Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
File: hfTuFPbTinzwcSed_3s5FwLjcTU.mft (raw, json)
Hash identifier: UP8t7Nwjb+n/neRb9FY4UBIst+5hz2Bo+QiOS4ACgek=
Subject key identifier: 3D:B4:0F:3C:E3:61:3E:DC:71:B8:A4:96:EC:54:70:87:BE:82:3C:87
Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Certificate serial: 019CAAFD589DCD60110EF8FB02F76389B5D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
Manifest number: 16E4
Signing time: Sun 01 Mar 2026 20:00:55 +0000
Manifest this update: Sun 01 Mar 2026 20:00:55 +0000
Manifest next update: Mon 02 Mar 2026 20:00:55 +0000
Files and hashes: 1: Fbp_lxqUHehCSWbyl7sXqy6NV7c.roa (hash: 2HfCb9kniGEaBDNnHz9GBiRgabhJI0HLcxsnmcMaKY8=)
2: Kw8ydkhlfzZHeJTkr7mnY0TC51Q.roa (hash: A/++N69JbstSCEAobrMDwfyAGtA60/N4ZLrwg/2X2ok=)
3: hfTuFPbTinzwcSed_3s5FwLjcTU.crl (hash: TSBt0wxXXoYiyFySKT0km61ni4srWs4f4ZcdfFWxLKM=)
4: tTro6Q3OQALzLcA8FA4eU5RfBWA.roa (hash: jtcqT3NEeBB17kUbe2vD9a8c2cug0yjIQxz7WQqkvtg=)
5: vbHBtb2iPNz_qrAoEkpCxsaIZZc.roa (hash: OIkOu0+4El6Pg/y3PaYXt7py5eZ3TqMx4VnZc06tByw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:58:9d:cd:60:11:0e:f8:fb:02:f7:63:89:b5:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Validity
Not Before: Mar 1 20:00:55 2026 GMT
Not After : Mar 2 20:00:55 2026 GMT
Subject: CN=3db40f3ce3613edc71b8a496ec547087be823c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c3:68:b5:89:c5:0e:ea:47:e5:64:0c:5e:32:
af:19:db:d5:55:f7:52:79:1f:11:a9:bb:f4:af:ab:
36:a7:e8:02:f3:69:a2:1a:89:e2:a2:a0:e7:22:14:
cf:24:66:0d:97:53:0a:ee:1f:3a:bb:b1:f4:82:27:
51:f4:91:9e:52:11:99:f2:0a:e1:16:c2:de:fc:94:
11:f4:29:dd:6a:da:03:b2:22:63:3f:bc:88:5f:49:
64:7f:4b:d8:d5:2c:39:85:bb:c6:7e:19:ac:a7:e1:
76:38:fa:38:78:d4:c5:01:42:85:09:ac:16:22:d0:
dd:38:10:da:a0:69:fd:76:68:23:85:4b:23:35:27:
bb:18:33:c2:13:dc:eb:da:cc:de:85:7e:57:ac:1f:
48:62:e1:0b:01:8d:1f:bd:8b:a1:44:8d:00:f0:68:
5d:0c:19:2c:ee:73:29:18:41:52:cf:75:2c:ac:e9:
04:15:e1:b1:9d:d0:e5:a8:1b:2b:d5:9d:cc:20:7a:
12:88:72:d2:ea:7e:b0:9f:7c:43:84:3e:5b:6e:b9:
c3:19:78:48:6a:ac:3c:0b:d4:c8:fe:eb:3a:c7:c0:
e6:1e:39:b0:0b:3b:cd:14:d9:eb:ea:2a:16:c0:47:
fb:28:14:b2:12:24:d0:64:1f:e8:22:43:51:7d:9b:
96:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B4:0F:3C:E3:61:3E:DC:71:B8:A4:96:EC:54:70:87:BE:82:3C:87
X509v3 Authority Key Identifier:
keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:b2:cb:33:6e:0c:0d:17:63:8a:b7:8b:21:5d:2b:cf:1e:f6:
5c:8f:d8:a8:19:a6:e2:a1:06:48:dc:eb:82:45:7d:9c:fe:69:
60:a6:42:ea:4f:6b:26:12:71:f0:a4:c4:98:0c:a3:17:69:22:
ea:de:fe:5e:47:2a:60:9b:9b:a8:17:7f:a1:f2:57:fc:dd:64:
ad:2f:92:5e:97:1b:c3:bd:46:4d:58:1f:e1:29:78:6b:3f:37:
5b:e2:5e:0f:a9:ec:93:c6:13:24:44:39:d6:ec:d5:6d:2c:c2:
06:ac:07:12:44:c6:22:36:5f:15:f4:97:84:2f:40:4d:97:db:
14:51:a2:11:3e:60:2d:23:70:fa:3e:33:66:31:59:6c:c9:3d:
3d:14:e6:77:65:07:3e:52:81:9a:fb:64:f3:53:e1:56:4e:c4:
00:ab:c4:80:f2:ab:a7:00:49:98:b5:3c:00:45:46:18:9a:38:
d2:16:c3:9e:2f:0b:3f:63:56:0e:5a:d5:9e:65:1b:f5:a2:24:
6c:de:df:68:77:b0:da:82:55:3d:d6:56:03:2c:af:7c:18:55:
da:8e:70:34:68:d6:e4:7c:d6:cd:64:ac:f3:28:2a:b0:af:1c:
64:ec:b3:22:83:9e:d4:58:7a:88:46:18:39:10:4f:14:50:bc:
93:b6:1c:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyq/VidzWARDvj7AvdjibXQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZjRlZTE0ZjZkMzhhN2NmMDcxMjc5ZGZmN2IzOTE3MDJl
MzcxMzUwHhcNMjYwMzAxMjAwMDU1WhcNMjYwMzAyMjAwMDU1WjAzMTEwLwYDVQQD
EygzZGI0MGYzY2UzNjEzZWRjNzFiOGE0OTZlYzU0NzA4N2JlODIzYzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMNotYnFDupH5WQMXjKvGdvVVfdS
eR8Rqbv0r6s2p+gC82miGonioqDnIhTPJGYNl1MK7h86u7H0gidR9JGeUhGZ8grh
FsLe/JQR9CndatoDsiJjP7yIX0lkf0vY1Sw5hbvGfhmsp+F2OPo4eNTFAUKFCawW
ItDdOBDaoGn9dmgjhUsjNSe7GDPCE9zr2szehX5XrB9IYuELAY0fvYuhRI0A8Ghd
DBks7nMpGEFSz3UsrOkEFeGxndDlqBsr1Z3MIHoSiHLS6n6wn3xDhD5bbrnDGXhI
aqw8C9TI/us6x8DmHjmwCzvNFNnr6ioWwEf7KBSyEiTQZB/oIkNRfZuWowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD20DzzjYT7ccbikluxUcIe+gjyHMB8GA1UdIwQY
MBaAFIX07hT204p88HEnnf97ORcC43E1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi80ZGYzOWEtNzgzYy00ZDdkLWIxYmUt
YmZkOTVhOWE2ZTY0LzEvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi80ZGYzOWEtNzgzYy00ZDdkLWIxYmUtYmZkOTVhOWE2ZTY0
LzEvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfrLLM24M
DRdjireLIV0rzx72XI/YqBmm4qEGSNzrgkV9nP5pYKZC6k9rJhJx8KTEmAyjF2ki
6t7+XkcqYJubqBd/ofJX/N1krS+SXpcbw71GTVgf4Sl4az83W+JeD6nsk8YTJEQ5
1uzVbSzCBqwHEkTGIjZfFfSXhC9ATZfbFFGiET5gLSNw+j4zZjFZbMk9PRTmd2UH
PlKBmvtk81PhVk7EAKvEgPKrpwBJmLU8AEVGGJo40hbDni8LP2NWDlrVnmUb9aIk
bN7faHew2oJVPdZWAyyvfBhV2o5wNGjW5HzWzWSs8ygqsK8cZOyzIoOe1Fh6iEYY
ORBPFFC8k7YcRA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:51:34 2026 by rpki-client