Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
File: HKrZOQiq2NJG62n35mqnDeW9Whc.mft (raw, json)
Hash identifier: LasPnIH1fiFxFoZ5WlUKv5J27cGgD/GvZV0n3ud5m/Q=
Subject key identifier: 72:28:E7:65:8A:02:5F:29:3C:08:BD:6B:7D:21:A4:74:C4:11:6C:01
Authority key identifier: 1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
Certificate issuer: /CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Certificate serial: 019D2A3B606789267AD5A98B2F1FD8A7926B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
Manifest number: 0F6D
Signing time: Thu 26 Mar 2026 13:00:27 +0000
Manifest this update: Thu 26 Mar 2026 13:00:27 +0000
Manifest next update: Fri 27 Mar 2026 13:00:27 +0000
Files and hashes: 1: HKrZOQiq2NJG62n35mqnDeW9Whc.crl (hash: soJL/hsmgZ465zQSF3wdK+yxIGd17yxkUeAPCJ7HB38=)
2: aXCzk9LRBuI3wsL45rGUGJ3bjp0.roa (hash: ij7uLV/NpVqVA9kRJtMaYvHqkZsLcjLoJ4SciqjfuAg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:60:67:89:26:7a:d5:a9:8b:2f:1f:d8:a7:92:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Validity
Not Before: Mar 26 13:00:27 2026 GMT
Not After : Mar 27 13:00:27 2026 GMT
Subject: CN=7228e7658a025f293c08bd6b7d21a474c4116c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:e5:5b:9a:3b:ab:ca:dd:a3:4e:22:b2:fe:
d2:ff:3a:7a:ab:d3:47:1e:8e:1e:eb:a7:b3:5e:55:
45:87:89:47:0b:42:56:32:1d:42:75:be:4a:20:44:
61:75:d0:12:ea:6c:2c:0f:92:9d:09:ca:b6:3c:20:
98:f3:fb:91:49:a8:7a:f9:14:d1:7d:90:2d:63:2c:
f3:bf:c6:0e:f5:7e:9a:0b:7f:43:1c:2a:fe:2b:fa:
e3:88:6b:b6:ba:b5:9e:d1:04:9b:a5:21:a3:f0:07:
93:1f:d5:be:35:76:39:62:fe:74:ff:c5:3d:d7:03:
d0:ce:48:90:d0:f1:96:65:ff:a4:a9:dc:0c:0e:ea:
71:bb:20:df:d4:ea:1d:9e:f2:0e:59:8c:79:83:e5:
e5:41:7b:28:a2:98:ae:67:e8:16:9f:8f:7c:7f:be:
24:32:93:9f:ad:c4:f3:94:f4:84:9d:2a:ba:95:d3:
c6:7d:0d:39:0d:37:4d:05:5c:25:9d:0f:3b:79:25:
43:38:f3:f0:9f:22:cf:15:12:c6:2a:41:ff:ef:c9:
82:1b:8f:ea:7b:81:ce:fd:28:f0:ef:15:61:83:83:
2f:a5:81:07:84:19:65:1f:32:0e:7b:c6:62:6d:ba:
cb:23:2c:9a:c9:1f:50:96:69:04:1b:e4:1a:e8:29:
99:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:28:E7:65:8A:02:5F:29:3C:08:BD:6B:7D:21:A4:74:C4:11:6C:01
X509v3 Authority Key Identifier:
keyid:1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:c0:91:e1:a2:2d:7b:ea:96:ce:fe:6f:23:15:06:2f:fa:b8:
d2:d4:ca:cc:1f:17:5d:2f:f7:e6:1c:41:96:2f:c7:9a:e8:d3:
c8:02:85:2b:3d:56:dc:e0:9a:b7:d0:56:73:ef:fa:33:21:18:
11:54:e9:4c:0e:88:4f:46:53:55:f1:5b:4d:e2:77:42:5a:96:
63:37:bc:1a:f4:19:19:bc:99:b8:06:8f:f6:3d:a4:24:5a:7d:
df:df:76:2e:e1:c9:59:58:49:2d:a7:37:a1:b4:b9:08:64:de:
76:13:85:14:c4:f0:16:96:9b:81:4e:33:95:85:d1:87:ca:2f:
ea:9a:ec:84:39:bc:7c:78:f9:c5:bc:e8:40:69:d7:88:64:95:
66:12:b3:2e:13:29:f7:af:95:53:5c:9f:db:4e:1d:6e:d8:b9:
b6:fd:85:7e:82:17:f8:83:e0:87:98:8f:10:b1:8f:18:4c:05:
3c:6d:47:8d:1d:ef:be:52:0e:31:91:72:64:a3:99:db:39:ca:
93:c5:f0:bc:59:3b:8b:6e:04:fd:05:95:1e:e2:92:82:45:eb:
97:a7:15:cb:61:96:ef:b4:03:92:e0:77:aa:71:b1:98:dd:4c:
4e:c9:f9:38:27:16:10:4c:30:58:8d:a3:27:56:2e:41:ee:2a:
64:8c:3f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:55:28 2026 by rpki-client