Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json)
Hash identifier: vrG3Ochi7CUb2Hq+WR6sas4bNnSXm7U9yB2LOK9DFog=
Subject key identifier: CD:9B:66:A7:05:32:F3:C1:DC:2A:C6:C4:9E:42:11:80:94:D4:58:69
Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Certificate serial: 019D9AABAD5710BADD7520359A3F42489F6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
Manifest number: 119A
Signing time: Fri 17 Apr 2026 09:00:35 +0000
Manifest this update: Fri 17 Apr 2026 09:00:35 +0000
Manifest next update: Sat 18 Apr 2026 09:00:35 +0000
Files and hashes: 1: emrBWHMDQOVwYTsWct2B_yzAGwE.roa (hash: WQ3P9C8Hq6K845EddQOdbb1eJKe9f8hodDUHV6czfZw=)
2: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: QX+jhnEX31GI9wpS49hV4dIcbGk56GLfAX0dscbcbJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:ad:57:10:ba:dd:75:20:35:9a:3f:42:48:9f:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Validity
Not Before: Apr 17 09:00:35 2026 GMT
Not After : Apr 18 09:00:35 2026 GMT
Subject: CN=cd9b66a70532f3c1dc2ac6c49e42118094d45869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d2:18:b3:b2:e4:0f:3c:07:59:00:d4:bc:67:
a3:71:88:04:07:60:69:9a:6f:9a:c5:b7:90:a5:d6:
60:b7:44:8c:12:cd:ec:62:4e:c1:e3:8c:60:2a:d5:
ba:e5:9c:7d:49:89:3e:37:61:c2:99:f7:34:33:47:
a1:37:2a:91:4a:50:fc:e4:b1:cd:21:7b:0d:2a:d3:
26:a8:d1:08:1f:12:90:75:fb:b3:69:7b:d9:4e:c3:
ea:f9:09:26:f5:66:be:a9:81:64:ed:c2:1f:5d:94:
c1:7e:74:83:32:7f:59:a4:a1:11:8a:79:c0:de:3e:
d5:6c:8c:ad:49:5c:41:dc:e8:11:c0:b1:45:d5:0d:
49:39:a3:22:ee:34:c4:bf:2b:ab:44:d7:1b:a4:0c:
e3:3a:42:0b:d5:b9:4b:e4:41:e3:4d:76:0d:76:c9:
fd:ca:65:3e:ac:96:e9:72:b3:49:4c:c6:da:f7:c4:
33:4c:78:d3:8a:ee:04:da:4a:23:5e:41:05:ee:63:
3a:67:8f:6e:ce:1d:00:f1:de:df:30:7f:48:52:49:
37:31:f7:9c:39:bf:7b:b8:92:98:c4:ae:3f:d5:d8:
ec:18:59:a3:2e:41:10:11:14:39:4d:02:3c:0a:f4:
2f:76:0c:d3:db:9a:7f:72:1e:e0:02:ed:3e:27:13:
70:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:9B:66:A7:05:32:F3:C1:DC:2A:C6:C4:9E:42:11:80:94:D4:58:69
X509v3 Authority Key Identifier:
keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ce:d0:1f:6c:c0:3f:7f:60:c5:ba:2f:ec:62:54:57:8d:b1:
10:51:34:ac:b8:e1:e4:53:29:42:a3:03:01:8d:a8:eb:1f:2b:
f9:4f:71:47:9b:6e:31:4d:18:a9:6c:40:d1:75:b1:40:f9:96:
a1:df:b3:6f:e8:ea:13:bc:1d:09:1d:e8:f3:cb:43:7b:cd:4e:
a0:dc:f1:24:a1:a5:a5:2c:b5:72:db:90:cc:95:49:34:92:45:
4e:03:28:e4:48:33:38:22:9f:8d:df:f7:03:1e:ca:69:61:63:
1e:79:f4:b1:17:7e:ed:e1:90:98:77:49:6e:1b:78:7c:0a:6f:
56:fe:33:d3:b9:40:13:ce:82:cc:d2:6e:b2:ae:27:46:40:77:
6b:36:91:96:7d:0d:66:74:70:80:8d:ba:63:0b:53:be:35:d5:
84:4d:fe:03:22:ab:e1:8b:1d:a2:63:51:55:24:2b:f7:63:f1:
e6:de:cb:dd:c1:19:48:09:6f:42:c2:87:36:98:b8:7a:8b:6c:
08:8e:7a:c9:89:69:46:14:ae:f4:49:22:a0:d9:6b:6f:9f:8c:
78:70:cb:63:7c:5a:3b:3b:d1:2a:59:88:aa:70:b8:0c:93:f2:
10:f8:dc:5f:83:f0:f5:59:29:a9:d5:c3:58:39:8f:59:c1:21:
cc:52:18:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aq61XELrddSA1mj9CSJ9vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OTM2NTUzMjZiMDQ3MmM4NjZjNWM5OTMwMmUyYjJkNzhj
YmRkZjcwHhcNMjYwNDE3MDkwMDM1WhcNMjYwNDE4MDkwMDM1WjAzMTEwLwYDVQQD
EyhjZDliNjZhNzA1MzJmM2MxZGMyYWM2YzQ5ZTQyMTE4MDk0ZDQ1ODY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2dIYs7LkDzwHWQDUvGejcYgEB2Bp
mm+axbeQpdZgt0SMEs3sYk7B44xgKtW65Zx9SYk+N2HCmfc0M0ehNyqRSlD85LHN
IXsNKtMmqNEIHxKQdfuzaXvZTsPq+Qkm9Wa+qYFk7cIfXZTBfnSDMn9ZpKERinnA
3j7VbIytSVxB3OgRwLFF1Q1JOaMi7jTEvyurRNcbpAzjOkIL1blL5EHjTXYNdsn9
ymU+rJbpcrNJTMba98QzTHjTiu4E2kojXkEF7mM6Z49uzh0A8d7fMH9IUkk3Mfec
Ob97uJKYxK4/1djsGFmjLkEQERQ5TQI8CvQvdgzT25p/ch7gAu0+JxNwKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2bZqcFMvPB3CrGxJ5CEYCU1FhpMB8GA1UdIwQY
MBaAFIaTZVMmsEcshmxcmTAuKy14y933MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEt
OWU2NzcyZWQzOWE2LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEtOWU2NzcyZWQzOWE2
LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMs7QH2zA
P39gxbov7GJUV42xEFE0rLjh5FMpQqMDAY2o6x8r+U9xR5tuMU0YqWxA0XWxQPmW
od+zb+jqE7wdCR3o88tDe81OoNzxJKGlpSy1ctuQzJVJNJJFTgMo5EgzOCKfjd/3
Ax7KaWFjHnn0sRd+7eGQmHdJbht4fApvVv4z07lAE86CzNJusq4nRkB3azaRln0N
ZnRwgI26YwtTvjXVhE3+AyKr4YsdomNRVSQr92Px5t7L3cEZSAlvQsKHNpi4eots
CI56yYlpRhSu9EkioNlrb5+MeHDLY3xaOzvRKlmIqnC4DJPyEPjcX4Pw9VkpqdXD
WDmPWcEhzFIYsw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:30:20 2026 by rpki-client