Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
File: hAfwBj7przHYfP5lubwZPrQsiWk.mft (raw, json)
Hash identifier: zMSKeb+7fumoPo2gEshquvpYoKu2aNy15ieMUPih3Wc=
Subject key identifier: 75:E9:D8:AA:91:09:0C:6E:25:87:F7:C0:0E:BF:40:07:15:6B:F4:20
Authority key identifier: 84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
Certificate issuer: /CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Certificate serial: 019D273B29BE085D8A8775B4896572D9DBCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
Manifest number: 08EA
Signing time: Wed 25 Mar 2026 23:01:21 +0000
Manifest this update: Wed 25 Mar 2026 23:01:21 +0000
Manifest next update: Thu 26 Mar 2026 23:01:21 +0000
Files and hashes: 1: hAfwBj7przHYfP5lubwZPrQsiWk.crl (hash: 9Yofhu59gP7lB/H9EPqboTtpHFhZBCTKpgsygsRdCiU=)
2: ilf77_-o9-q6za7MOsqeG7F-F18.roa (hash: QcXY77GP6oWSI7llT54vOOPgAvyMn7s0Et6LlhSw/kk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:29:be:08:5d:8a:87:75:b4:89:65:72:d9:db:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Validity
Not Before: Mar 25 23:01:21 2026 GMT
Not After : Mar 26 23:01:21 2026 GMT
Subject: CN=75e9d8aa91090c6e2587f7c00ebf4007156bf420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b8:4e:78:10:9d:63:45:c1:31:64:53:d8:bf:
9c:41:5a:85:5d:28:63:d8:66:19:a5:d8:2d:47:63:
0a:68:21:36:e5:24:43:81:a1:57:92:5e:c6:8b:6c:
a1:db:03:2b:89:8c:23:49:c1:ab:5d:ff:3a:c0:36:
7a:0a:f6:7d:b9:76:59:c2:40:5c:4b:92:a6:f8:bc:
cf:ca:d5:d2:47:4b:ea:5d:44:97:81:9f:a9:3b:04:
c8:10:7a:77:67:2f:28:3a:df:f7:2a:e1:99:27:2e:
4e:9b:0c:ae:16:42:f5:5b:86:b0:cb:21:38:d7:46:
79:00:67:b8:5b:06:e3:83:fb:42:e5:7c:be:e8:c3:
d3:e5:21:90:3b:a7:a2:64:7f:8c:bc:65:2e:cf:9c:
d9:47:8a:c7:e1:b2:74:1a:eb:cc:4c:9f:06:c1:bc:
3a:34:74:d3:28:85:b9:35:4a:cd:16:dc:76:e7:22:
02:18:3b:d0:72:33:96:d0:24:5f:a5:ce:db:d3:52:
a0:96:2d:85:a4:b1:24:0a:6c:0d:98:eb:a5:01:3e:
e8:df:ea:db:7a:34:2a:48:a0:6a:53:32:e6:66:14:
12:29:e5:8c:32:34:91:51:c1:e3:ab:52:39:0a:17:
ae:46:40:75:45:68:b0:58:88:0d:ce:11:b5:34:e9:
24:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E9:D8:AA:91:09:0C:6E:25:87:F7:C0:0E:BF:40:07:15:6B:F4:20
X509v3 Authority Key Identifier:
keyid:84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:fa:d5:32:d7:0f:15:c6:76:59:ac:e5:7b:98:c2:a0:c2:c6:
e2:ac:a8:44:bf:7e:a2:c9:d4:52:7a:0b:9e:f2:6d:49:e2:5f:
fd:6c:ca:c0:e5:b3:21:dd:42:2c:c5:d9:e3:2b:f0:a7:c2:f2:
a9:c0:b3:b5:0e:35:6b:bf:1a:90:43:b4:cf:45:c2:29:82:dc:
74:b5:28:4d:67:31:90:7c:07:56:65:2a:42:53:8b:ad:3a:ea:
54:0d:9b:92:91:19:32:27:ac:f6:85:11:2f:59:1a:23:ee:dd:
85:1e:e2:f0:4b:4d:0f:11:70:d1:b5:a6:d8:a4:33:4a:80:b8:
d6:0a:be:45:3a:59:f2:eb:a5:33:e5:f6:7f:c8:8f:b6:7a:f8:
8c:17:dd:ba:d7:a5:8d:c7:d9:25:3b:27:50:a9:24:21:7d:cb:
b7:a9:98:4f:9c:06:aa:e0:13:d8:52:95:7e:f5:af:b3:90:52:
a0:33:50:ac:59:b1:56:be:3e:01:e3:5a:cf:85:29:8d:82:26:
b4:5c:25:61:9d:78:5f:31:10:f6:f7:6c:31:fc:39:7a:ed:14:
d9:66:4d:5e:f4:0e:90:e1:76:05:4e:6e:b5:79:95:14:bb:c6:
5d:06:d7:53:46:e1:db:7b:77:18:c1:15:af:87:25:27:05:24:
9a:7e:c2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:55:09 2026 by rpki-client