Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
File: hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft (raw, json)
Hash identifier: WqyxvDe0tS0eaFIe/thWgiNHO796HXAPuU9ch0JWATg=
Subject key identifier: 0D:1D:DD:4B:80:79:F4:AB:26:B3:16:23:1D:46:97:A3:7C:27:7E:66
Authority key identifier: 86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
Certificate issuer: /CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Certificate serial: 019CAB6B6B1FA4C78695B9BFEB1EB7BEE630
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
Manifest number: 4E
Signing time: Sun 01 Mar 2026 22:01:09 +0000
Manifest this update: Sun 01 Mar 2026 22:01:09 +0000
Manifest next update: Mon 02 Mar 2026 22:01:09 +0000
Files and hashes: 1: PnZoP9c_MUx8bGVjWDH4QemT8Oc.roa (hash: N/n/c2ZTM9Bt63EXnz2HQd3THkOEOxgNYjeKCIXt71Y=)
2: hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl (hash: +yCsLcv9wsohPSmlCte7ZFCKSmD2l4/wvCphBSOjHzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:6b:1f:a4:c7:86:95:b9:bf:eb:1e:b7:be:e6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Validity
Not Before: Mar 1 22:01:09 2026 GMT
Not After : Mar 2 22:01:09 2026 GMT
Subject: CN=0d1ddd4b8079f4ab26b316231d4697a37c277e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8b:a7:8e:0a:db:ec:68:53:1a:81:34:ec:6e:
95:54:f1:26:51:cd:2d:da:69:0d:fe:dc:7b:9f:05:
69:bc:ac:67:b3:ed:0c:61:d1:52:12:7a:0a:4e:ce:
02:e7:5e:5f:e2:0f:79:26:f2:5b:ff:ff:c0:dc:40:
90:b1:9e:18:bb:4d:24:04:e8:41:90:63:45:07:bf:
3e:49:f4:32:71:b6:b2:17:e4:cb:b8:ca:d2:f3:68:
bf:ef:02:ba:f5:c6:16:f6:a1:13:fb:93:fa:bf:e1:
08:18:9b:09:db:af:6e:3a:fc:e4:d7:a3:c1:9f:ee:
b0:58:e4:cf:03:86:ff:8b:87:c4:9f:63:79:58:1b:
2c:9f:06:42:45:30:9f:02:05:6c:0b:f8:6a:ca:97:
8c:25:f2:99:e6:2d:38:a8:bd:2f:f5:d8:d5:b2:01:
88:db:db:57:b5:34:7e:c0:2d:6e:60:cc:1d:09:0f:
35:c0:a7:33:76:38:73:7c:65:92:d0:42:e8:7a:49:
41:cf:33:0e:09:8d:f1:6a:80:fa:bc:ef:cc:73:36:
03:1a:24:0b:18:f3:04:79:1f:c8:4c:e7:ab:83:95:
de:5d:76:53:2c:ca:18:f6:ef:cd:ff:5e:1e:d7:56:
66:a4:74:d4:fe:67:a0:cb:8c:d4:0a:ae:e9:53:bc:
60:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:1D:DD:4B:80:79:F4:AB:26:B3:16:23:1D:46:97:A3:7C:27:7E:66
X509v3 Authority Key Identifier:
keyid:86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:cf:23:29:8d:b2:aa:a6:ba:23:bf:fe:e8:f7:ca:eb:61:11:
3e:f8:62:02:42:6a:09:37:a8:4f:ce:7d:3c:46:19:21:96:1b:
94:0b:8f:f5:06:b2:a7:cb:7f:36:46:2f:c2:1a:18:ff:c3:ba:
0d:76:d3:b3:c1:4d:1f:52:c3:14:f5:5c:86:19:a6:d5:02:f8:
9a:db:9b:cd:11:16:5d:f6:b5:16:cb:be:60:57:da:29:58:e3:
48:6e:f7:be:dc:fa:41:89:6c:f3:0f:25:93:d8:0c:88:a2:54:
59:2e:2d:1a:18:04:fb:c6:c2:db:d5:ba:88:df:ab:3b:bd:df:
36:45:23:79:e7:c5:eb:7a:c2:df:c0:18:d2:7d:9b:8d:88:b1:
df:c7:42:a2:33:7b:07:c1:39:a2:5b:f1:12:3e:d8:fd:11:24:
ba:ca:4f:5e:94:3e:f1:24:8d:3b:a2:ea:88:28:e9:54:16:ff:
1e:1a:16:98:97:cd:9c:0e:9d:59:df:c8:01:eb:90:59:92:38:
5e:76:e3:c2:bb:56:c3:cd:14:cd:34:f3:40:27:1d:c4:5b:9c:
fc:6b:c9:09:7c:68:c3:a0:b3:d6:b7:d0:4b:34:7e:d9:15:cc:
e8:d2:36:be:94:99:5c:e6:19:ee:ab:44:f5:6d:96:46:c7:bf:
e8:89:b0:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:36:10 2026 by rpki-client