Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json)
Hash identifier: bk9sH4IN9zLstTNX55ckDDiBBstgsvRlY9CpQSNsa8k=
Subject key identifier: 8E:6F:E4:A2:9E:23:9C:62:DF:25:80:01:FA:12:5A:42:3F:55:CF:92
Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714
Certificate serial: 019D27A87C5B79B1E770AE2316B77BC2ECA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
Manifest number: 0678
Signing time: Thu 26 Mar 2026 01:00:46 +0000
Manifest this update: Thu 26 Mar 2026 01:00:46 +0000
Manifest next update: Fri 27 Mar 2026 01:00:46 +0000
Files and hashes: 1: 1-7HFtUN3vZHJP99F9s_042HCi_o.roa (hash: v3oy8qKtaxYoYTFlbLGcHquGHI0mpb7e1cJJAPr+1KI=)
2: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: s+Vyi0ihGhAVLB3R4bqp3WpIE/UtViirHm7FtM9ISXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:7c:5b:79:b1:e7:70:ae:23:16:b7:7b:c2:ec:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714
Validity
Not Before: Mar 26 01:00:46 2026 GMT
Not After : Mar 27 01:00:46 2026 GMT
Subject: CN=8e6fe4a29e239c62df258001fa125a423f55cf92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4d:73:ca:0d:82:7a:48:ae:9f:1c:01:e0:48:
07:bb:c6:07:82:7a:de:8c:55:e8:86:fc:a4:4c:8e:
2b:c7:17:32:ad:c2:61:2e:fd:d0:d0:71:7a:4c:19:
6d:8f:ff:5f:93:47:ea:46:9e:56:f4:ef:1f:53:c5:
f1:81:e9:89:5c:81:38:22:0d:41:b2:f6:19:3c:91:
25:43:cd:b6:e7:77:fd:f3:db:b9:af:d6:87:b1:59:
d4:11:05:84:44:b1:73:c0:c2:b0:74:a0:24:53:04:
db:0e:3a:e5:cb:57:ff:1f:14:0b:33:59:01:2a:83:
98:01:be:c3:1e:63:77:68:f9:4d:ce:ae:fe:8d:36:
b5:8c:5d:bd:cb:95:a3:0f:22:0b:c7:02:45:6b:0e:
5a:4b:93:13:3e:e0:88:90:9b:53:99:0b:81:90:17:
d1:d7:7e:c3:fd:8f:28:ae:68:94:96:aa:48:94:06:
ee:d1:a7:66:fd:af:31:33:5e:78:ef:03:e1:ec:9f:
41:35:1e:1e:6d:7f:2c:cc:78:05:67:60:4d:0c:30:
7a:d4:ed:0e:03:46:d5:41:b4:86:1a:f6:a2:ce:da:
4c:7d:fe:85:82:db:34:e3:c4:9a:a5:3a:37:a7:72:
12:69:61:0a:2a:be:20:e2:71:a1:24:78:75:96:8d:
25:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6F:E4:A2:9E:23:9C:62:DF:25:80:01:FA:12:5A:42:3F:55:CF:92
X509v3 Authority Key Identifier:
keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:2d:12:d6:11:72:12:0c:d5:55:39:d2:63:5b:df:e2:14:46:
89:db:ac:8b:4c:99:2a:13:c0:f6:94:93:ac:7f:aa:dd:31:bb:
ee:7c:19:eb:2d:de:45:1f:ad:0f:40:74:ae:6e:de:e7:cf:21:
37:1f:34:a4:87:0b:36:db:e0:ae:d1:02:a7:d2:3b:63:e2:ba:
3a:b1:89:ea:41:b3:17:d0:96:03:47:a2:1d:d8:f0:7d:c9:e7:
68:37:21:1d:07:a1:a6:b4:d4:85:31:7f:04:4b:da:f8:47:4d:
b3:fc:9c:ae:31:a5:29:9f:e8:ff:da:ac:5c:dc:14:8a:8c:61:
9a:97:1d:4f:d8:4a:bf:24:00:f1:b9:40:62:6c:ad:00:4e:4b:
d0:4a:c3:a9:71:15:2e:76:46:13:02:f5:0f:3e:f3:07:88:bb:
f7:51:fa:94:df:9d:c3:0e:fb:f3:e9:b0:57:15:58:12:e9:09:
c4:2a:8c:38:af:fb:92:49:7e:54:e8:7e:f3:09:c1:9e:71:b8:
c8:11:20:ae:13:d2:c6:76:22:55:01:31:3f:64:af:83:57:03:
21:7b:b5:6d:c4:2c:ae:d3:aa:60:95:24:3e:cc:b7:f6:cd:20:
f7:d7:76:f6:03:1c:69:f2:c8:a1:b4:0e:78:c0:03:4f:78:fb:
6b:53:90:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:22 2026 by rpki-client