Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
File: hAKSSGHLwIjGVahyU1qQMQige_E.mft (raw, json)
Hash identifier: belZa6/OnpajbYdR5Zdch5gZpVvL9ofUQ4KQMt+NDFI=
Subject key identifier: A8:76:AA:76:B7:89:09:F8:F9:33:9B:72:88:3D:AE:3B:9F:41:A0:2C
Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1
Certificate serial: 019D281642AAAA2A389CB591C1831C1E0862
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
Manifest number: 14C0
Signing time: Thu 26 Mar 2026 03:00:40 +0000
Manifest this update: Thu 26 Mar 2026 03:00:40 +0000
Manifest next update: Fri 27 Mar 2026 03:00:40 +0000
Files and hashes: 1: EApMV8-N-zmao3CAo-NQpD3Lz2A.roa (hash: aR54mqSnxFgOPc79I9yN0jBUTDGkCFj+YEV/eOtu4c4=)
2: hAKSSGHLwIjGVahyU1qQMQige_E.crl (hash: 2+63AT8JG/Llr8s/1cdmDmNPgdvX2bRjExXkL/wnjzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:42:aa:aa:2a:38:9c:b5:91:c1:83:1c:1e:08:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8402924861cbc088c655a872535a903108a07bf1
Validity
Not Before: Mar 26 03:00:40 2026 GMT
Not After : Mar 27 03:00:40 2026 GMT
Subject: CN=a876aa76b78909f8f9339b72883dae3b9f41a02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:93:97:b4:b3:b3:2c:4f:d7:62:d7:eb:64:cf:
24:08:04:09:19:81:c6:64:95:69:59:14:97:d2:09:
cd:4b:0b:56:29:b8:3b:b9:20:53:4e:d7:d1:7a:84:
82:f8:6e:37:24:a8:42:b9:e8:4d:be:73:03:29:94:
b9:87:10:8b:ae:a2:9c:2f:1c:a4:1e:91:e3:4b:4d:
6b:bf:e0:a2:ac:ca:63:57:38:da:16:a2:a3:ef:c7:
2d:ab:6c:f3:2c:34:7b:51:3e:bf:b0:48:ec:62:37:
9a:04:c3:9e:fa:e4:06:59:bb:2e:5d:93:6e:32:4f:
1a:5a:91:55:d4:c1:47:17:c1:3a:77:ae:bd:a3:a9:
54:e4:91:fe:f0:d1:0f:ed:3b:8c:19:a4:ed:d1:9d:
33:a2:43:e5:68:68:3d:27:d4:8e:d5:08:21:ef:70:
c5:68:d3:3b:d1:74:fc:43:36:23:b8:53:bb:25:a3:
71:f5:ca:3c:ad:e4:ed:2f:e1:4a:ce:b1:99:7f:56:
65:92:b2:90:f1:69:9b:79:7c:72:5d:a5:39:6c:0d:
b5:d1:2c:15:65:3f:c3:b6:68:78:13:b7:87:1e:b2:
1c:79:71:f0:9a:7c:5b:99:e8:30:04:ef:1a:ae:d7:
c3:83:9c:7d:4f:40:c5:89:84:b6:e3:82:c1:83:90:
31:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:76:AA:76:B7:89:09:F8:F9:33:9B:72:88:3D:AE:3B:9F:41:A0:2C
X509v3 Authority Key Identifier:
keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:8b:26:46:41:4d:8d:0d:1e:c4:8c:ca:50:42:0a:78:f3:b1:
16:73:86:9c:5e:81:2e:88:04:73:09:83:8e:c1:b1:43:b0:0e:
09:36:58:01:b6:bc:6c:4e:51:e6:da:cd:58:6c:db:5b:e0:4e:
db:16:c3:b0:cb:14:de:48:27:e9:82:77:41:3c:29:4a:10:2f:
bc:bb:84:a9:c8:20:1a:7b:61:7b:48:05:92:47:9a:a0:fd:75:
a3:ea:3b:64:de:3b:14:ad:ff:55:02:90:c5:1b:78:02:98:08:
03:2a:08:d5:86:c3:bd:10:03:4a:a6:4d:ba:f1:8e:eb:d7:69:
1b:84:5a:a4:2e:83:1e:42:46:6c:41:82:ae:ec:bb:c3:0e:75:
b1:27:7e:11:a1:5c:b4:e0:00:c1:38:fa:3a:a0:48:56:2e:8f:
14:1c:eb:8a:09:93:eb:66:3a:93:8c:ae:5a:db:6c:24:70:b6:
3a:c6:13:0b:dd:05:3e:11:eb:79:89:f6:92:08:b2:c7:bf:fe:
37:0c:ce:c7:0d:87:f6:8c:51:af:f3:10:57:1f:c9:8c:45:37:
76:e2:89:91:d8:6b:4b:c2:2c:1a:5d:6d:0e:6a:a8:43:70:18:
5a:53:eb:b8:32:e4:e7:54:a1:2a:67:e6:9b:65:93:54:35:fd:
14:9d:1a:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFkKqqio4nLWRwYMcHghiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MDI5MjQ4NjFjYmMwODhjNjU1YTg3MjUzNWE5MDMxMDhh
MDdiZjEwHhcNMjYwMzI2MDMwMDQwWhcNMjYwMzI3MDMwMDQwWjAzMTEwLwYDVQQD
EyhhODc2YWE3NmI3ODkwOWY4ZjkzMzliNzI4ODNkYWUzYjlmNDFhMDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5OXtLOzLE/XYtfrZM8kCAQJGYHG
ZJVpWRSX0gnNSwtWKbg7uSBTTtfReoSC+G43JKhCuehNvnMDKZS5hxCLrqKcLxyk
HpHjS01rv+CirMpjVzjaFqKj78ctq2zzLDR7UT6/sEjsYjeaBMOe+uQGWbsuXZNu
Mk8aWpFV1MFHF8E6d669o6lU5JH+8NEP7TuMGaTt0Z0zokPlaGg9J9SO1Qgh73DF
aNM70XT8QzYjuFO7JaNx9co8reTtL+FKzrGZf1ZlkrKQ8WmbeXxyXaU5bA210SwV
ZT/Dtmh4E7eHHrIceXHwmnxbmegwBO8artfDg5x9T0DFiYS244LBg5AxYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKh2qna3iQn4+TObcog9rjufQaAsMB8GA1UdIwQY
MBaAFIQCkkhhy8CIxlWoclNakDEIoHvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUt
MGFjOWIzYmFlNmY1LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUtMGFjOWIzYmFlNmY1
LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY4smRkFN
jQ0exIzKUEIKePOxFnOGnF6BLogEcwmDjsGxQ7AOCTZYAba8bE5R5trNWGzbW+BO
2xbDsMsU3kgn6YJ3QTwpShAvvLuEqcggGnthe0gFkkeaoP11o+o7ZN47FK3/VQKQ
xRt4ApgIAyoI1YbDvRADSqZNuvGO69dpG4RapC6DHkJGbEGCruy7ww51sSd+EaFc
tOAAwTj6OqBIVi6PFBzrigmT62Y6k4yuWttsJHC2OsYTC90FPhHreYn2kgiyx7/+
NwzOxw2H9oxRr/MQVx/JjEU3duKJkdhrS8IsGl1tDmqoQ3AYWlPruDLk51ShKmfm
m2WTVDX9FJ0aTg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:19:22 2026 by rpki-client