Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
File: hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft (raw, json)
Hash identifier: JCbBxP+sKTaAgqlvCI8GGlCNbMwqnhHjCTadmGwCGas=
Subject key identifier: 8B:75:09:97:E0:9B:A4:1D:17:48:47:6E:5C:A6:7F:F9:BB:2A:D3:C9
Authority key identifier: 86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
Certificate issuer: /CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Certificate serial: 019D2704B4894FEB719BA89761923BC1CAEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
Manifest number: 8E
Signing time: Wed 25 Mar 2026 22:01:52 +0000
Manifest this update: Wed 25 Mar 2026 22:01:52 +0000
Manifest next update: Thu 26 Mar 2026 22:01:52 +0000
Files and hashes: 1: PnZoP9c_MUx8bGVjWDH4QemT8Oc.roa (hash: N/n/c2ZTM9Bt63EXnz2HQd3THkOEOxgNYjeKCIXt71Y=)
2: hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl (hash: tvPKkj+US2ZEzmKHR6uG2Qif4iYEwPeu3bpUH95w3/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:b4:89:4f:eb:71:9b:a8:97:61:92:3b:c1:ca:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Validity
Not Before: Mar 25 22:01:52 2026 GMT
Not After : Mar 26 22:01:52 2026 GMT
Subject: CN=8b750997e09ba41d1748476e5ca67ff9bb2ad3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:60:09:06:1f:e9:ae:ac:17:77:86:ae:e8:00:
37:c6:52:b2:ff:4e:fc:43:dc:f4:1e:7c:de:7c:f3:
9d:48:79:84:73:e7:7e:71:b5:0e:78:89:c3:8f:c6:
16:f8:a0:7f:1b:aa:38:6d:df:37:a1:4f:ce:9a:be:
d3:8d:4e:d5:6b:50:90:b1:ae:68:2e:35:dd:37:9a:
bf:3e:f3:24:18:95:54:63:77:a6:dd:29:11:e0:e3:
eb:21:53:ce:55:ca:42:f0:65:d9:7d:28:70:81:6b:
b4:59:e5:25:ae:57:74:4f:49:6f:49:55:6b:a4:a0:
76:c4:c6:8c:65:7f:ec:84:75:c9:ca:eb:0b:f8:25:
97:84:f1:1f:0b:7b:5a:43:66:8d:f4:11:63:e7:ab:
74:92:3b:e8:16:ef:f5:c6:45:5a:54:05:3c:24:0f:
85:bf:22:cb:24:2d:04:8b:af:4d:97:08:e8:34:74:
5b:99:8a:e6:32:33:3a:fe:85:0c:fb:2a:31:48:b6:
e4:41:7d:c0:7f:0b:a1:67:ed:0b:7a:77:92:88:ac:
0e:cc:db:e0:d2:cc:9b:36:e1:4c:06:5d:cb:e8:48:
d0:9a:73:e3:93:99:a2:5a:d7:16:bf:64:37:fc:5a:
7a:0a:d4:ee:b6:6d:ce:77:a5:c2:3e:2e:7d:72:5c:
d1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:75:09:97:E0:9B:A4:1D:17:48:47:6E:5C:A6:7F:F9:BB:2A:D3:C9
X509v3 Authority Key Identifier:
keyid:86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:00:3f:89:61:d0:d1:55:be:30:9c:ab:5a:19:09:da:da:0a:
37:7f:4b:08:d5:6b:94:13:eb:97:99:42:35:eb:bd:a6:cf:ab:
5f:f5:32:b2:c1:08:cf:1a:99:6f:01:8a:3d:ab:d3:54:45:e1:
13:a6:c6:3c:86:cb:f3:5b:e8:39:8d:c0:3d:e2:a4:23:c8:92:
8d:44:ed:28:fb:fd:b1:b3:ea:ea:5c:66:9f:37:73:1e:40:2a:
02:ec:e0:e1:78:dc:46:89:69:04:5c:79:16:8d:a4:6e:82:14:
12:51:de:1c:11:b7:b8:2d:33:fd:f4:13:87:9f:72:22:a9:07:
b6:6a:0b:8b:64:a1:17:66:98:3d:77:eb:53:3a:76:bc:cf:0e:
f2:24:c8:aa:d5:e1:b9:4b:b4:0b:00:3e:8a:e0:0b:50:e9:76:
05:5c:07:93:16:34:fe:e4:90:5c:a1:c7:c8:a0:1e:ca:f7:21:
59:74:5f:d4:d2:9e:8c:f2:31:59:45:e3:41:fd:5e:48:39:07:
74:06:89:6a:b7:09:13:ca:21:53:2d:bb:23:d2:10:10:4f:40:
0a:2e:3b:d1:1c:d7:fd:a1:5f:25:ff:4c:06:8f:04:15:12:58:
43:ef:75:3f:fd:cb:c9:73:26:da:9f:4a:df:ce:01:c7:8f:64:
cb:89:c5:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:22:59 2026 by rpki-client