Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: NUTXwz4aGMBPEi/ICnJqhWYN88qKGP+fb56H10jnUUQ=
Subject key identifier: BA:5D:80:EC:7F:C3:06:81:2F:BE:22:16:0C:3A:BD:29:DC:1A:84:AE
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 019D29CDF4242FED073A9DD22F5D0588E22F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 06F0
Signing time: Thu 26 Mar 2026 11:00:56 +0000
Manifest this update: Thu 26 Mar 2026 11:00:56 +0000
Manifest next update: Fri 27 Mar 2026 11:00:56 +0000
Files and hashes: 1: OpVP9Jc1xVaXbqJf86X7XVLPEVg.roa (hash: hPcfxfvwY6smKQuTD+0Hf69aqpf3jRgfObWjITTCQao=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: gP37WRxyHlVbz+90+wQSTTAIVjnlY9zCCGgz3MsbGxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:cd:f4:24:2f:ed:07:3a:9d:d2:2f:5d:05:88:e2:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Mar 26 11:00:56 2026 GMT
Not After : Mar 27 11:00:56 2026 GMT
Subject: CN=ba5d80ec7fc306812fbe22160c3abd29dc1a84ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1d:ea:ca:2a:d4:f0:06:6c:09:86:fa:a9:ad:
dd:18:fd:7a:b9:14:b2:34:0c:bf:48:58:c8:9b:9b:
9b:b1:09:27:07:98:bb:bb:a9:a7:fa:a7:cd:94:67:
b0:4d:d1:ad:a6:e9:b9:c0:2f:cc:55:91:cc:b9:3c:
9e:6e:ee:1d:8a:dc:b2:40:17:6e:cc:42:b6:89:e0:
44:57:63:bd:6d:f8:92:ea:58:64:fe:65:cb:76:ef:
a3:be:72:4d:b1:26:db:c1:64:bf:1a:ed:80:43:62:
89:5b:a9:5a:85:d6:50:cb:ca:71:c2:0a:3c:81:37:
fd:e0:02:fa:a2:51:6c:93:ec:8c:e0:e0:9e:cf:d6:
d8:6f:5b:84:ce:e4:18:e4:ed:59:3a:89:34:95:5b:
ef:86:43:be:5c:e0:a3:a8:7c:4f:36:46:ba:db:2b:
13:e0:82:35:1a:26:3a:d8:ce:19:9e:12:60:80:6b:
13:56:f9:2c:f9:84:cf:1a:3c:31:35:57:c9:0f:5d:
10:de:75:36:d8:e1:7b:20:be:c2:9c:a4:e3:52:b0:
20:c7:24:4a:06:6a:fd:9f:72:ca:98:6b:69:83:fc:
30:8b:f9:f2:ad:c7:81:82:5e:cb:41:f3:8e:af:d1:
de:46:bc:d9:e2:cf:fc:74:1f:cf:be:f8:94:9f:ca:
5d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:5D:80:EC:7F:C3:06:81:2F:BE:22:16:0C:3A:BD:29:DC:1A:84:AE
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:3e:6e:3a:11:71:8c:52:4c:f6:ad:f9:1e:b6:14:57:c6:cd:
41:7c:5d:61:e1:51:40:37:fb:4f:a3:18:19:eb:7b:d1:8a:28:
2b:57:4c:04:a4:b6:7c:5d:1f:bd:d3:f7:31:c2:73:8a:14:2c:
2e:9e:b2:bb:22:11:1e:a9:0d:f1:0c:01:28:a4:8d:ea:8c:86:
c1:6b:af:4e:86:5c:f8:e1:24:82:2c:a5:65:cc:90:bc:fe:49:
80:ee:12:06:62:50:ca:f7:16:17:be:28:1a:d5:47:54:53:92:
9a:4d:d9:2a:a5:62:48:07:d0:72:5c:ff:c6:81:3d:10:5f:97:
b3:69:48:aa:dd:42:35:29:01:e0:89:4f:08:a7:1c:11:86:9e:
dc:99:20:8e:15:eb:c2:41:2a:22:f7:d1:39:16:d2:4e:c1:9a:
5e:6d:cd:b1:fc:66:32:ba:4f:a5:4f:25:06:70:4e:50:ba:6b:
4c:b0:5d:17:d0:7e:7c:15:d2:7a:82:03:e3:59:fe:db:1b:c8:
b8:1b:54:9a:14:18:de:fb:94:90:37:93:19:42:23:72:c8:e0:
a7:cb:49:52:95:0e:8c:c8:71:2b:b3:ce:d2:fd:9f:c0:a9:eb:
c0:b4:66:96:aa:92:ac:86:2f:e4:92:4a:3b:91:55:2a:c2:9a:
79:af:9d:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzfQkL+0HOp3SL10FiOIvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NzU4ZDhhN2VkMjFhNzQxNzJjY2VlYzMzOGM2NGQzNmIw
Mzc4ZDQwHhcNMjYwMzI2MTEwMDU2WhcNMjYwMzI3MTEwMDU2WjAzMTEwLwYDVQQD
EyhiYTVkODBlYzdmYzMwNjgxMmZiZTIyMTYwYzNhYmQyOWRjMWE4NGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjR3qyirU8AZsCYb6qa3dGP16uRSy
NAy/SFjIm5ubsQknB5i7u6mn+qfNlGewTdGtpum5wC/MVZHMuTyebu4dityyQBdu
zEK2ieBEV2O9bfiS6lhk/mXLdu+jvnJNsSbbwWS/Gu2AQ2KJW6lahdZQy8pxwgo8
gTf94AL6olFsk+yM4OCez9bYb1uEzuQY5O1ZOok0lVvvhkO+XOCjqHxPNka62ysT
4II1GiY62M4ZnhJggGsTVvks+YTPGjwxNVfJD10Q3nU22OF7IL7CnKTjUrAgxyRK
Bmr9n3LKmGtpg/wwi/nyrceBgl7LQfOOr9HeRrzZ4s/8dB/PvviUn8pdYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLpdgOx/wwaBL74iFgw6vSncGoSuMB8GA1UdIwQY
MBaAFIZ1jYp+0hp0FyzO7DOMZNNrA3jUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQt
Y2RhY2I4NDY3MTg3LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQtY2RhY2I4NDY3MTg3
LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhD5uOhFx
jFJM9q35HrYUV8bNQXxdYeFRQDf7T6MYGet70YooK1dMBKS2fF0fvdP3McJzihQs
Lp6yuyIRHqkN8QwBKKSN6oyGwWuvToZc+OEkgiylZcyQvP5JgO4SBmJQyvcWF74o
GtVHVFOSmk3ZKqViSAfQclz/xoE9EF+Xs2lIqt1CNSkB4IlPCKccEYae3JkgjhXr
wkEqIvfRORbSTsGaXm3NsfxmMrpPpU8lBnBOULprTLBdF9B+fBXSeoID41n+2xvI
uBtUmhQY3vuUkDeTGUIjcsjgp8tJUpUOjMhxK7PO0v2fwKnrwLRmlqqSrIYv5JJK
O5FVKsKaea+d3A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:51:42 2026 by rpki-client