Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
File:                     _hpSVPN9jCkbEd2r7YiwY0gdr2s.mft (raw, json)
Hash identifier:          /cRomnQUld2k1q6mOytQo8VkGaGvOfCBimTrhpdYMdg=
Subject key identifier:   AC:A4:4A:B1:D9:92:B0:72:F3:C2:4A:B6:55:AB:E0:B3:7E:33:1C:50
Authority key identifier: FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B
Certificate issuer:       /CN=fe1a5254f37d8c291b11ddabed88b063481daf6b
Certificate serial:       019D28F2C05024631B806BD541AC411DACD8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
Manifest number:          1884
Signing time:             Thu 26 Mar 2026 07:01:30 +0000
Manifest this update:     Thu 26 Mar 2026 07:01:30 +0000
Manifest next update:     Fri 27 Mar 2026 07:01:30 +0000
Files and hashes:         1: _hpSVPN9jCkbEd2r7YiwY0gdr2s.crl (hash: 4C3xfTkIZt4P/YuDyHfAPtmji3HdsH/U6TqjO67tm0o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:f2:c0:50:24:63:1b:80:6b:d5:41:ac:41:1d:ac:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fe1a5254f37d8c291b11ddabed88b063481daf6b
        Validity
            Not Before: Mar 26 07:01:30 2026 GMT
            Not After : Mar 27 07:01:30 2026 GMT
        Subject: CN=aca44ab1d992b072f3c24ab655abe0b37e331c50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:f4:35:96:d6:b8:f4:67:d2:01:de:7d:ed:21:
                    78:f4:f8:81:18:1b:95:df:0b:00:63:38:b3:27:e4:
                    12:d2:7a:a8:b9:3b:8a:cb:e4:ec:54:9e:14:cc:ab:
                    e3:7c:e2:72:9a:c8:0b:fa:c0:bb:55:a9:f2:86:a3:
                    8c:c7:8a:ac:e4:d4:79:f2:28:66:1f:78:2c:1f:38:
                    b0:01:90:51:a0:af:64:0b:8d:79:1b:90:f8:62:f1:
                    fb:55:d6:3c:52:80:45:07:05:86:3b:6c:6e:0d:8f:
                    61:64:21:66:22:a4:33:03:d6:10:d0:3c:0d:28:f2:
                    63:4e:75:9e:1d:85:4d:61:77:da:6c:f0:4d:79:8e:
                    cf:05:20:16:26:02:ce:48:97:d9:8d:32:5a:d1:4d:
                    d1:e4:54:a9:06:69:44:a6:07:a1:b7:4e:13:68:11:
                    a7:0a:e5:3a:64:b0:01:db:82:97:dc:29:32:c9:c6:
                    b2:34:e0:f8:92:d3:37:e2:42:32:0c:c9:c2:a0:c4:
                    c0:23:f2:29:11:cc:42:44:74:98:89:67:86:cc:b4:
                    ad:a9:43:f0:95:87:1f:3a:8a:e5:66:21:19:53:48:
                    10:0f:aa:b1:33:cb:8b:de:a8:71:ca:f4:e0:36:5b:
                    01:ac:63:5c:d2:42:9c:5a:10:38:77:4d:87:a6:85:
                    fb:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:A4:4A:B1:D9:92:B0:72:F3:C2:4A:B6:55:AB:E0:B3:7E:33:1C:50
            X509v3 Authority Key Identifier:
