Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json)
Hash identifier: IqFH0mB0YYxzYrIw0cGpgjDqHtzYiwGJH9tFwJFU04k=
Subject key identifier: 7D:41:A5:1E:57:F1:6E:E5:54:91:7A:4A:AB:95:AF:C9:9B:78:03:3E
Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Certificate serial: 019CAE35C6E4BB798243210C3C6CD66A4910
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
Manifest number: 02AB
Signing time: Mon 02 Mar 2026 11:01:25 +0000
Manifest this update: Mon 02 Mar 2026 11:01:25 +0000
Manifest next update: Tue 03 Mar 2026 11:01:25 +0000
Files and hashes: 1: GoJ7p5byconiGncMqRmL8LXgnE8.roa (hash: ZMKph7pEjMlyasEu5eXgJpQBIoAaFlANMUUEAZTh0+E=)
2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: EsMc50bIJs1nevfqcBg3R4aaSSyRZ6AWDzmwEOdrsWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:c6:e4:bb:79:82:43:21:0c:3c:6c:d6:6a:49:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Validity
Not Before: Mar 2 11:01:25 2026 GMT
Not After : Mar 3 11:01:25 2026 GMT
Subject: CN=7d41a51e57f16ee554917a4aab95afc99b78033e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1f:90:a0:44:0a:e0:e8:2c:6a:64:80:34:1d:
c1:61:15:85:cd:44:d8:2d:f0:40:97:a7:f3:3c:4d:
3c:4d:f3:86:b8:7a:4d:57:1f:02:f9:ee:17:61:7d:
06:cf:28:1a:fc:f5:ef:c9:94:f5:7b:52:8c:63:da:
58:9c:2d:f4:0c:d8:a2:65:6e:29:76:99:9f:41:f7:
2d:3a:4c:26:7a:fa:88:5c:c4:9f:aa:47:07:b2:48:
42:bf:c5:53:b4:b9:15:3c:d0:cd:57:55:1b:02:6a:
f9:64:fd:69:20:f7:3b:86:49:db:c6:6b:0c:36:f7:
bf:22:09:00:33:25:39:b9:c6:3f:45:88:f3:f4:4a:
69:d6:34:f7:28:c2:3c:c8:f8:1d:db:4f:e3:03:e7:
e1:93:b3:da:f2:b7:19:a9:a5:24:f1:38:42:cf:bb:
02:12:d3:b9:c4:63:b7:aa:a8:c8:97:4c:69:5d:6c:
64:77:0d:80:bd:0c:33:24:98:6b:8a:1f:82:78:bc:
c4:80:4d:94:92:e9:ee:eb:6b:f4:a3:f3:3f:c3:71:
26:32:da:48:89:d1:78:b4:6e:48:1d:94:bf:61:99:
6f:1d:c0:d1:7d:54:96:11:9f:e1:93:78:20:ea:a6:
08:0f:3e:89:10:58:ff:b5:7f:e7:e9:4c:bf:f3:a9:
89:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:41:A5:1E:57:F1:6E:E5:54:91:7A:4A:AB:95:AF:C9:9B:78:03:3E
X509v3 Authority Key Identifier:
keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:df:ec:7e:81:f3:a6:8b:fe:f0:0c:e3:22:19:bf:90:dd:ce:
fa:e0:70:6f:b8:3c:93:e8:e3:8a:6b:b0:e8:6a:60:65:7a:21:
a0:7d:da:91:e7:5e:56:a8:18:53:9c:c7:b0:c3:d5:85:5d:96:
41:07:06:d1:92:8b:07:bb:96:7b:26:ce:90:0b:03:82:de:8a:
9e:6d:8e:92:b8:f8:ff:60:62:58:ba:74:6d:42:e4:7e:5c:27:
af:36:0c:00:59:6d:a0:a8:01:3f:4f:2b:5d:c9:66:2a:57:da:
7d:2a:59:5c:e3:c6:73:34:7a:4c:71:b8:f2:f3:bd:9a:7a:84:
6b:b4:ed:d1:ed:c4:93:86:77:ac:84:44:d6:1a:f4:17:80:c4:
17:98:0f:2e:62:88:a8:3a:03:1a:91:ce:0a:fe:de:f9:5a:3b:
cf:b5:a9:df:7d:4f:3e:58:3f:82:41:2f:de:c3:57:82:ae:dc:
da:8f:78:da:56:78:d4:c0:7e:1f:d5:e2:d6:c5:93:c9:7b:e0:
0f:f6:74:91:06:a7:be:03:2c:c9:01:1b:49:fc:69:a8:c4:1c:
8e:1b:de:44:81:96:33:b4:97:fd:01:08:74:a5:da:46:42:41:
f5:e9:59:73:7b:61:13:3a:f7:03:8c:3e:92:76:e4:b4:f9:8e:
71:7e:81:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:26:48 2026 by rpki-client