Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: LzhlzPW4qsVXUn2R7WX+RbQ4dFnjVJDiDxW70LQjdxs=
Subject key identifier: 87:A2:EC:70:0A:FB:68:16:88:49:95:6C:E9:0A:BA:0C:C9:9C:7D:0E
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 019D2A044F2F81389F1FD4399A460B7D5639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 12BC
Signing time: Thu 26 Mar 2026 12:00:18 +0000
Manifest this update: Thu 26 Mar 2026 12:00:18 +0000
Manifest next update: Fri 27 Mar 2026 12:00:18 +0000
Files and hashes: 1: Kj0HsXicjlUn-679OFq2n6YXriA.roa (hash: oCViwBHC3VWx+KMwr83UJNJcJLGK68aAWyXoMhEGcUQ=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: iLzzxAEH5XZ7m4fSOjQ/LWFauvJ4tIwYy2Vjm9AboiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:4f:2f:81:38:9f:1f:d4:39:9a:46:0b:7d:56:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Mar 26 12:00:18 2026 GMT
Not After : Mar 27 12:00:18 2026 GMT
Subject: CN=87a2ec700afb68168849956ce90aba0cc99c7d0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:18:30:69:ce:75:d3:0b:b7:cb:23:7e:6e:39:
b7:58:7d:aa:a5:f1:48:a1:a4:57:9f:71:47:1b:18:
fd:42:2f:64:60:1c:fd:d8:c2:6a:50:1a:f2:c2:f3:
0d:44:d7:cb:6b:73:8d:85:34:9a:9d:41:3a:f0:54:
b8:17:d5:42:70:fd:40:41:be:2b:d7:a1:37:71:9e:
47:22:44:4a:6e:ac:be:68:0c:1e:fc:24:26:32:9c:
f5:22:0c:3f:35:85:3e:a7:87:52:7e:93:f5:e8:d4:
fa:99:49:af:6c:e2:32:b2:a9:47:53:eb:63:d0:cb:
94:e8:4d:8b:06:96:c2:f2:1f:32:bb:c1:12:02:ff:
bc:5c:e6:03:88:83:54:15:ba:5b:e0:06:c2:55:86:
b8:a9:05:a0:ca:08:d1:09:eb:f9:ea:14:e5:7c:c1:
29:05:f4:5b:8d:af:cc:19:2a:6b:45:1d:56:fe:0b:
f7:df:f2:f0:60:1c:df:15:44:d4:8c:8a:00:05:99:
c3:d8:05:1e:55:17:3c:cd:17:29:05:03:7e:68:97:
aa:ba:c4:3d:cc:21:bf:12:a9:e7:3c:a9:b9:17:2a:
fc:19:42:42:1e:7c:c4:70:69:3d:cc:de:f0:76:61:
cc:d6:a0:62:6c:c1:a9:8c:1d:d1:c2:82:c4:f5:8d:
0a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A2:EC:70:0A:FB:68:16:88:49:95:6C:E9:0A:BA:0C:C9:9C:7D:0E
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:3b:cb:92:ab:2c:a6:84:9b:8a:97:61:0e:4f:44:fd:22:33:
5a:44:82:1e:96:3f:0b:4b:c8:fd:37:90:47:01:56:17:ae:5f:
ee:3f:58:94:44:4c:9c:43:7f:11:02:4c:7e:79:d5:39:9d:15:
5a:49:00:a6:30:34:53:bc:1f:80:30:1f:0b:15:78:d8:c7:b1:
c7:c8:56:dd:7a:07:a3:38:e9:be:6e:8d:47:bc:53:67:4b:f7:
de:e2:26:88:2e:0d:74:77:73:37:7d:d4:e7:4e:3d:73:b1:f6:
26:f6:48:69:a7:6d:79:13:7b:ec:ee:33:cc:af:5d:52:6f:fb:
8c:fd:c8:22:10:9c:df:b8:4a:03:a8:98:9b:f7:1d:56:d5:62:
b1:52:82:9b:91:44:83:1b:c2:4a:67:42:67:df:e1:35:43:94:
80:57:d3:56:9a:cc:d4:c9:7e:dd:d8:9f:20:48:ad:c0:e9:24:
a0:67:8b:2c:5a:04:40:d3:43:b6:64:d5:fa:ce:34:10:64:3b:
7b:ae:16:d4:ba:d4:2d:f7:8b:3b:d3:d3:bb:33:e1:c4:7a:e1:
22:b4:f8:9c:34:96:b9:ad:7a:0b:db:a2:7e:7a:65:96:55:87:
4c:aa:2a:6c:15:48:34:b9:d2:a7:14:6e:c1:52:0f:30:75:d5:
2a:4f:6b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:40:37 2026 by rpki-client