Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
File: hP-lQvPYybB7926uioaYWj17Tcc.mft (raw, json)
Hash identifier: APYg8+CYn505DJYDgFjaLANkm1Npx+kXutPJLjJZR8U=
Subject key identifier: D0:AE:36:D9:7D:2E:AC:94:D5:C3:16:8C:52:69:F4:B2:DC:74:E2:B4
Authority key identifier: 84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
Certificate issuer: /CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Certificate serial: 019D26CCF9E5C139BE960EF3B56CF45523A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
Manifest number: 124F
Signing time: Wed 25 Mar 2026 21:01:00 +0000
Manifest this update: Wed 25 Mar 2026 21:01:00 +0000
Manifest next update: Thu 26 Mar 2026 21:01:00 +0000
Files and hashes: 1: 0Esi1JdAsAMlcmdtnGTaonQpuF8.roa (hash: jA0reA7/GEa0j86CVpuQcx390RyaeWC5ePIdBFA+M1E=)
2: hP-lQvPYybB7926uioaYWj17Tcc.crl (hash: AYqkexVeGUZuNfM9xOg+CCVBEtLEkK4HldYeqWHAoxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:f9:e5:c1:39:be:96:0e:f3:b5:6c:f4:55:23:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Validity
Not Before: Mar 25 21:01:00 2026 GMT
Not After : Mar 26 21:01:00 2026 GMT
Subject: CN=d0ae36d97d2eac94d5c3168c5269f4b2dc74e2b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:45:ea:d1:48:49:70:ba:07:6a:17:b6:8f:e8:
db:30:89:26:ac:4d:17:fd:4b:44:ec:b6:b1:ba:b8:
30:24:09:83:d1:f1:77:60:01:b9:37:2e:e4:79:9a:
c8:42:bf:16:a7:af:08:db:59:04:58:93:bc:1b:d1:
08:50:af:48:21:33:be:c3:e6:ab:0f:50:84:26:4b:
9a:c0:31:5b:e9:27:64:fd:74:f5:21:eb:15:ea:46:
01:38:d5:9f:f9:e1:6e:18:92:28:42:a8:31:73:c1:
ff:f0:4a:d2:1d:1a:e0:7c:17:47:1c:fd:24:36:a1:
39:17:35:f8:27:63:76:8e:a9:64:73:9e:88:e3:b4:
ab:97:fc:ca:8a:a8:30:bd:52:5c:9d:8f:66:52:17:
23:67:08:3b:3f:ed:a9:40:9a:76:ee:67:4a:fb:05:
85:b2:27:ee:7c:31:7a:82:e2:3b:52:09:bf:32:e8:
9e:81:ee:36:82:5e:ac:3b:01:ce:3e:34:11:4c:a1:
84:54:15:b1:40:c0:d8:94:fd:47:c3:6f:a6:03:4a:
2f:c8:ec:80:2d:12:9e:2e:ab:5a:83:f6:51:4e:d3:
0c:89:22:89:1d:c1:c9:43:30:2c:a4:81:5d:29:4b:
2e:c2:41:05:74:df:39:8f:18:f9:5b:fb:0b:d4:64:
e5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:AE:36:D9:7D:2E:AC:94:D5:C3:16:8C:52:69:F4:B2:DC:74:E2:B4
X509v3 Authority Key Identifier:
keyid:84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:b4:7f:9e:1c:5b:71:f6:fc:92:0d:60:aa:0a:59:ac:35:4a:
8a:8f:91:5d:4a:5d:27:3f:fd:ac:56:77:dc:08:6d:3e:72:a6:
fb:c3:f3:d9:5c:d7:98:78:b1:d4:ea:14:bb:9e:bb:b8:8d:cc:
a6:0e:73:aa:be:0f:42:f6:a9:e2:3a:11:d3:f1:72:8e:8d:c7:
02:40:3f:c4:ef:aa:26:8e:8b:2a:35:15:55:85:8b:ab:fd:c3:
bb:d7:87:4d:c2:f9:7f:5a:04:a8:ff:1b:f0:62:f7:0d:3c:80:
0d:b3:f8:e5:db:58:49:67:d4:cf:32:67:9a:c8:e9:e8:60:c0:
02:7c:92:eb:e1:92:a5:30:28:c1:ed:88:b8:6c:9a:53:ec:7d:
8d:0a:43:d2:fc:42:0f:1b:2a:e3:7d:91:45:54:ae:cf:4d:dd:
01:4f:95:2f:2c:43:3c:c4:79:ba:86:68:c9:e9:a0:bf:e1:26:
89:87:94:b3:2c:21:77:d2:a7:50:7d:d8:92:98:e2:bd:eb:d5:
08:00:1a:c8:4c:ea:73:f8:cc:99:d6:97:23:1a:22:ad:87:19:
95:c2:b2:15:72:ab:34:26:a7:ff:9a:0f:56:18:5b:f2:05:c8:
b1:33:7d:6b:f6:ac:d9:00:b2:af:d4:b5:ad:18:4a:08:2f:d1:
3d:b7:f6:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:19:40 2026 by rpki-client