Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
File: HpPX4oqwueeUSHlGoProzW7VQHE.mft (raw, json)
Hash identifier: OnyVK3qrJFR1aC8J6xWlYvaJ2JFQCRyXStmgAOoCE0w=
Subject key identifier: BC:4A:F4:D5:70:37:C4:B3:C0:30:91:B5:70:1D:D8:56:7F:2A:51:73
Authority key identifier: 1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71
Certificate issuer: /CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071
Certificate serial: 019D28F266D06E98FE0745D66045136D8976
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
Manifest number: 0221
Signing time: Thu 26 Mar 2026 07:01:07 +0000
Manifest this update: Thu 26 Mar 2026 07:01:07 +0000
Manifest next update: Fri 27 Mar 2026 07:01:07 +0000
Files and hashes: 1: 4XefERenMAQ3NiRiLifJbaOh1bI.roa (hash: EBxY06tfLDyTmDSe657Eshz7yBdzhaon1Ky7Pws1MFE=)
2: HpPX4oqwueeUSHlGoProzW7VQHE.crl (hash: ak6VSspWDiia+VYxZQa7kRJ+xDppB2pVBLvWXr47wjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:66:d0:6e:98:fe:07:45:d6:60:45:13:6d:89:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e93d7e28ab0b9e794487946a0fae8cd6ed54071
Validity
Not Before: Mar 26 07:01:07 2026 GMT
Not After : Mar 27 07:01:07 2026 GMT
Subject: CN=bc4af4d57037c4b3c03091b5701dd8567f2a5173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:67:cf:dc:c6:ce:cf:86:73:23:e9:05:85:21:
bc:e5:20:15:60:f9:0d:a0:a4:10:64:2c:c2:35:94:
a8:a1:5f:12:7f:55:bd:7d:87:06:6c:79:ec:83:ea:
22:51:52:17:52:d2:87:1c:fc:23:f1:45:9e:0f:4a:
87:fe:f0:ce:6f:89:51:63:8b:3b:b0:d5:02:84:11:
89:b6:f2:c4:41:bc:a9:1d:c9:5b:92:54:f6:c0:92:
3c:cf:2f:fb:fc:34:5d:17:47:eb:f9:e9:3b:90:75:
cb:a8:a3:b3:56:d8:1e:74:30:53:27:27:d3:90:7e:
18:2b:b2:19:14:92:c5:50:e3:ef:5b:02:52:61:fa:
bd:92:9a:ab:0d:a4:89:c4:cb:82:35:e6:7d:b4:26:
26:e6:ab:4e:70:df:17:5a:25:9a:02:07:7b:a8:ec:
e2:ad:ec:16:64:e7:23:43:fa:19:b5:a2:e0:17:a4:
9f:2d:3d:59:06:5e:8d:42:84:4a:8f:bb:f1:51:ae:
78:19:47:af:d0:c0:d3:e8:7e:94:14:10:a5:7b:db:
ae:d7:8c:a3:4f:98:3a:b4:7f:79:ee:b5:73:4b:7f:
0e:aa:5f:5e:0e:97:4f:e8:47:a1:5a:ab:f1:42:f5:
04:34:e0:d1:fc:84:35:ef:eb:db:de:01:6c:af:bc:
d4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:4A:F4:D5:70:37:C4:B3:C0:30:91:B5:70:1D:D8:56:7F:2A:51:73
X509v3 Authority Key Identifier:
keyid:1E:93:D7:E2:8A:B0:B9:E7:94:48:79:46:A0:FA:E8:CD:6E:D5:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpPX4oqwueeUSHlGoProzW7VQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87b214-ba8d-4df9-9ec9-1a16ef492034/1/HpPX4oqwueeUSHlGoProzW7VQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:3f:61:f4:21:ed:b4:16:c8:80:42:0d:c6:3e:ef:2f:70:c7:
5e:b3:ef:3b:5c:ba:bb:27:9a:65:f1:8e:96:f0:5e:3d:c2:4f:
3e:9a:14:cd:e1:af:e5:2f:26:ed:53:86:31:6f:6d:a5:1a:a6:
19:a6:af:02:44:33:ee:3f:44:1e:f3:6e:ed:53:ae:b9:d1:17:
7c:7b:d5:45:3e:64:b2:94:37:5f:86:20:b7:e6:5d:e8:b3:ab:
8d:54:27:39:58:54:2e:c8:bc:fd:9b:96:16:7a:cb:f4:de:5a:
2f:af:21:ee:02:18:65:43:1a:ac:db:60:1a:39:51:00:10:a3:
bd:08:fb:9d:2c:5f:42:52:87:ec:6a:55:56:30:43:7c:00:aa:
ec:b9:78:be:32:aa:b5:56:b5:60:79:bd:68:c7:01:85:a0:f6:
a2:72:d1:af:d0:4f:ae:b1:aa:ae:d3:9f:e9:df:49:6a:7c:f9:
40:7e:9a:69:9d:eb:15:72:8b:83:17:ac:5b:77:98:ef:79:26:
d9:f9:6f:2c:73:f6:09:65:72:de:6d:cf:fd:71:2e:1d:63:f5:
c0:95:11:9b:87:e8:f1:19:d4:f6:19:02:b5:86:a0:26:92:c8:
06:1f:0e:6e:b7:62:3a:ed:7a:ed:1e:0e:0b:8c:1d:59:48:48:
9f:98:5f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:35 2026 by rpki-client