Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
File: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft (raw, json)
Hash identifier: KWG+FSyWs6hYlnoudMsO3KIBiz81y/wN+ct1TQeNGbc=
Subject key identifier: 87:32:1F:EB:00:AF:38:3F:37:E0:CC:0F:C1:89:39:73:A2:59:4E:EE
Authority key identifier: 1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
Certificate issuer: /CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Certificate serial: 019D27722E28ACAE417FDF8A1AB9FC43E61B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
Manifest number: 1819
Signing time: Thu 26 Mar 2026 00:01:27 +0000
Manifest this update: Thu 26 Mar 2026 00:01:27 +0000
Manifest next update: Fri 27 Mar 2026 00:01:27 +0000
Files and hashes: 1: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl (hash: eoyfHH6kzHM6bSSmLOe8LONCnrUPW6be9VkWL8g4KXA=)
2: LtF7nKZF5Eu_SugtCNfVkUGiFHM.roa (hash: DT5yTfPTZI2KTOuvzB4Bd0By5xLBRBjLmkPSrqIV9B8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:2e:28:ac:ae:41:7f:df:8a:1a:b9:fc:43:e6:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Validity
Not Before: Mar 26 00:01:27 2026 GMT
Not After : Mar 27 00:01:27 2026 GMT
Subject: CN=87321feb00af383f37e0cc0fc1893973a2594eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9b:dc:12:d4:6a:44:47:c4:ab:2b:b3:bd:24:
64:50:3a:8b:fb:66:2b:1f:aa:24:b7:ac:33:66:7e:
77:73:33:ab:fc:51:d3:65:13:f7:02:b7:e7:25:b7:
b8:6b:a7:2b:fa:29:a5:b3:1e:a3:15:38:17:3a:2d:
2e:5d:ba:fe:be:13:62:7a:c8:25:a4:00:68:4a:a4:
72:2e:80:d4:f1:ae:b9:90:60:f7:c1:8b:a3:cb:38:
4c:30:01:8c:76:42:af:58:f8:f4:f9:e1:3f:18:f5:
6b:a3:c9:11:03:26:13:d4:73:e7:88:db:ab:b9:8c:
2c:0c:ae:a0:90:bb:35:c4:3e:cc:5d:61:2f:0d:93:
2b:be:81:3b:31:f0:aa:d4:e2:46:4b:53:37:91:2b:
58:f0:e9:06:bd:4f:f5:47:43:cb:f6:15:a1:d2:8c:
45:98:6b:12:fe:bf:96:68:f3:69:52:be:52:23:1b:
ce:81:06:af:d9:f5:e2:a2:50:55:39:ad:0b:9f:bb:
ac:96:f5:b9:9b:91:99:45:61:1c:b4:bd:5f:3a:90:
ff:17:be:e2:ed:4c:d4:35:1d:70:e3:d9:ac:2d:25:
98:49:bb:ed:db:ee:fd:6c:1b:71:89:12:ad:e6:11:
4b:3d:3c:f3:bd:fa:49:41:4d:05:ed:67:47:d7:db:
0e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:32:1F:EB:00:AF:38:3F:37:E0:CC:0F:C1:89:39:73:A2:59:4E:EE
X509v3 Authority Key Identifier:
keyid:1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:0d:f0:2a:00:55:32:9e:3f:f5:e6:98:d2:93:12:7a:b9:97:
bb:66:41:aa:2f:42:93:40:93:3a:17:c7:d7:b0:e1:37:da:f0:
8b:0e:d4:19:1c:67:78:5c:42:b8:a1:f7:28:1f:5a:4c:9c:0a:
2b:04:1c:11:58:9c:41:95:63:41:a9:f1:f8:3e:8c:d5:8a:67:
10:21:74:24:0f:37:77:0b:46:57:a9:07:da:4c:34:f2:52:4e:
bb:a1:2d:8d:ca:60:96:ff:d1:6e:ad:ab:c7:f1:ed:08:c9:ca:
bd:70:d0:79:18:93:fa:06:16:23:45:ee:58:8e:ce:04:30:5e:
e5:2d:df:e2:08:03:d4:8b:a9:46:49:4d:18:a2:43:03:93:73:
f6:bf:19:40:88:74:77:e3:79:9d:d5:c9:77:71:5d:71:6c:e1:
37:79:aa:ce:b4:3b:f4:2f:5b:0f:0a:68:dd:e9:df:21:a3:46:
0a:9f:9f:bf:ab:69:91:5f:4c:b8:c3:c5:de:6e:c6:f8:0d:8f:
b3:3c:b3:f5:91:df:da:1f:d2:76:4e:7c:43:87:34:3f:60:77:
bf:af:27:01:d2:35:7a:c2:2c:56:4d:07:a1:5c:da:38:65:4b:
e0:df:31:47:b9:d3:5b:b4:e2:fb:6f:d7:22:48:f4:21:a5:6c:
0c:1f:57:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:05 2026 by rpki-client