Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
File: hpA1wxdzT2Ybv4XCGEFVofNhat0.mft (raw, json)
Hash identifier: qP6MBSZvm+FHLZ1jwMPJroEWuMtUoMTHQxD+pmJm7BU=
Subject key identifier: 56:85:11:EF:75:80:8D:56:DC:86:97:09:2C:2F:52:40:57:9B:1D:49
Authority key identifier: 86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
Certificate issuer: /CN=869035c317734f661bbf85c2184155a1f3616add
Certificate serial: 019D999941152FD2C1696BE19485A9D04729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
Manifest number: 1448
Signing time: Fri 17 Apr 2026 04:00:50 +0000
Manifest this update: Fri 17 Apr 2026 04:00:50 +0000
Manifest next update: Sat 18 Apr 2026 04:00:50 +0000
Files and hashes: 1: hpA1wxdzT2Ybv4XCGEFVofNhat0.crl (hash: crm4Uj6ad6rdAHvfRa2p58n9ksYPQoIpQoG7b7vVVWY=)
2: xICMKArLvTx29numTiutzmAayDM.roa (hash: Lqd0tIHATER1ygDumfjqbLFR0sPowEmoXTK5gpQqBN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:41:15:2f:d2:c1:69:6b:e1:94:85:a9:d0:47:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869035c317734f661bbf85c2184155a1f3616add
Validity
Not Before: Apr 17 04:00:50 2026 GMT
Not After : Apr 18 04:00:50 2026 GMT
Subject: CN=568511ef75808d56dc8697092c2f5240579b1d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:6d:81:56:22:f5:a2:43:ff:da:7d:2b:0f:74:
8d:1b:29:17:f0:de:73:43:80:47:fa:22:e8:c1:98:
68:15:89:dc:52:d1:2c:0c:c4:7d:b7:70:5f:83:96:
21:6f:d3:9c:47:f7:bc:16:b5:40:9a:9f:2c:71:aa:
e9:58:8c:8a:3a:32:f3:0c:8d:27:2e:37:10:bb:f7:
07:5b:68:af:40:93:2d:08:7b:8c:11:72:0d:29:ca:
bf:c3:40:f3:16:57:d6:67:2c:b6:1d:de:e9:6b:a8:
88:05:20:96:b0:7d:e2:65:51:71:77:9f:d9:cc:3c:
40:1e:3d:77:6b:af:db:aa:50:98:05:7f:96:d3:33:
fb:e5:e5:6c:4d:ad:16:30:54:09:87:bf:78:1b:f8:
0e:7b:e8:26:d7:31:7f:86:79:44:5c:5f:32:b1:17:
7a:a1:31:e6:f8:2d:73:c7:12:44:ee:4b:60:0f:60:
71:70:53:9b:59:db:07:7a:56:6f:ae:0e:73:86:30:
4b:7a:b3:f4:65:62:d3:8e:68:ae:68:23:d5:ee:76:
1f:b2:ef:8e:c2:0f:07:81:5f:8a:bd:9f:bb:db:fc:
db:be:43:9b:c9:3d:f0:08:df:5a:31:14:9a:5c:f5:
52:53:43:2a:62:43:a9:a0:f9:4c:e2:8a:96:d0:8f:
9d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:85:11:EF:75:80:8D:56:DC:86:97:09:2C:2F:52:40:57:9B:1D:49
X509v3 Authority Key Identifier:
keyid:86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:89:ae:a9:8d:ee:5e:43:bb:7e:68:5c:51:28:65:06:3a:2b:
d3:66:24:59:12:2c:0e:75:f3:25:0e:07:3e:94:ae:bc:73:79:
0b:7f:96:0b:f2:eb:6d:17:59:62:90:69:56:e0:eb:d6:d1:f7:
5c:49:50:3e:31:5b:15:84:1a:e9:87:13:de:02:49:d7:c6:be:
87:09:d0:95:39:bc:1d:1b:e0:97:1a:0a:fb:71:33:67:48:07:
05:76:c7:db:87:e6:91:f8:2a:e3:f3:e2:a9:e1:5c:cb:70:f1:
04:ab:5e:8f:9d:a8:42:81:1b:6f:05:36:de:d1:f7:43:f0:ac:
b0:f7:67:28:96:30:a7:c8:fc:83:46:7d:ef:26:5f:99:e6:64:
f2:95:a2:01:e2:14:a7:4a:42:59:9b:8b:80:e7:61:a0:a8:ef:
26:eb:7d:58:50:47:54:7a:51:b9:5f:31:0b:90:92:f3:70:52:
b4:09:2c:09:fb:d9:51:37:4b:01:51:a7:7e:40:6a:3b:ba:5d:
0a:d4:03:3e:48:2e:fe:54:36:64:91:f8:a9:b0:89:9f:7b:2c:
02:55:18:ae:63:84:58:5b:53:d1:dd:23:8b:0c:ba:66:ec:82:
85:06:3f:89:e2:47:d7:fa:23:45:97:de:0f:90:d9:7a:51:46:
16:c6:90:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:01:21 2026 by rpki-client