Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: jQH2MTyIc8Y1ScZJFGy0uBSRNeUcBhyx0PzI9fpXcHM=
Subject key identifier: 7B:C9:E9:E2:C5:89:6F:D5:35:DC:6E:50:EA:C6:DF:37:B5:8A:EF:7F
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 019D9B19BA69A949BE16705FE3194CFFA8F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 129F
Signing time: Fri 17 Apr 2026 11:00:47 +0000
Manifest this update: Fri 17 Apr 2026 11:00:47 +0000
Manifest next update: Sat 18 Apr 2026 11:00:47 +0000
Files and hashes: 1: cuE4TW5rh-XwN9tNjWmFmQtIPFU.roa (hash: NU4Otp39oKMhqOc0L+AnrGl6IMBfgna2IPqlcLesd28=)
2: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: kQ23XyiVx1EsmOgWgsoA89fRTPV/voFsd89mZGX+f/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:ba:69:a9:49:be:16:70:5f:e3:19:4c:ff:a8:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Apr 17 11:00:47 2026 GMT
Not After : Apr 18 11:00:47 2026 GMT
Subject: CN=7bc9e9e2c5896fd535dc6e50eac6df37b58aef7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a3:46:34:98:cc:fa:c1:4a:31:87:bc:31:4b:
43:a5:c3:b0:df:29:f1:42:18:33:09:a3:c2:23:60:
3f:c9:9a:91:29:44:d3:bb:1a:45:c5:c2:31:29:29:
8d:b3:e8:1f:a7:06:78:d8:1d:51:72:71:3a:95:b6:
b3:71:b2:fb:c3:d6:76:7e:70:58:79:b8:4f:03:21:
8f:c3:fe:72:e1:d5:ce:6c:17:20:09:f7:ca:1b:01:
7c:31:d6:ee:15:e4:c4:73:cc:6d:ba:3d:8b:bc:bd:
fc:62:d5:e6:32:30:1e:a4:4d:fd:57:b6:c9:c6:1b:
ca:45:d2:4b:8d:55:21:d4:d3:aa:db:a0:4d:ab:4c:
7e:18:00:5e:58:88:72:a2:55:8d:dc:33:f6:c9:b2:
0a:c7:24:49:ac:b6:ef:40:ec:d1:1e:21:b9:c3:19:
85:8d:c1:46:d6:13:0b:e3:da:1c:1b:87:d7:a9:f6:
87:34:71:05:10:2c:09:84:95:22:4f:cb:c4:89:cc:
eb:14:0f:11:03:8c:74:3a:7c:22:be:f9:97:71:49:
a5:bb:3c:be:b1:0b:49:ec:2f:4f:48:49:5f:68:88:
2c:69:1c:35:2e:34:d0:a6:5f:83:a5:40:d8:ce:9d:
90:91:9f:04:41:59:27:c7:d1:3c:9e:d5:46:a8:a9:
6e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C9:E9:E2:C5:89:6F:D5:35:DC:6E:50:EA:C6:DF:37:B5:8A:EF:7F
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:8c:b3:83:4a:4e:87:88:6e:12:02:e6:9f:8d:7f:5e:7c:96:
74:3b:1f:36:30:a5:bc:87:a4:ac:a2:6f:93:9c:43:e6:f2:a9:
a8:c3:38:7c:65:73:96:86:4d:be:33:6d:a3:60:27:e4:87:6b:
b9:b7:a3:00:05:d7:11:fa:e9:a8:64:9c:63:b7:2d:ea:d0:a4:
62:0e:08:db:4e:4d:f4:b6:16:eb:4b:79:f0:d0:32:b5:1f:96:
f6:ec:4d:b7:6d:57:ab:40:26:c7:65:10:f1:88:cb:d5:01:37:
47:2e:e4:81:10:4f:51:a5:75:e0:2d:57:57:cd:59:6a:32:8a:
45:94:94:34:16:c4:19:0a:8c:72:4b:ad:5f:6c:43:ce:11:3e:
2e:15:3c:58:f1:de:ba:52:fa:8b:22:4a:82:40:06:ee:22:d5:
87:f5:a6:c7:d3:de:bc:be:09:7d:81:82:91:8a:86:66:55:22:
ad:15:d2:76:6c:1d:5e:bb:47:6c:b5:fd:da:3b:3a:d4:0b:9f:
5a:86:a5:9c:fe:8a:87:88:17:2f:bc:34:76:c1:23:d9:ed:b8:
8a:27:33:b8:f5:24:93:48:2e:5c:38:8e:f7:63:e8:7a:a5:98:
8d:4b:67:65:46:e4:1e:d5:5d:fc:1b:4e:47:0c:d6:80:21:03:
93:64:8a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:26:24 2026 by rpki-client