Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: 7v6a3PmGnhlqoJ12dUj6RpL8uGYt1a1L+VYyCUNdsvA=
Subject key identifier: DD:87:38:79:B0:0A:1B:BC:53:8E:74:A9:F7:41:68:82:A6:C4:12:FC
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 019CAD908432FE33F91E96605C438E2C4E53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 1224
Signing time: Mon 02 Mar 2026 08:00:55 +0000
Manifest this update: Mon 02 Mar 2026 08:00:55 +0000
Manifest next update: Tue 03 Mar 2026 08:00:55 +0000
Files and hashes: 1: cuE4TW5rh-XwN9tNjWmFmQtIPFU.roa (hash: NU4Otp39oKMhqOc0L+AnrGl6IMBfgna2IPqlcLesd28=)
2: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: X1+XIDXLR2WoOv4fySNGl2SvMwTnZfLBRKgyAFz2Oxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:84:32:fe:33:f9:1e:96:60:5c:43:8e:2c:4e:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Mar 2 08:00:55 2026 GMT
Not After : Mar 3 08:00:55 2026 GMT
Subject: CN=dd873879b00a1bbc538e74a9f7416882a6c412fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0e:f9:8d:ae:a1:60:86:19:bf:af:35:76:2c:
2c:69:a1:33:b6:06:8b:c8:1e:19:ef:58:65:7e:e2:
e1:aa:43:04:1a:2a:f3:a0:08:02:4b:05:2c:85:0b:
db:65:68:13:69:eb:67:cc:ae:a5:ce:c0:78:55:8d:
32:2b:93:50:c1:7f:b1:eb:91:69:93:59:ff:33:b6:
ba:24:a1:00:c9:30:d1:e0:ed:c2:fd:12:5f:b9:9d:
12:b7:9a:98:01:1d:ef:bd:cd:1d:ec:5f:84:fb:17:
a9:53:5f:15:50:2a:51:40:17:2b:c9:9f:7a:df:a1:
7e:d6:b0:86:68:ba:52:75:49:33:17:99:51:16:6f:
7d:ec:c2:be:f1:47:d0:ba:e0:cb:d1:85:92:02:44:
02:8e:62:00:75:78:2c:52:f2:cb:57:b5:da:5c:65:
cb:59:2d:37:e7:75:de:54:bd:03:af:4a:ab:02:ca:
b1:17:53:73:c7:1e:73:dd:a5:1c:f9:5c:8f:47:66:
9b:04:06:0d:77:2b:c6:63:89:5c:e4:8f:ec:de:00:
76:a3:dc:19:01:19:9c:db:65:e7:3f:f0:78:ec:e5:
8a:4c:ff:c6:cc:ac:80:75:cd:98:00:e2:5e:94:87:
14:d4:f2:2f:2f:fa:ef:dc:19:53:47:9d:cf:fe:ed:
65:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:87:38:79:B0:0A:1B:BC:53:8E:74:A9:F7:41:68:82:A6:C4:12:FC
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:73:05:ae:13:71:a3:16:60:3d:2e:4b:53:17:f7:e1:66:e7:
28:58:73:46:8e:20:ba:a2:96:94:a4:fd:1c:a3:b5:8c:3d:5f:
1c:60:02:15:14:a7:27:e6:dc:e1:f7:b8:d1:08:cf:e4:1b:2a:
ac:02:e4:ef:7d:7b:38:c4:c6:e1:59:c5:1b:ec:85:ec:dd:0d:
58:6c:32:91:3a:e5:5d:53:c0:27:f1:89:6b:bc:d0:40:f3:76:
9c:7c:ea:06:63:7f:bd:17:38:ba:b3:35:92:cf:d7:b3:36:47:
9c:a8:32:9a:d9:a9:c2:9c:c6:a1:06:b9:db:26:5c:51:94:f0:
b5:8c:d2:56:46:ea:77:ec:51:14:9c:f7:34:5c:b3:ea:fa:37:
c5:71:15:54:90:d8:3d:0d:96:ce:40:b5:c5:13:ae:db:28:4a:
f1:38:87:af:ac:f5:cc:55:98:37:f1:25:7d:3b:b8:4e:40:d1:
40:43:71:96:95:ba:d1:3b:68:44:38:08:dd:fd:e8:30:3d:6e:
2b:39:b1:15:25:44:1d:cc:be:cf:74:19:14:ab:67:58:a4:a6:
05:90:45:16:5c:9e:85:8d:1f:f3:3d:9d:9c:6d:86:36:37:e7:
66:68:3c:8f:16:0d:39:ad:15:e1:e6:2d:ee:32:3c:25:53:eb:
12:3f:3f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:57:10 2026 by rpki-client