Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
File: hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft (raw, json)
Hash identifier: UhGl86ovzPQyanYd9FV7I6F1UJmjAlhv/96pm7QIJNQ=
Subject key identifier: 19:90:06:80:69:12:CA:63:F6:85:6C:82:FE:23:8D:DF:27:EF:57:23
Authority key identifier: 86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
Certificate issuer: /CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Certificate serial: 019EC1EE312F84B614DF2BEDF3801658FE25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
Manifest number: 0163
Signing time: Sat 13 Jun 2026 17:01:13 +0000
Manifest this update: Sat 13 Jun 2026 17:01:13 +0000
Manifest next update: Sun 14 Jun 2026 17:01:13 +0000
Files and hashes: 1: PnZoP9c_MUx8bGVjWDH4QemT8Oc.roa (hash: N/n/c2ZTM9Bt63EXnz2HQd3THkOEOxgNYjeKCIXt71Y=)
2: hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl (hash: eI+aYnKi6pxwRPeMY8bD9BI1LsQl4vdt11D+7eU8y64=)
3: t6GAlny-fqKuuQwhbvUz_72cDZg.roa (hash: 0Z7m8nppSdIlpMkeX4RoJU4whGw35KKZIMqUWhBFgBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:31:2f:84:b6:14:df:2b:ed:f3:80:16:58:fe:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=867b337ce4c34feb4a71fff8559e5e4c98e42b00
Validity
Not Before: Jun 13 17:01:13 2026 GMT
Not After : Jun 14 17:01:13 2026 GMT
Subject: CN=199006806912ca63f6856c82fe238ddf27ef5723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a1:9c:06:69:db:47:0c:e8:77:dd:e9:b3:1a:
50:f7:24:60:8d:76:02:98:1f:78:d9:02:a8:5a:de:
b6:52:0d:53:6a:89:8c:01:2a:f8:6c:5e:7a:ee:1d:
a5:9f:d3:e4:b0:a2:3f:d5:a1:d1:04:81:60:6b:f5:
8a:d4:4f:b4:0e:bc:8c:71:bd:07:0a:98:e2:dc:17:
05:2a:37:66:32:24:ff:56:f5:aa:65:8b:2b:df:32:
78:96:48:42:a6:b7:6e:81:5f:bb:e6:b7:7b:ee:e1:
c2:e0:29:a6:ef:66:90:14:6a:54:7a:93:37:49:4d:
53:f0:3c:a3:28:98:77:ec:98:74:c7:9e:9c:5b:ab:
c6:36:06:62:97:a8:9f:6d:e2:a2:3d:b9:82:74:4e:
f0:fe:d9:9c:24:94:35:8c:47:ba:ff:61:4b:23:1d:
47:7d:82:3e:bc:0a:ec:04:1c:c5:50:93:bb:68:ce:
44:f7:f0:7b:b2:81:a9:50:2b:e8:7a:3d:85:0f:8e:
ed:a8:55:e4:b0:50:ca:11:68:35:76:4f:54:93:34:
f5:f2:b3:d2:e6:a4:d2:1e:d7:b3:55:80:4f:50:73:
32:66:00:63:fc:f5:d7:34:d3:fa:07:08:f0:49:a1:
53:bb:2f:5b:f3:f4:66:7d:9d:b1:33:c0:8c:53:ea:
49:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:90:06:80:69:12:CA:63:F6:85:6C:82:FE:23:8D:DF:27:EF:57:23
X509v3 Authority Key Identifier:
keyid:86:7B:33:7C:E4:C3:4F:EB:4A:71:FF:F8:55:9E:5E:4C:98:E4:2B:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnszfOTDT-tKcf_4VZ5eTJjkKwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e279f5-73d1-4fe8-978d-90acfdb01e90/1/hnszfOTDT-tKcf_4VZ5eTJjkKwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:3d:7a:db:d6:17:ad:f5:3d:a2:ce:5d:4a:e3:d6:cd:f3:1c:
06:8e:7e:79:90:83:8c:7b:bb:7f:59:e8:08:8d:47:99:85:67:
56:2e:44:0e:0b:92:c9:a4:4d:8b:cf:b4:96:bf:b1:fa:e4:15:
ed:5f:99:6e:3c:eb:9b:88:f9:e9:81:90:f6:92:03:0e:05:2b:
dd:e2:e3:df:cc:82:76:f9:bf:04:c1:ed:c8:9d:8e:25:6f:b6:
31:c8:4e:94:9b:09:08:a9:fe:30:2a:65:05:64:32:b2:2d:cd:
a9:e1:91:5d:e0:de:21:e1:16:3f:b5:a6:b8:59:d8:33:a4:bf:
d4:c5:d5:00:4f:a4:5e:0b:47:08:c4:a3:74:e3:4a:8e:c0:d4:
32:17:e6:19:cd:2b:c2:1b:86:36:44:1b:e8:9e:3e:eb:8d:49:
07:ff:66:5a:df:c3:b2:e1:bd:84:38:41:9f:3e:12:47:d4:fa:
23:ff:f3:8c:99:ee:1e:f9:49:39:50:62:20:15:64:f8:dc:a6:
7d:d7:2b:09:e6:f2:76:09:13:90:a3:9a:b3:3e:1f:d2:97:8e:
5e:75:42:7f:54:1e:dd:7e:1f:fb:2e:60:43:32:82:58:9b:57:
6a:50:74:d2:02:10:9d:02:43:c5:aa:42:2d:8b:e3:c4:56:de:
61:ef:76:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:01:35 2026 by rpki-client