Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json)
Hash identifier: WZXXIy3jbBLIoa2Q3VYURK8ewKjpWQ9lM5gJTIGw+0E=
Subject key identifier: 15:17:43:E7:57:61:3C:FB:27:E3:78:82:C8:2C:EE:14:A9:62:DD:DE
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 019D2AA99E9538FB003477C40DC22C82167D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 15:00:52 +0000
Manifest this update: Thu 26 Mar 2026 15:00:52 +0000
Manifest next update: Fri 27 Mar 2026 15:00:52 +0000
Files and hashes: 1: CWe5vEns_9KwHrlI6rpUwdcQJOw.roa (hash: l/yJ75s7kv6M8p7mohL9CRN38YLPFa+p+2gPRhc3/4Q=)
2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: bB6IIL9JEtK8uO69Q9/lcVHzUlNjbJIbfoCJ9TG00Sk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:9e:95:38:fb:00:34:77:c4:0d:c2:2c:82:16:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Mar 26 15:00:52 2026 GMT
Not After : Mar 27 15:00:52 2026 GMT
Subject: CN=151743e757613cfb27e37882c82cee14a962ddde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:89:0a:1e:00:7f:10:9a:cd:04:2d:57:74:ed:
89:49:d1:f0:c3:e1:b0:07:64:12:88:97:d2:95:54:
63:b7:9d:d8:ad:54:56:6d:1b:c0:1b:35:fb:1b:cf:
03:ba:f7:92:e0:58:40:1d:9f:31:4d:59:f8:02:b6:
a0:a7:98:76:a1:89:2b:19:e8:5c:eb:df:79:48:77:
24:16:9b:77:79:fb:ec:9e:82:c3:26:7e:d4:28:9b:
f5:65:53:eb:8a:86:49:0d:a5:c6:51:3a:d8:2f:13:
6a:10:47:45:68:08:ca:5f:8b:8e:ec:29:e6:fc:83:
09:fc:13:e5:2a:76:60:ed:4a:9c:15:20:e3:d1:5d:
6c:7f:59:3e:bf:9d:cd:5e:a7:cc:06:24:88:6c:e6:
f8:46:b2:56:03:2a:55:78:9c:19:5e:de:5a:84:69:
ee:6b:a1:72:d6:00:3a:b8:d1:d0:70:ec:ea:88:0d:
fc:82:15:ed:f6:73:81:6f:cd:44:bc:fd:7a:b3:34:
91:01:91:ef:6f:a4:75:9b:34:ed:ce:a8:63:c0:bc:
93:1a:e5:b1:f5:ab:84:c0:8c:50:8c:09:a5:cf:5b:
bd:90:21:21:8f:08:3c:10:a7:1b:01:4c:9b:f8:4d:
65:ad:e4:3e:01:94:25:9d:1c:67:e5:00:11:82:ce:
79:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:17:43:E7:57:61:3C:FB:27:E3:78:82:C8:2C:EE:14:A9:62:DD:DE
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:8f:e5:53:51:43:0e:6b:8d:53:61:5f:55:ae:a8:2a:25:e2:
aa:30:dd:ed:d2:5f:53:21:3b:96:7f:6b:4f:1f:d8:25:f5:04:
ab:d7:4d:12:fa:5e:c9:8c:70:74:97:c6:44:0d:c0:96:a8:38:
c5:17:3a:de:5f:ec:5a:2a:1f:a0:14:81:e4:02:76:b2:22:e7:
81:cb:0f:7c:66:c0:75:cb:a3:97:c6:2c:e4:e3:5a:6f:36:1d:
98:c9:7b:bc:cc:66:c7:e8:4f:59:75:32:4e:13:f6:6c:83:e5:
a8:c7:a8:28:df:a1:51:3a:93:4e:71:93:16:9c:06:10:1d:80:
76:e9:f7:f8:b2:06:f8:b2:98:a0:33:d5:b5:7a:0f:89:78:f6:
71:4a:77:df:f3:7b:58:78:71:75:03:73:16:68:7a:3c:d7:ce:
5c:3f:37:0f:83:d0:44:6a:c2:41:db:4f:05:4c:fa:0a:b0:12:
3c:9a:5a:40:fa:6d:4e:34:b6:b6:45:8f:39:59:89:04:dc:33:
74:65:8a:97:7d:9b:34:aa:56:f6:4d:a3:6b:b7:ae:7f:f6:74:
be:02:7b:7e:26:61:5f:aa:6b:25:ae:89:20:bc:fa:68:51:8d:
b2:d2:91:88:5f:03:7d:b9:63:b9:db:2a:a8:8e:e7:a7:61:a0:
e7:ff:1e:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qqZ6VOPsANHfEDcIsghZ9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YTRhY2EwMjBmYjJiZGM5M2E0NzI2NmU4N2VjNjdjZGM4
ODU3YzUwHhcNMjYwMzI2MTUwMDUyWhcNMjYwMzI3MTUwMDUyWjAzMTEwLwYDVQQD
EygxNTE3NDNlNzU3NjEzY2ZiMjdlMzc4ODJjODJjZWUxNGE5NjJkZGRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7YkKHgB/EJrNBC1XdO2JSdHww+Gw
B2QSiJfSlVRjt53YrVRWbRvAGzX7G88DuveS4FhAHZ8xTVn4Aragp5h2oYkrGehc
6995SHckFpt3efvsnoLDJn7UKJv1ZVPrioZJDaXGUTrYLxNqEEdFaAjKX4uO7Cnm
/IMJ/BPlKnZg7UqcFSDj0V1sf1k+v53NXqfMBiSIbOb4RrJWAypVeJwZXt5ahGnu
a6Fy1gA6uNHQcOzqiA38ghXt9nOBb81EvP16szSRAZHvb6R1mzTtzqhjwLyTGuWx
9auEwIxQjAmlz1u9kCEhjwg8EKcbAUyb+E1lreQ+AZQlnRxn5QARgs55mQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBUXQ+dXYTz7J+N4gsgs7hSpYt3eMB8GA1UdIwQY
MBaAFISkrKAg+yvck6RyZuh+xnzciFfFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi82YmIyMjctNWIzNi00ZjJhLWExYzUt
OWVmMzZkMjUxNTE3LzEvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi82YmIyMjctNWIzNi00ZjJhLWExYzUtOWVmMzZkMjUxNTE3
LzEvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh4/lU1FD
DmuNU2FfVa6oKiXiqjDd7dJfUyE7ln9rTx/YJfUEq9dNEvpeyYxwdJfGRA3Alqg4
xRc63l/sWiofoBSB5AJ2siLngcsPfGbAdcujl8Ys5ONabzYdmMl7vMxmx+hPWXUy
ThP2bIPlqMeoKN+hUTqTTnGTFpwGEB2Adun3+LIG+LKYoDPVtXoPiXj2cUp33/N7
WHhxdQNzFmh6PNfOXD83D4PQRGrCQdtPBUz6CrASPJpaQPptTjS2tkWPOVmJBNwz
dGWKl32bNKpW9k2ja7euf/Z0vgJ7fiZhX6prJa6JILz6aFGNstKRiF8Dfbljudsq
qI7np2Gg5/8ekw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:35:15 2026 by rpki-client