Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
File: hGbpF0La0bn0x5ayOzfres2FgWE.mft (raw, json)
Hash identifier: TKrALTdUd96iGID/b0cEznnS1A2zh2BreyVlTMrK/cI=
Subject key identifier: 1B:81:FE:C4:88:60:49:A2:C9:9A:12:AB:21:B4:7B:A3:0F:FA:61:9E
Authority key identifier: 84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
Certificate issuer: /CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Certificate serial: 019D25F1884B4D63BB23852DDD6417CECCB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
Manifest number: 1327
Signing time: Wed 25 Mar 2026 17:01:19 +0000
Manifest this update: Wed 25 Mar 2026 17:01:19 +0000
Manifest next update: Thu 26 Mar 2026 17:01:19 +0000
Files and hashes: 1: V6Mvsnc7Z774Ev5q6h6Mb-ytj-8.roa (hash: /GNFnTbzQDf+YRxBgnXt7mG8KTDdxxNld8mJ/4Y6skk=)
2: hGbpF0La0bn0x5ayOzfres2FgWE.crl (hash: GyFQTBmUH0BXciv/S4U5qfBF7nSv3cMSo2Lack/viRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:88:4b:4d:63:bb:23:85:2d:dd:64:17:ce:cc:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Validity
Not Before: Mar 25 17:01:19 2026 GMT
Not After : Mar 26 17:01:19 2026 GMT
Subject: CN=1b81fec4886049a2c99a12ab21b47ba30ffa619e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:32:f5:3c:ea:91:4c:7e:52:45:2d:1e:f5:82:
29:f8:58:be:f4:65:c1:0a:49:a6:37:92:26:a5:89:
a2:e6:23:9e:82:ed:cc:f1:1c:5d:1a:a0:a8:7a:b6:
3e:f3:7c:ee:c9:ab:21:4a:f1:55:12:c3:97:23:6e:
ec:85:37:a0:85:14:5c:13:48:51:fd:12:ac:77:35:
04:2e:71:61:92:8f:61:ea:16:94:c9:47:11:c9:be:
1b:8b:58:2e:c6:0e:ed:17:a3:62:49:6c:e3:2e:d7:
4a:b3:a9:7e:ff:3c:3c:e7:bd:33:5b:43:00:95:60:
ff:17:54:90:e8:60:38:cb:a1:aa:ab:15:a1:72:d4:
d5:ec:19:29:2f:7a:64:e9:9c:8c:20:e6:88:9d:d9:
2a:0a:f5:23:57:19:c9:04:f6:41:c0:13:c6:72:51:
9b:d6:a9:5a:42:8e:c4:7a:2d:30:10:f6:0d:68:c1:
58:9a:e6:db:8b:42:d8:57:a2:a4:ea:b8:5e:c6:d3:
a4:cb:70:7f:db:71:37:9e:d5:95:c0:9f:2d:77:7d:
b0:1c:93:bf:78:17:ff:15:a9:dc:21:83:33:57:53:
d5:e8:1a:87:17:a5:c7:4c:db:0d:f1:5d:72:e2:6b:
37:c8:c9:0c:06:ce:bf:52:b6:b7:a1:55:aa:98:bf:
53:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:81:FE:C4:88:60:49:A2:C9:9A:12:AB:21:B4:7B:A3:0F:FA:61:9E
X509v3 Authority Key Identifier:
keyid:84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a8:eb:ea:7f:44:05:6a:b3:66:fe:4a:b0:d6:fd:81:7d:7e:
a4:92:a8:a5:d6:9d:27:ff:6e:37:2a:3c:e1:00:17:db:86:ff:
55:c5:3d:6b:07:e9:82:29:57:2f:23:f9:ab:4f:70:d9:45:2d:
1e:29:d3:ea:23:fc:cd:4a:9b:d8:3e:a5:d5:e7:b7:fa:67:0a:
5d:0b:8c:fe:ee:d8:9d:ba:08:25:18:87:db:30:2f:df:3c:4d:
8b:0d:ae:3c:33:1a:e7:a2:7e:5d:fe:cd:53:df:16:03:5e:f2:
5a:64:df:28:f3:04:50:c3:e6:d1:1e:85:c0:60:37:b7:68:40:
bb:f7:48:ed:c2:00:a9:06:2b:29:80:0d:83:b8:3e:db:09:0e:
f3:ca:77:39:d0:26:56:e7:99:57:82:03:b8:7e:5b:dc:bf:70:
b1:be:0e:9e:7d:29:66:c5:ca:64:b1:79:88:4b:6f:16:73:c6:
fe:40:72:d1:36:e0:ef:5e:90:dc:06:ed:c4:22:f0:1d:e9:8d:
68:82:4c:75:4a:b6:70:30:c2:0d:61:58:7b:68:73:87:02:8b:
02:82:2d:5e:e2:3e:0a:f5:c3:44:a0:01:57:74:a5:fa:2e:44:
f7:d7:96:a3:08:19:24:2a:ca:df:c7:04:f5:ff:e3:72:36:4e:
73:0e:5a:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8YhLTWO7I4Ut3WQXzsy3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NjZlOTE3NDJkYWQxYjlmNGM3OTZiMjNiMzdlYjdhY2Q4
NTgxNjEwHhcNMjYwMzI1MTcwMTE5WhcNMjYwMzI2MTcwMTE5WjAzMTEwLwYDVQQD
EygxYjgxZmVjNDg4NjA0OWEyYzk5YTEyYWIyMWI0N2JhMzBmZmE2MTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4TL1POqRTH5SRS0e9YIp+Fi+9GXB
CkmmN5ImpYmi5iOegu3M8RxdGqCoerY+83zuyashSvFVEsOXI27shTeghRRcE0hR
/RKsdzUELnFhko9h6haUyUcRyb4bi1guxg7tF6NiSWzjLtdKs6l+/zw8570zW0MA
lWD/F1SQ6GA4y6GqqxWhctTV7BkpL3pk6ZyMIOaIndkqCvUjVxnJBPZBwBPGclGb
1qlaQo7Eei0wEPYNaMFYmubbi0LYV6Kk6rhextOky3B/23E3ntWVwJ8td32wHJO/
eBf/FancIYMzV1PV6BqHF6XHTNsN8V1y4ms3yMkMBs6/Ura3oVWqmL9TMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBuB/sSIYEmiyZoSqyG0e6MP+mGeMB8GA1UdIwQY
MBaAFIRm6RdC2tG59MeWsjs363rNhYFhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAt
NGUzMmM4YjhlZTM2LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAtNGUzMmM4YjhlZTM2
LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASqjr6n9E
BWqzZv5KsNb9gX1+pJKopdadJ/9uNyo84QAX24b/VcU9awfpgilXLyP5q09w2UUt
HinT6iP8zUqb2D6l1ee3+mcKXQuM/u7YnboIJRiH2zAv3zxNiw2uPDMa56J+Xf7N
U98WA17yWmTfKPMEUMPm0R6FwGA3t2hAu/dI7cIAqQYrKYANg7g+2wkO88p3OdAm
VueZV4IDuH5b3L9wsb4Onn0pZsXKZLF5iEtvFnPG/kBy0Tbg716Q3AbtxCLwHemN
aIJMdUq2cDDCDWFYe2hzhwKLAoItXuI+CvXDRKABV3Sl+i5E99eWowgZJCrK38cE
9f/jcjZOcw5arw==
-----END CERTIFICATE-----
Generated at Wed Mar 25 23:18:14 2026 by rpki-client