Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
File: hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft (raw, json)
Hash identifier: KAWrvF2VH3UmPt8AAGu1DXRfWcEyyidC+7ZRw4TkLtw=
Subject key identifier: F7:6F:31:67:E4:94:07:87:04:86:48:C6:F6:60:48:20:B5:3D:60:52
Authority key identifier: 85:21:D1:03:FC:73:E9:07:5D:CF:1E:22:BC:82:42:B7:0F:98:C8:84
Certificate issuer: /CN=8521d103fc73e9075dcf1e22bc8242b70f98c884
Certificate serial: 019D33088A8C549272AF45D12BFA10FB5664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
Manifest number: 08B8
Signing time: Sat 28 Mar 2026 06:01:30 +0000
Manifest this update: Sat 28 Mar 2026 06:01:30 +0000
Manifest next update: Sun 29 Mar 2026 06:01:30 +0000
Files and hashes: 1: cIAjOguDSgqReQ62gGNwhDs3FsM.roa (hash: TFf8FnZKCR2DKzKeOZFiA2ziGDoeOIEoz46aZNZ0n6U=)
2: hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl (hash: nqMt+uTM4VXqkw2/AN7ZZoL9jnXau+Fg7u7gXM4VfS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:08:8a:8c:54:92:72:af:45:d1:2b:fa:10:fb:56:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8521d103fc73e9075dcf1e22bc8242b70f98c884
Validity
Not Before: Mar 28 06:01:30 2026 GMT
Not After : Mar 29 06:01:30 2026 GMT
Subject: CN=f76f3167e4940787048648c6f6604820b53d6052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:70:00:31:16:25:1f:22:1a:d2:1a:73:a4:66:
bc:ec:21:fc:1d:02:73:50:79:e6:52:93:c1:41:9a:
f1:1d:3e:75:7c:f2:f4:83:b4:aa:ff:bb:95:ac:67:
dc:24:6d:89:8e:6d:a8:3b:3a:4d:53:f5:1d:46:6c:
96:b9:dd:ae:a2:53:97:3e:cd:8a:26:28:f9:64:25:
3e:5f:9e:a3:1b:b9:5c:8c:62:f8:15:1c:00:3b:23:
6c:e1:a5:0d:bb:bd:f5:ab:ef:66:18:a4:4f:fc:3d:
4b:4a:95:90:97:60:f7:db:7e:2a:4e:ec:f4:b1:ca:
ce:50:86:46:6c:57:16:2b:7a:42:eb:a2:fc:92:18:
7e:3e:d6:55:ba:ed:c7:86:2a:21:fc:cb:f7:63:94:
a0:b0:a8:47:81:be:b6:f4:2b:b2:4a:27:15:16:39:
e4:06:27:3a:82:ce:eb:a9:b5:8b:aa:32:e2:10:8b:
a1:59:ee:12:9b:c2:0d:a8:ee:39:79:51:1c:63:2a:
7a:ac:f0:e8:fb:13:59:ef:4c:34:61:6c:cf:dd:48:
86:4c:36:46:48:c9:2b:68:12:ce:d6:b5:28:09:44:
a4:49:3f:04:7b:44:48:32:df:39:f2:e2:b2:a6:41:
3e:2e:c5:6c:3f:4f:91:7e:0f:9e:45:c4:1b:e2:83:
88:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:6F:31:67:E4:94:07:87:04:86:48:C6:F6:60:48:20:B5:3D:60:52
X509v3 Authority Key Identifier:
keyid:85:21:D1:03:FC:73:E9:07:5D:CF:1E:22:BC:82:42:B7:0F:98:C8:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:47:ca:a0:35:32:dc:66:06:17:c6:9c:6b:0e:7d:74:cc:6d:
