Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json)
Hash identifier: OcTQftLdjE7Ji77O/FXsH1xLoym+c7U3ENAB4muD+ws=
Subject key identifier: CA:0A:5E:C3:CB:B0:CF:8B:91:14:8E:4C:6B:66:03:09:D5:3C:31:57
Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Certificate serial: 019CAB3486F72CD1B67F9F9B8D3FC3A1AE25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
Manifest number: 111E
Signing time: Sun 01 Mar 2026 21:01:12 +0000
Manifest this update: Sun 01 Mar 2026 21:01:12 +0000
Manifest next update: Mon 02 Mar 2026 21:01:12 +0000
Files and hashes: 1: emrBWHMDQOVwYTsWct2B_yzAGwE.roa (hash: WQ3P9C8Hq6K845EddQOdbb1eJKe9f8hodDUHV6czfZw=)
2: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: CiY00cADSqIrOGV1c+3uZQrxmQUMy8XXKoBOCeJu4S8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:86:f7:2c:d1:b6:7f:9f:9b:8d:3f:c3:a1:ae:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Validity
Not Before: Mar 1 21:01:12 2026 GMT
Not After : Mar 2 21:01:12 2026 GMT
Subject: CN=ca0a5ec3cbb0cf8b91148e4c6b660309d53c3157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0d:0b:e2:fa:4e:69:91:99:42:51:90:64:a8:
cd:a0:a1:cd:c1:57:d7:cc:59:cf:ff:de:3a:83:5b:
a6:7a:e7:7d:c3:71:ba:b7:66:2d:e7:3b:56:31:1c:
06:23:ff:60:6a:ab:ec:35:ea:74:d2:f4:3b:84:7e:
71:85:de:b4:0f:2c:41:65:e5:9e:84:04:33:56:40:
32:e1:bd:c3:95:69:2a:25:87:ba:0d:0f:21:32:22:
2d:24:1e:46:9d:3f:52:87:52:d7:91:87:40:34:03:
1e:67:48:fc:b6:56:b0:cb:b7:0f:f7:81:3d:8c:c3:
af:72:9a:85:37:05:f0:c5:fd:c0:99:bf:04:1d:91:
9d:96:9a:45:93:c5:55:b2:8a:65:66:d0:18:73:f4:
10:b9:6f:01:b1:46:58:3a:2f:fd:9b:87:88:2b:ba:
92:57:3b:c1:4e:a4:d5:b8:ef:79:da:22:e1:53:05:
e7:3d:66:26:b0:f0:18:e6:66:df:a9:2d:1c:22:57:
84:4b:2f:04:26:25:31:0f:e4:3c:d9:6b:66:ef:6d:
7e:1b:e3:19:d7:5c:a4:41:2b:e7:01:7a:ac:22:7c:
38:cd:ba:99:c1:db:22:77:63:ae:ff:58:54:6f:8a:
a1:07:ef:e9:85:7f:92:31:01:35:04:86:dd:76:92:
9c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:0A:5E:C3:CB:B0:CF:8B:91:14:8E:4C:6B:66:03:09:D5:3C:31:57
X509v3 Authority Key Identifier:
keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:70:6a:65:c3:67:69:fc:16:f2:2f:c3:3b:77:8b:35:0c:c3:
8e:65:26:8e:2c:74:16:11:86:60:29:d7:2a:75:94:a1:a3:c2:
3a:74:32:75:35:41:95:b3:d7:88:08:94:35:a2:b8:6b:03:bf:
c8:0f:2b:c9:30:a6:e0:43:1e:3b:7a:db:3e:61:ae:ac:bb:10:
e4:72:cd:4f:e7:eb:f9:df:33:ae:93:e0:bb:4a:54:af:66:4e:
e6:24:fb:b3:74:38:92:41:03:ec:4d:13:5f:87:8e:33:14:05:
d4:5a:ea:b6:d5:41:6c:00:f0:29:85:d1:57:0c:9c:82:9b:9b:
16:b8:87:4f:7c:14:34:3a:77:ae:bf:f7:9d:56:34:cf:8a:b5:
f8:cb:1b:13:b2:d2:ea:9e:b7:bc:e6:99:7e:f1:ee:42:25:9a:
6f:ba:79:b8:01:eb:f2:22:c4:ac:9c:fd:55:a0:ed:b1:e5:50:
02:85:28:de:9b:ba:7b:e9:a3:e6:1d:70:23:a1:e2:bd:1a:57:
49:fc:e7:00:46:b3:81:42:7c:32:9f:a5:ef:7c:07:98:cd:99:
4e:e8:9d:8e:b1:46:f3:86:e7:82:57:84:98:f6:a6:44:48:54:
f2:52:d2:90:d0:a9:23:67:ec:64:ca:23:67:21:5e:bf:68:15:
3e:2c:47:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:33:20 2026 by rpki-client