Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/5161cb-bcdd-4096-88f7-5aed8d6a33b7/1/Hpi7SLWTBqcwybm9jXc0Z88cVOA.mft
File: Hpi7SLWTBqcwybm9jXc0Z88cVOA.mft (raw, json)
Hash identifier: pGEi4KS0MV+Shj2wQ56twn6h78JnYu02esUTMNXyBCo=
Subject key identifier: 7A:AE:76:25:D2:ED:29:2D:5D:17:86:65:85:69:63:19:C9:F6:A3:22
Authority key identifier: 1E:98:BB:48:B5:93:06:A7:30:C9:B9:BD:8D:77:34:67:CF:1C:54:E0
Certificate issuer: /CN=1e98bb48b59306a730c9b9bd8d773467cf1c54e0
Certificate serial: 019D270407FEBB5591DE90DBCADFF4ED6AB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hpi7SLWTBqcwybm9jXc0Z88cVOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/5161cb-bcdd-4096-88f7-5aed8d6a33b7/1/Hpi7SLWTBqcwybm9jXc0Z88cVOA.mft
Manifest number: 0E8B
Signing time: Wed 25 Mar 2026 22:01:08 +0000
Manifest this update: Wed 25 Mar 2026 22:01:08 +0000
Manifest next update: Thu 26 Mar 2026 22:01:08 +0000
Files and hashes: 1: Hpi7SLWTBqcwybm9jXc0Z88cVOA.crl (hash: Dk5U93DfXDItB4iP1n8VNvOQ2vbWt+kUg+ShF2LEapw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/5161cb-bcdd-4096-88f7-5aed8d6a33b7/1/Hpi7SLWTBqcwybm9jXc0Z88cVOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/5161cb-bcdd-4096-88f7-5aed8d6a33b7/1/Hpi7SLWTBqcwybm9jXc0Z88cVOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hpi7SLWTBqcwybm9jXc0Z88cVOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:07:fe:bb:55:91:de:90:db:ca:df:f4:ed:6a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e98bb48b59306a730c9b9bd8d773467cf1c54e0
Validity
Not Before: Mar 25 22:01:08 2026 GMT
Not After : Mar 26 22:01:08 2026 GMT
Subject: CN=7aae7625d2ed292d5d17866585696319c9f6a322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e5:5c:34:bb:7f:27:a3:36:4b:f3:f9:22:58:
f7:d0:96:3a:6f:9a:1b:3b:fb:ee:75:a3:58:08:02:
ca:e3:a4:0d:50:66:57:fe:ba:4d:36:cf:d4:79:66:
45:04:74:4d:6d:0a:fe:ba:ed:9d:37:b0:1a:b4:71:
f9:e7:2e:94:2f:26:4e:c1:5f:83:2d:ff:7c:74:13:
ce:ea:57:74:48:db:6c:eb:2c:e1:40:0f:7f:6a:75:
95:47:b9:38:5d:f5:ca:ed:85:5c:2a:c4:51:53:12:
2b:98:e9:39:86:c1:de:a9:f3:d4:75:e9:35:a3:4b:
29:46:0a:6e:98:54:42:a4:5e:f6:9d:b5:53:d1:26:
91:7f:dc:95:cd:28:4d:f0:c7:23:96:2b:fa:d5:48:
95:0e:54:98:e5:eb:33:1e:ab:05:90:e4:80:bc:07:
28:bc:6d:39:30:e1:cb:7d:d3:78:05:37:00:0a:4e:
e3:68:75:3b:fa:e0:bc:61:1b:ce:08:e3:1c:f6:cb:
c5:43:50:a5:08:70:79:18:37:21:e2:a5:e6:25:c4:
13:78:af:7f:c4:56:c1:e0:2d:20:2a:23:5e:63:2f:
20:c8:28:13:1e:20:20:3f:a3:66:d5:a1:83:62:15:
33:93:db:eb:70:1e:aa:9c:b9:29:15:90:da:61:ba:
15:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AE:76:25:D2:ED:29:2D:5D:17:86:65:85:69:63:19:C9:F6:A3:22
X509v3 Authority Key Identifier:
keyid:1E:98:BB:48:B5:93:06:A7:30:C9:B9:BD:8D:77:34:67:CF:1C:54:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hpi7SLWTBqcwybm9jXc0Z88cVOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5161cb-bcdd-4096-88f7-5aed8d6a33b7/1/Hpi7SLWTBqcwybm9jXc0Z88cVOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5161cb-bcdd-4096-88f7-5aed8d6a33b7/1/Hpi7SLWTBqcwybm9jXc0Z88cVOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:68:fc:43:b8:be:df:29:20:64:ec:8e:1d:8b:73:e9:05:d7:
17:27:79:42:7c:2a:e2:61:b0:83:fe:33:a1:21:37:2d:90:95:
64:a3:b2:be:26:98:97:86:37:c5:be:d1:1a:b5:bb:34:6c:0e:
82:60:e4:39:03:61:7a:02:e6:e5:2e:da:d4:97:c3:54:fc:cc:
80:ce:91:08:c1:58:21:23:75:ac:ff:02:c7:4b:38:99:50:14:
c0:68:99:7e:17:ff:67:72:7f:d8:02:d3:eb:1f:cc:36:7a:84:
a2:a7:fb:7d:79:67:d0:f2:2e:28:33:da:f9:f0:c7:8f:fa:ae:
5b:07:f1:30:13:a1:f3:17:a1:21:ab:f9:4c:b5:30:1d:12:0b:
a9:ae:a1:15:bc:88:68:52:a3:33:77:90:ac:86:e0:17:55:22:
87:67:21:70:e0:c9:ab:bf:a1:fa:27:d6:ac:29:3e:a4:ba:a9:
a8:66:98:c8:9a:ee:1d:9b:13:12:7e:0d:bb:1d:5f:f6:13:43:
b0:39:2f:74:ff:bb:b3:2d:aa:f6:db:e6:15:b5:d8:2a:c3:de:
3f:c0:0b:bb:e5:8b:d7:5f:0a:f1:52:98:69:4c:08:db:fb:8b:
c3:b9:f0:e0:d6:d3:d6:70:a3:3c:09:9e:0c:1e:a5:4e:3f:c1:
d7:5b:b5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:37 2026 by rpki-client