Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json)
Hash identifier: aug3WxBo17APDRNnAlGc/dWaVuq3/DwUmZ1prQiHOEk=
Subject key identifier: 85:41:66:CC:98:F9:F0:B0:E2:25:57:60:C7:68:0C:91:06:F9:23:B1
Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Certificate serial: 019D99D086D2689A6447E7B94D85E97A7A76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
Manifest number: 0325
Signing time: Fri 17 Apr 2026 05:01:13 +0000
Manifest this update: Fri 17 Apr 2026 05:01:13 +0000
Manifest next update: Sat 18 Apr 2026 05:01:13 +0000
Files and hashes: 1: GoJ7p5byconiGncMqRmL8LXgnE8.roa (hash: ZMKph7pEjMlyasEu5eXgJpQBIoAaFlANMUUEAZTh0+E=)
2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: RitoZf5DaN621o5MhpzrgqEroohJ7jh2dJRYkEhpFzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:86:d2:68:9a:64:47:e7:b9:4d:85:e9:7a:7a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Validity
Not Before: Apr 17 05:01:13 2026 GMT
Not After : Apr 18 05:01:13 2026 GMT
Subject: CN=854166cc98f9f0b0e2255760c7680c9106f923b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ee:5f:77:6c:86:e3:bf:da:f4:7d:49:22:0e:
e4:04:d1:51:ab:2b:32:34:0c:4d:cc:a1:1b:5f:8c:
e6:4f:c4:6a:68:bf:51:66:54:a9:02:db:04:36:9d:
6b:e4:08:c1:75:62:cd:30:57:a7:a1:e5:c0:70:a2:
f3:77:0c:22:a7:7b:95:5e:9d:54:5b:26:9f:30:0f:
0c:90:19:15:bf:90:57:ad:5d:63:e3:dc:c3:38:a8:
53:c4:61:56:c4:9f:ad:51:9b:0e:b9:b2:b4:52:15:
65:14:79:ea:c2:60:f4:c6:5e:e3:0b:fc:db:77:61:
16:9e:ac:73:cb:9f:8d:a5:0b:52:c5:3a:6d:82:51:
af:2a:c0:0f:8e:4b:36:4f:98:d7:c4:a5:d7:c4:0c:
ee:77:9e:11:c9:aa:30:16:9f:69:6d:79:df:6d:17:
4b:c2:b2:a6:35:21:6d:76:a0:6b:09:d1:4e:c5:a1:
0a:da:86:36:0f:5e:c0:47:23:e2:25:50:9b:9f:ce:
e7:b9:58:a5:54:47:aa:fa:45:20:a9:13:a5:24:30:
a8:2e:97:07:a0:be:17:72:bc:88:1b:90:62:4e:1e:
4c:80:cd:7a:45:e3:40:e3:5b:e7:37:a1:0d:9f:cb:
5b:e2:d6:07:5e:11:81:be:1a:43:65:ce:d8:bb:06:
5c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:41:66:CC:98:F9:F0:B0:E2:25:57:60:C7:68:0C:91:06:F9:23:B1
X509v3 Authority Key Identifier:
keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:86:11:c6:92:1c:cc:14:f8:53:88:11:4a:db:7d:06:08:fa:
fd:e3:95:c5:31:d2:90:9a:d1:ed:4f:f7:ee:73:87:62:63:1b:
ff:b0:e8:5d:97:52:d4:a1:c8:00:6c:13:e9:48:56:17:0b:77:
00:61:eb:36:0c:21:02:cc:72:f0:5d:35:41:1d:5b:29:47:e0:
77:f0:55:ba:b4:02:00:40:c5:dd:00:6a:88:39:9c:38:fd:d7:
21:ff:dc:61:ca:fd:14:f0:94:64:a8:af:ec:52:23:cd:93:ee:
b4:45:85:8a:53:44:24:7e:35:89:03:4c:13:46:be:05:b6:fe:
b9:1b:8c:2b:48:f9:9e:cc:f2:4e:ce:ee:72:b3:a8:ac:10:e1:
65:d5:1f:c2:13:52:92:b6:97:8b:b3:a2:ab:b9:fc:96:fc:99:
22:68:8b:d3:32:f5:ba:78:58:21:d7:bf:77:85:74:f1:8f:f4:
db:ce:7d:9c:31:a8:c7:1e:7c:be:03:ba:e8:03:d6:75:85:fd:
91:ba:d9:79:a3:2a:a7:a4:89:82:8b:68:85:37:6d:c6:77:31:
c0:30:70:8d:81:96:ec:43:9f:23:5e:52:18:34:c2:4c:2d:9c:
1d:90:87:16:3c:20:c1:2b:46:11:db:9e:58:1f:cb:c0:41:2e:
e9:82:50:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:48:49 2026 by rpki-client