Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: U1FEGpCobPzIdwBuY8Gu336cKU3L3YoAspXp3vjBgVU=
Subject key identifier: 8D:C0:1D:A4:DC:50:CD:9B:33:63:8B:EC:EA:A1:AD:DE:5E:C8:23:76
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 019D26CD262E623C1B55AC97F21144E48455
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 0BA1
Signing time: Wed 25 Mar 2026 21:01:11 +0000
Manifest this update: Wed 25 Mar 2026 21:01:11 +0000
Manifest next update: Thu 26 Mar 2026 21:01:11 +0000
Files and hashes: 1: GPPNPmR8KUY_sEY8Xyw8dhEolxg.roa (hash: JjmXr+ibRaRGfx0pfBbomv1IH9Jgiuy25aSKoWiXJmg=)
2: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: 76nvCo7L57bKJFi+EwIHxcw6Rklp6toV3aFp9FAYlQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:26:2e:62:3c:1b:55:ac:97:f2:11:44:e4:84:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: Mar 25 21:01:11 2026 GMT
Not After : Mar 26 21:01:11 2026 GMT
Subject: CN=8dc01da4dc50cd9b33638beceaa1adde5ec82376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e0:7f:42:61:a3:ab:56:78:ff:58:32:4c:f5:
a4:c6:24:a9:81:55:ac:ad:19:b5:c7:ed:9d:24:86:
eb:e4:29:80:45:ee:a6:c6:79:28:48:8c:9d:e2:03:
45:34:15:0c:25:93:ed:36:f5:df:63:05:a6:c6:23:
69:75:ed:a8:49:4a:1d:99:14:97:b2:10:46:b7:2f:
b0:cb:e4:50:bb:53:03:89:b8:5b:29:c2:87:8d:56:
d0:29:29:2e:b1:0f:3f:86:80:70:ff:4c:8c:29:f1:
c8:73:5e:ae:1c:d9:b2:56:56:c3:25:c3:c0:92:63:
25:7d:f9:89:e2:fa:9b:28:e2:c9:2a:f2:02:52:84:
7a:83:ae:64:27:ab:93:ad:6d:83:69:15:36:c3:1c:
0b:78:e1:be:8c:cb:37:6c:cd:bd:69:cb:4f:3f:9d:
01:fe:d5:56:bb:a0:ab:37:51:c7:77:ab:49:99:f4:
0a:84:b5:09:82:e3:6a:36:90:93:ee:4a:77:ab:5b:
14:27:cc:f7:24:ed:4b:6e:06:cf:ce:cf:fb:22:da:
3e:e5:9d:9a:d2:cb:96:c9:9f:fb:8e:b2:88:b3:93:
ca:a2:76:ca:06:72:37:fd:f5:36:b2:bc:7f:65:35:
49:2f:eb:8e:28:11:55:8b:12:41:bc:e7:ea:66:dd:
5f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C0:1D:A4:DC:50:CD:9B:33:63:8B:EC:EA:A1:AD:DE:5E:C8:23:76
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:21:78:ad:92:36:b5:e8:b5:85:5b:f5:e7:26:fe:85:a1:dc:
58:a7:1a:c5:ad:85:e8:84:4f:9e:db:61:97:4a:05:a1:fc:9c:
83:28:6e:e2:2d:fa:3b:8d:4d:f1:16:b8:0a:80:c0:c2:73:4a:
91:7b:15:01:ab:47:0d:07:be:b7:7b:44:bb:e2:ad:bf:f5:06:
5d:7c:e1:be:36:1f:65:09:3a:29:e7:ea:80:ad:20:2a:cb:b5:
72:63:40:80:0f:e3:ef:cf:15:8c:be:6b:47:d3:3b:51:ad:56:
e1:67:a8:ff:61:ae:35:9c:76:e3:de:69:6a:fc:c4:af:cf:34:
9f:06:b6:86:51:09:d7:32:36:1f:d8:41:01:ee:12:99:15:75:
79:96:4c:f8:58:a1:b5:50:0c:42:51:17:58:b4:8a:d2:f1:51:
4a:2f:db:2c:78:e8:94:34:70:b3:7e:8c:58:7d:b6:80:d7:8e:
a9:ff:65:42:fa:ae:05:86:06:35:70:fe:3d:0b:37:b5:c4:ce:
b0:17:5e:e8:ca:de:59:75:2d:70:0a:11:b1:9b:a5:76:29:73:
db:50:26:2e:2c:cb:6d:35:1e:bc:52:29:59:58:ba:3d:12:59:
83:a0:32:f1:4d:d0:1f:53:a1:e3:75:da:dd:cb:b1:2f:16:dd:
4f:22:0e:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzSYuYjwbVayX8hFE5IRVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZDYwMWE4YjBlYTVjYjI0YzVlYzRmODVkMjI2N2Q4MjE5
MzFjMDIwHhcNMjYwMzI1MjEwMTExWhcNMjYwMzI2MjEwMTExWjAzMTEwLwYDVQQD
Eyg4ZGMwMWRhNGRjNTBjZDliMzM2MzhiZWNlYWExYWRkZTVlYzgyMzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApeB/QmGjq1Z4/1gyTPWkxiSpgVWs
rRm1x+2dJIbr5CmARe6mxnkoSIyd4gNFNBUMJZPtNvXfYwWmxiNpde2oSUodmRSX
shBGty+wy+RQu1MDibhbKcKHjVbQKSkusQ8/hoBw/0yMKfHIc16uHNmyVlbDJcPA
kmMlffmJ4vqbKOLJKvICUoR6g65kJ6uTrW2DaRU2wxwLeOG+jMs3bM29actPP50B
/tVWu6CrN1HHd6tJmfQKhLUJguNqNpCT7kp3q1sUJ8z3JO1LbgbPzs/7Ito+5Z2a
0suWyZ/7jrKIs5PKonbKBnI3/fU2srx/ZTVJL+uOKBFVixJBvOfqZt1fUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI3AHaTcUM2bM2OL7Oqhrd5eyCN2MB8GA1UdIwQY
MBaAFITWAaiw6lyyTF7E+F0iZ9ghkxwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYt
ZWU3N2Q3NWMzMjVlLzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYtZWU3N2Q3NWMzMjVl
LzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgyF4rZI2
tei1hVv15yb+haHcWKcaxa2F6IRPntthl0oFofycgyhu4i36O41N8Ra4CoDAwnNK
kXsVAatHDQe+t3tEu+Ktv/UGXXzhvjYfZQk6KefqgK0gKsu1cmNAgA/j788VjL5r
R9M7Ua1W4Weo/2GuNZx2495pavzEr880nwa2hlEJ1zI2H9hBAe4SmRV1eZZM+Fih
tVAMQlEXWLSK0vFRSi/bLHjolDRws36MWH22gNeOqf9lQvquBYYGNXD+PQs3tcTO
sBde6MreWXUtcAoRsZuldilz21AmLizLbTUevFIpWVi6PRJZg6Ay8U3QH1Oh43Xa
3cuxLxbdTyIOcw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:35 2026 by rpki-client