                keyid:FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:43:68:ea:17:d1:d7:a9:46:44:71:9a:db:ae:f4:21:f1:d4:
         1b:ff:af:1c:88:66:bc:07:17:1c:c8:57:31:86:53:ad:2b:bf:
         a9:15:ba:46:ae:c7:bf:94:9d:81:19:79:ff:bc:12:27:38:06:
         6c:b9:7e:8d:ab:4d:fd:b0:e5:0c:4b:3d:d0:2e:0b:5f:48:c8:
         5f:02:e0:2c:60:9f:e0:9c:8b:f4:c2:1a:a3:e8:b6:64:0e:e8:
         db:22:0d:83:1e:dd:d0:1c:54:26:4f:fc:b6:62:ea:91:e7:4d:
         35:56:08:6c:89:a8:d0:93:d8:50:e5:2b:cd:00:d5:3f:75:2a:
         c3:18:ff:39:b3:02:be:1d:15:68:86:1e:a3:57:16:3e:18:e2:
         4d:e2:88:7c:c0:a7:30:13:00:64:5f:52:b8:26:4d:bc:1d:62:
         cf:ea:62:38:88:19:18:24:d7:35:58:41:62:16:85:7e:65:5f:
         5a:aa:61:91:b0:2f:29:e3:64:f3:4d:d0:23:b2:ef:d9:6f:f7:
         c9:57:7f:10:e0:2b:6d:a9:d9:0b:96:ba:30:58:4b:f0:8e:dd:
         5c:1e:2a:db:8b:87:e9:2a:99:7c:b6:44:fe:dd:7b:47:84:89:
         4a:86:7e:2d:b4:9c:6b:c6:2c:96:ea:41:67:8d:13:69:f6:b6:
         1d:be:c5:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8sBQJGMbgGvVQaxBHazYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlMWE1MjU0ZjM3ZDhjMjkxYjExZGRhYmVkODhiMDYzNDgx
ZGFmNmIwHhcNMjYwMzI2MDcwMTMwWhcNMjYwMzI3MDcwMTMwWjAzMTEwLwYDVQQD
EyhhY2E0NGFiMWQ5OTJiMDcyZjNjMjRhYjY1NWFiZTBiMzdlMzMxYzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/Q1lta49GfSAd597SF49PiBGBuV
3wsAYzizJ+QS0nqouTuKy+TsVJ4UzKvjfOJymsgL+sC7VanyhqOMx4qs5NR58ihm
H3gsHziwAZBRoK9kC415G5D4YvH7VdY8UoBFBwWGO2xuDY9hZCFmIqQzA9YQ0DwN
KPJjTnWeHYVNYXfabPBNeY7PBSAWJgLOSJfZjTJa0U3R5FSpBmlEpgeht04TaBGn
CuU6ZLAB24KX3CkyycayNOD4ktM34kIyDMnCoMTAI/IpEcxCRHSYiWeGzLStqUPw
lYcfOorlZiEZU0gQD6qxM8uL3qhxyvTgNlsBrGNc0kKcWhA4d02HpoX7mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKykSrHZkrBy88JKtlWr4LN+MxxQMB8GA1UdIwQY
MBaAFP4aUlTzfYwpGxHdq+2IsGNIHa9rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2hwU1ZQTjlqQ2tiRWQycjdZaXdZMGdkcjJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS82M2Y2MGEtMjdkNy00OTFlLWJkYzIt
ZmEwZDBlODA1ZGY4LzEvX2hwU1ZQTjlqQ2tiRWQycjdZaXdZMGdkcjJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS82M2Y2MGEtMjdkNy00OTFlLWJkYzItZmEwZDBlODA1ZGY4
LzEvX2hwU1ZQTjlqQ2tiRWQycjdZaXdZMGdkcjJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM0No6hfR
16lGRHGa2670IfHUG/+vHIhmvAcXHMhXMYZTrSu/qRW6Rq7Hv5SdgRl5/7wSJzgG
bLl+jatN/bDlDEs90C4LX0jIXwLgLGCf4JyL9MIao+i2ZA7o2yINgx7d0BxUJk/8
tmLqkedNNVYIbImo0JPYUOUrzQDVP3Uqwxj/ObMCvh0VaIYeo1cWPhjiTeKIfMCn
MBMAZF9SuCZNvB1iz+piOIgZGCTXNVhBYhaFfmVfWqphkbAvKeNk803QI7Lv2W/3
yVd/EOArbanZC5a6MFhL8I7dXB4q24uH6SqZfLZE/t17R4SJSoZ+LbSca8YslupB
Z40Tafa2Hb7FRA==
-----END CERTIFICATE-----