:97:00:71:fb:f2:e8:24:29:be:99:
d6:77:28:b5:e9:f9:f8:e3:f1:71:ee:cb:75:76:5c:23:fa:74:
86:bb:c2:f5:27:f6:17:fa:7b:83:68:5e:bb:f7:f5:73:09:3b:
73:9f:5c:81:c9:4c:6a:63:be:88:92:42:fc:b0:e0:97:21:70:
7a:55:b1:7c:12:0e:7a:26:6b:3f:44:86:aa:ee:ab:f0:01:b4:
3a:74:45:94:df:87:15:85:87:2a:e8:44:7f:3c:a6:c8:72:87:
45:cd:95:af:08:d1:5e:9f:0c:6d:11:cc:02:7d:5e:6c:a7:b6:
00:0f:b6:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gI9zFzBr+pEIyHcJVD+uUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2N2IzMzdjZTRjMzRmZWI0YTcxZmZmODU1OWU1ZTRjOThl
NDJiMDAwHhcNMjYwNTEzMDcwMTIxWhcNMjYwNTE0MDcwMTIxWjAzMTEwLwYDVQQD
EyhiYzcyOTNjNjA0YWE3ZmUwMTA2ZTA5ZmMyYmZmYjdiNjliNDU2ZjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp31cS30/3y8LtPkoYRj9YdzytYxD
U1N9D7LVF2KjthSRis39pUKKa4PnMGsVis840FDInaCEkVJv5tpEB/3WK0pxoiRD
oVf7gVAAOH9iwdxlxzQEVEO1IvF5fKhiIAVEpXv6fU3jqRWA27bRfz8hQCnpLBQA
rC0D6j5Q3l/uifUwn20bQqjY9AxiMuieaYD+D8ILQXadGu/3abqHeMazBHKdQkFg
lTC+2G9tCzzsNNPxDiXLWSinDdlP7Doc+aSvSmO6yAZAnnmQH7kqp6SA+BV5UAHr
0VqGOT6T4p03HDb99sCmykZCykLIZ1ecG0K5aZOc1jgUNtQjE6/M1PCWHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLxyk8YEqn/gEG4J/Cv/t7abRW+bMB8GA1UdIwQY
MBaAFIZ7M3zkw0/rSnH/+FWeXkyY5CsAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG5zemZPVERULXRLY2ZfNFZaNWVUSmprS3dBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9lMjc5ZjUtNzNkMS00ZmU4LTk3OGQt
OTBhY2ZkYjAxZTkwLzEvaG5zemZPVERULXRLY2ZfNFZaNWVUSmprS3dBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9lMjc5ZjUtNzNkMS00ZmU4LTk3OGQtOTBhY2ZkYjAxZTkw
LzEvaG5zemZPVERULXRLY2ZfNFZaNWVUSmprS3dBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqavEWUhi
N7f45I45nz0lb4FfxW0qe/bK20YLwrrIG60DdQz9kB54EZEAGkU9RvCns0C+vCP1
t5ZdpC91WqyX3ed2JqvKSs+q9XCfSYL8Wy80Y/hIDYj80TwgjoF76fYXLGYzVB8a
thJXuUTKuspj2iIEEh/6MmZ3v/R1f8PIz5BbYwneudWXAHH78ugkKb6Z1ncoten5
+OPxce7LdXZcI/p0hrvC9Sf2F/p7g2heu/f1cwk7c59cgclMamO+iJJC/LDglyFw
elWxfBIOeiZrP0SGqu6r8AG0OnRFlN+HFYWHKuhEfzymyHKHRc2VrwjRXp8MbRHM
An1ebKe2AA+22A==
-----END CERTIFICATE-----
Generated at Wed May 13 12:58:53 2026 by rpki-client