Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
File: HvNtbboJfqbUsq2k52PoTss9gXo.mft (raw, json)
Hash identifier: PP5We4QPME204+ZhGw8wF0ti+PQnNhftPAmnjhsM10Q=
Subject key identifier: 97:78:12:E1:B6:2B:38:6A:65:92:C2:43:37:D3:5A:04:EB:22:AA:55
Authority key identifier: 1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A
Certificate issuer: /CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a
Certificate serial: 019D265F3793873ED35092C6187FF09F9617
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
Manifest number: 0771
Signing time: Wed 25 Mar 2026 19:01:07 +0000
Manifest this update: Wed 25 Mar 2026 19:01:07 +0000
Manifest next update: Thu 26 Mar 2026 19:01:07 +0000
Files and hashes: 1: D8tVqO3BJjchT6NM_HDGczaKws0.roa (hash: fIZsVjJEkijeWKIzd1zHSBv3Dper18loUlNZnU50gPc=)
2: HvNtbboJfqbUsq2k52PoTss9gXo.crl (hash: R00XL8Iwio6chWMpWMRx1Ar9bXj+KWOvrMj2yrF+P7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:37:93:87:3e:d3:50:92:c6:18:7f:f0:9f:96:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a
Validity
Not Before: Mar 25 19:01:07 2026 GMT
Not After : Mar 26 19:01:07 2026 GMT
Subject: CN=977812e1b62b386a6592c24337d35a04eb22aa55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:21:d6:fd:39:72:24:f1:70:6c:f3:2f:3c:a1:
2d:59:31:0d:96:f7:6b:cd:83:1e:26:51:f2:be:db:
98:0f:b2:a6:d1:ca:78:ef:1c:25:42:03:5b:1e:ad:
f3:0d:87:fc:fe:5a:82:f6:91:21:47:bb:9d:67:29:
cb:a1:be:4f:f7:9d:01:b3:ed:24:aa:ee:1b:68:2a:
fc:25:b2:2a:cb:1d:e0:b6:57:b1:08:9b:d3:5a:11:
a3:6a:f2:98:a2:1f:c4:ba:28:7a:0c:07:3c:3a:47:
b6:1d:09:8c:09:54:e7:e6:cc:af:e6:73:78:39:2c:
56:4b:23:5a:91:79:35:a5:d7:8e:07:88:7a:12:07:
c2:23:89:3e:76:70:92:81:90:b8:6c:a3:8c:30:e5:
94:93:53:2c:1d:3d:e7:5e:db:65:c6:e3:9e:23:5c:
6a:dd:3a:d1:87:b3:69:dc:b2:29:5d:a3:95:fb:16:
f6:07:07:78:eb:d1:1c:d5:4f:05:be:71:ca:58:98:
c2:7e:3c:79:e0:4c:dd:f0:d0:ad:54:d4:f6:c2:f1:
a3:9d:98:8a:7c:56:66:36:ac:17:42:a4:61:18:30:
56:1a:8c:44:1f:11:b7:6c:2a:d9:b8:eb:28:56:9e:
c9:96:42:85:85:e6:d3:55:33:25:b0:a2:93:bb:c8:
e0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:78:12:E1:B6:2B:38:6A:65:92:C2:43:37:D3:5A:04:EB:22:AA:55
X509v3 Authority Key Identifier:
keyid:1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:e0:1f:76:f2:66:09:29:47:04:3a:2a:51:c2:61:c8:88:59:
0d:9f:92:34:31:03:e8:e5:53:24:6e:b3:8f:ce:25:cf:7d:60:
e0:49:71:e3:f9:b0:b7:26:ab:24:44:08:b1:2b:b2:3e:92:e9:
f0:04:49:33:f7:d5:10:f1:5f:91:17:0e:6c:6e:a6:f0:cf:52:
a0:fa:af:2c:c9:04:50:2d:7e:19:78:f0:43:33:15:c1:35:03:
20:82:21:40:54:1a:bf:63:46:4e:d4:7f:2e:12:68:a7:b1:bb:
6f:70:08:88:af:ed:bc:f1:5e:1f:70:ce:42:43:da:1e:6a:f7:
49:2c:d1:fe:9c:ea:09:ab:b0:18:7c:a6:e5:7c:4f:e3:7d:23:
97:21:cf:20:8c:25:df:b2:b4:e4:93:96:3d:fe:8a:3f:2e:ea:
e2:18:05:4b:8d:b7:8e:67:a3:08:55:9f:e4:bd:38:dd:85:6e:
ce:6e:1d:7d:34:a4:44:2e:89:f6:f0:01:b5:ca:e7:62:11:92:
58:52:c0:ac:f2:65:ec:01:47:66:fe:f8:6f:1f:4d:38:82:80:
e4:bc:9c:33:e2:25:d3:bf:76:3a:1e:0f:3c:df:06:89:83:8e:
26:4e:c1:39:cc:4f:3a:4e:91:6d:79:ef:f9:ec:b0:19:d1:12:
cd:bd:44:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:24:46 2026 by rpki-client