Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
File: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft (raw, json)
Hash identifier: rcRYYYQ9DevZtxpnzlaKXgrzxxLIlTpPjZofoAAtQEA=
Subject key identifier: EC:51:50:23:FB:66:FE:5E:B6:AA:DA:CA:07:60:C0:72:DA:C0:D0:7D
Authority key identifier: 86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
Certificate issuer: /CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Certificate serial: 019CAFB5FCCB508D5976EDE764055F71A79D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
Manifest number: 090E
Signing time: Mon 02 Mar 2026 18:01:05 +0000
Manifest this update: Mon 02 Mar 2026 18:01:05 +0000
Manifest next update: Tue 03 Mar 2026 18:01:05 +0000
Files and hashes: 1: BsUK6q4arJHbcNcyqOOvwteXiS0.roa (hash: mH5FcSTjVNeSVMSPqpSkXYdFczl7hZ5yzWhcRGubmnk=)
2: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl (hash: yT71HcfU7jbsQsot5vP/O0gyRFfXJeYx/FiHqEF2i9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b5:fc:cb:50:8d:59:76:ed:e7:64:05:5f:71:a7:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Validity
Not Before: Mar 2 18:01:05 2026 GMT
Not After : Mar 3 18:01:05 2026 GMT
Subject: CN=ec515023fb66fe5eb6aadaca0760c072dac0d07d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:98:6c:e3:ab:d2:ea:b4:b9:8e:9a:55:47:
0c:79:3c:ba:4c:c8:f8:d6:c4:67:a3:69:b7:fb:be:
ee:e8:09:32:23:bf:6e:b4:ad:a2:2f:cb:a4:09:3e:
fe:c4:4b:9e:4d:13:ae:6b:4a:be:7f:d4:a1:6e:9c:
9d:d3:c6:53:88:c8:37:32:4f:05:e4:e1:a1:b7:70:
b6:b1:5c:c0:61:46:d8:b8:53:30:6a:c7:15:8f:c1:
1a:f2:7d:ab:3b:b4:83:5d:5a:4b:ac:70:b6:32:bf:
4d:80:eb:d1:30:79:53:26:89:d0:6f:55:25:e8:97:
b3:73:36:60:04:cc:93:1d:93:d6:e1:53:41:e6:81:
65:f5:a1:84:2a:66:49:04:33:5c:0d:a7:83:3b:1f:
0d:ec:ad:56:e1:ae:89:64:b5:1d:27:5a:cc:5e:02:
a7:89:43:1d:c6:b8:b2:6a:90:9a:fc:a3:21:8b:cc:
e9:7e:07:ae:a3:b9:75:19:ab:43:c8:54:03:c8:2b:
df:75:57:95:9d:ac:ba:21:01:3c:97:70:ef:29:4e:
cc:57:23:a0:5d:c5:cb:46:b7:61:69:75:5a:6e:1c:
a3:75:10:61:55:60:87:42:eb:d4:07:1f:1b:c0:46:
08:ed:db:8d:1d:72:ee:35:02:78:8d:8b:34:2c:8e:
bb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:51:50:23:FB:66:FE:5E:B6:AA:DA:CA:07:60:C0:72:DA:C0:D0:7D
X509v3 Authority Key Identifier:
keyid:86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:1b:a1:f6:11:c9:ef:0b:00:0e:d6:a3:04:ba:d0:40:af:55:
73:04:c0:1f:f0:9b:cd:9e:9a:79:97:dd:d3:cd:2d:c9:0f:08:
8b:61:6d:7d:53:8b:a3:10:af:72:57:df:c3:a2:cd:0b:99:ca:
82:5e:77:ab:e8:40:63:73:5b:fc:b8:55:be:4a:e4:4f:f1:a6:
c1:5a:d9:e3:34:56:c6:f7:03:01:0d:e8:b2:dc:dc:16:68:84:
86:8a:8b:1b:f4:af:76:16:8d:01:e1:20:82:ea:a9:2b:12:4e:
4a:f6:bc:49:bb:1b:49:4c:00:37:a7:47:46:c6:4e:30:a5:c8:
f1:48:94:b3:d8:b5:cb:b0:9b:1c:f7:2f:8d:90:1a:47:ea:a0:
3d:8f:21:c9:d9:0c:97:a5:28:b7:a6:ca:2b:37:0c:96:fa:6e:
a9:c3:74:ca:0d:21:1a:15:5a:21:da:e7:b2:3f:bc:b1:94:14:
ef:2b:92:ac:a7:c9:7a:6f:0c:1d:c4:e2:09:80:78:27:05:6d:
84:61:e0:22:25:a3:5e:ce:8f:50:fa:4a:58:06:81:20:97:35:
b0:7e:9d:39:f3:8d:94:07:5c:a5:f4:ed:a4:33:b1:29:db:d4:
75:1f:1d:28:31:10:85:74:25:02:a9:64:94:91:76:ec:69:11:
a1:8c:d0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 22:48:42 2026 by rpki-client