Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
File: HAKBccHlLIrK1NspuS0hazMvAyA.mft (raw, json)
Hash identifier: yo03ttnV+NjgBZXcMYYBCQ3d2H/TUsS8Au3KCd/tANY=
Subject key identifier: 20:00:4E:00:21:63:79:6F:87:41:DD:A9:CA:B9:A8:44:C9:84:3B:94
Authority key identifier: 1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
Certificate issuer: /CN=1c028171c1e52c8acad4db29b92d216b332f0320
Certificate serial: 019CAC4778DF44DB9EB7279A8C387044ECD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
Manifest number: 02BE
Signing time: Mon 02 Mar 2026 02:01:30 +0000
Manifest this update: Mon 02 Mar 2026 02:01:30 +0000
Manifest next update: Tue 03 Mar 2026 02:01:30 +0000
Files and hashes: 1: G9jujcQZlUdVMOptG1eSDU2YY8I.roa (hash: EJGVSoBSNBmuI6zXcVl26rucMI4v4bwSguQQOZP/asw=)
2: HAKBccHlLIrK1NspuS0hazMvAyA.crl (hash: dJdGEBBU+xPRHFHkEQvXGZwQsg+jhkhVFHUxJ9brdxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:78:df:44:db:9e:b7:27:9a:8c:38:70:44:ec:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c028171c1e52c8acad4db29b92d216b332f0320
Validity
Not Before: Mar 2 02:01:30 2026 GMT
Not After : Mar 3 02:01:30 2026 GMT
Subject: CN=20004e002163796f8741dda9cab9a844c9843b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:d8:82:c5:bd:5e:5e:62:c1:de:aa:c3:4f:
12:f5:d9:6b:fb:49:7f:d7:26:f6:7c:92:2e:a5:75:
67:fd:ca:0b:c0:c9:84:9f:e9:f5:3f:96:b6:61:3f:
47:3f:3c:02:2a:34:f3:dd:5a:86:22:3a:5c:2f:0a:
7b:8a:4b:34:f7:ad:aa:63:37:a5:6c:d8:7e:b2:db:
a0:ea:c3:ac:2b:98:74:71:07:26:e0:7e:c2:2a:0e:
cc:fb:c9:94:3b:8f:52:f3:9e:77:61:46:4c:8d:56:
51:de:20:d9:4b:7e:1b:68:09:82:d6:37:2c:88:23:
59:75:f0:28:05:a4:f7:83:e6:77:a9:cf:35:ec:03:
51:cc:56:a1:55:6f:44:6d:42:7e:ea:3e:40:ba:58:
e0:84:a9:5f:b1:a6:af:25:c9:f9:b7:04:e8:36:9b:
d2:8b:2a:99:e9:17:5a:66:21:f8:98:a5:94:6b:b6:
d7:9f:a3:c2:6c:36:e0:bb:b8:ec:c5:46:2b:ce:4d:
72:17:0d:30:ac:b3:18:cf:87:b1:5f:6e:4e:00:dd:
75:ec:96:ee:43:6c:53:2b:8f:76:71:9f:49:f6:e3:
27:11:66:c0:fd:0a:19:a7:27:5a:fd:df:bd:0d:f7:
71:c6:1d:9a:5f:46:f8:90:fb:ff:49:53:b4:c8:0a:
d4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:00:4E:00:21:63:79:6F:87:41:DD:A9:CA:B9:A8:44:C9:84:3B:94
X509v3 Authority Key Identifier:
keyid:1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:54:f3:e3:0f:4a:45:86:ae:42:e3:48:57:93:5f:0e:a3:91:
7b:91:f9:c4:87:9b:d3:a7:97:f2:12:d1:de:28:16:74:7f:6c:
91:84:88:57:d1:9a:0a:5a:e6:9e:79:ba:bd:b2:33:4b:9d:9b:
c2:fa:b9:8a:a5:bd:da:b0:2a:e0:9d:15:f5:81:1e:83:ae:00:
43:85:73:0a:c3:68:dd:ef:aa:f4:15:e5:6d:01:49:a1:ee:40:
1e:b4:d4:18:9f:4f:9e:0d:fd:21:fa:d9:fe:a0:fd:2f:e6:20:
ad:9f:eb:29:e7:59:59:2d:74:86:f0:98:94:f2:3c:13:87:3c:
43:51:0b:71:3f:4b:fd:84:e4:8d:57:0e:76:81:23:6a:54:6a:
3f:33:3c:00:53:a3:55:ff:76:00:0a:da:36:8c:09:5d:1a:9a:
70:da:19:b2:e6:a6:d3:83:98:96:cc:60:87:78:61:85:52:9d:
bd:36:93:6c:db:34:95:61:b6:d1:ea:58:5a:b8:c9:0d:0e:9c:
a7:f8:c2:c3:af:e4:e5:90:39:f3:ef:37:81:3f:5c:91:c5:ec:
e8:77:a4:35:11:73:68:48:bc:c2:98:12:c7:91:5c:e8:ab:f3:
35:9e:ef:5e:31:79:d5:1d:d1:9d:07:2f:bc:35:f9:b4:85:66:
52:d6:28:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:36:23 2026 by rpki-client