94:51:0f:83:05:b0:4e:9c:7a:e1:a1:70:aa:9e:e6:e4:d6:5a:
fc:e9:b3:ec:01:9e:64:81:a1:b0:9a:a1:16:f9:27:66:6a:70:
2f:5c:7e:43:19:08:0a:60:40:c4:19:2d:b1:70:f6:56:0c:d5:
46:9f:b4:a0:f2:b7:a5:65:ff:d3:f8:7b:a5:8d:b6:5c:f4:eb:
81:de:66:1b:d6:bb:85:51:55:e6:f4:04:6b:0a:9d:6a:75:38:
54:8d:3c:87:6d:84:c8:f3:4a:29:16:b3:d4:4f:b5:51:ca:85:
1d:b2:05:03:ef:8a:c9:b0:9b:85:92:ed:a3:a1:72:1b:26:31:
1e:8e:a9:3b:bf:6b:a7:ce:db:e7:79:63:34:51:d8:9d:39:5c:
e1:4c:76:0a:53:62:b8:67:c9:d8:f9:9e:28:f4:09:a3:65:c3:
ba:02:6d:37:7f:02:ce:ab:a0:ce:66:cc:cd:04:cb:d3:75:ce:
b3:24:12:e8:30:04:14:69:00:31:95:09:f0:6b:6e:ea:49:2a:
27:96:ec:19:7e:41:5a:56:4b:7c:12:17:58:50:04:b5:aa:7d:
de:8c:a5:db:e0:10:76:c7:99:2b:1d:25:a0:43:9b:25:66:08:
d2:77:35:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0zCIqMVJJyr0XRK/oQ+1ZkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MjFkMTAzZmM3M2U5MDc1ZGNmMWUyMmJjODI0MmI3MGY5
OGM4ODQwHhcNMjYwMzI4MDYwMTMwWhcNMjYwMzI5MDYwMTMwWjAzMTEwLwYDVQQD
EyhmNzZmMzE2N2U0OTQwNzg3MDQ4NjQ4YzZmNjYwNDgyMGI1M2Q2MDUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynAAMRYlHyIa0hpzpGa87CH8HQJz
UHnmUpPBQZrxHT51fPL0g7Sq/7uVrGfcJG2Jjm2oOzpNU/UdRmyWud2uolOXPs2K
Jij5ZCU+X56jG7lcjGL4FRwAOyNs4aUNu731q+9mGKRP/D1LSpWQl2D3234qTuz0
scrOUIZGbFcWK3pC66L8khh+PtZVuu3Hhioh/Mv3Y5SgsKhHgb629CuySicVFjnk
Bic6gs7rqbWLqjLiEIuhWe4Sm8INqO45eVEcYyp6rPDo+xNZ70w0YWzP3UiGTDZG
SMkraBLO1rUoCUSkST8Ee0RIMt858uKypkE+LsVsP0+Rfg+eRcQb4oOIdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPdvMWfklAeHBIZIxvZgSCC1PWBSMB8GA1UdIwQY
MBaAFIUh0QP8c+kHXc8eIryCQrcPmMiEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iMzUxZWEtN2UwOS00NWFmLWEwZWUt
ZTQwZGUwODQxM2ZhLzEvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9iMzUxZWEtN2UwOS00NWFmLWEwZWUtZTQwZGUwODQxM2Zh
LzEvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUUfKoDUy
3GYGF8acaw59dMxtlFEPgwWwTpx64aFwqp7m5NZa/Omz7AGeZIGhsJqhFvknZmpw
L1x+QxkICmBAxBktsXD2VgzVRp+0oPK3pWX/0/h7pY22XPTrgd5mG9a7hVFV5vQE
awqdanU4VI08h22EyPNKKRaz1E+1UcqFHbIFA++KybCbhZLto6FyGyYxHo6pO79r
p87b53ljNFHYnTlc4Ux2ClNiuGfJ2PmeKPQJo2XDugJtN38CzqugzmbMzQTL03XO
syQS6DAEFGkAMZUJ8Gtu6kkqJ5bsGX5BWlZLfBIXWFAEtap93oyl2+AQdseZKx0l
oEObJWYI0nc1jw==
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:35:32 2026 by rpki-client