Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File: hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier: fo5yX+1/1ywhRmwTA6djKRPoP/gsOWVUzWGcB7v8Wkk=
Subject key identifier: 57:0A:37:73:69:00:CB:42:96:76:1F:DE:AD:F1:8A:B6:39:0A:02:D6
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer: /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial: 019CAA8FA3589749A1780A0793AE0A08445A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number: 0D37
Signing time: Sun 01 Mar 2026 18:01:05 +0000
Manifest this update: Sun 01 Mar 2026 18:01:05 +0000
Manifest next update: Mon 02 Mar 2026 18:01:05 +0000
Files and hashes: 1: D07dxDXxrFaWAK13Zm1gQWe6sqM.roa (hash: WEmuyO7ijZIUqK6Kdgpk4wxDQKr57OBRHR5wIMw0Uxo=)
2: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: dpa6q5kVqCWeL/4JOsm6nEwOUM3wRRhBxBaIf6XQzhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:a3:58:97:49:a1:78:0a:07:93:ae:0a:08:44:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
Validity
Not Before: Mar 1 18:01:05 2026 GMT
Not After : Mar 2 18:01:05 2026 GMT
Subject: CN=570a37736900cb4296761fdeadf18ab6390a02d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bd:8b:39:ae:58:d9:a7:93:48:fe:e1:36:ea:
78:c4:d1:97:d0:c8:9e:cb:31:b0:4e:fe:24:b0:80:
29:a6:71:36:68:5b:53:ec:cb:ba:b7:6c:85:d4:79:
63:88:78:36:2b:8a:58:d1:0e:61:55:b9:d3:7e:a2:
51:fb:fc:cc:38:19:36:19:ce:76:b8:30:c8:be:4a:
69:ba:b0:83:b5:39:e5:fa:1f:56:72:1e:71:4f:b8:
69:7f:a9:da:50:dd:a2:5b:d2:9e:5d:cf:6e:96:3f:
39:8a:e7:f6:a5:43:b8:27:df:b0:b4:00:68:a0:0b:
ce:cf:71:7b:df:27:6d:5c:92:a4:6b:e4:c7:cc:93:
f3:ef:96:76:e4:2b:41:15:91:c7:49:b7:55:93:33:
2c:b9:a5:3a:42:de:c6:b1:18:7e:25:c8:07:14:78:
86:4a:59:8f:40:ce:ee:fd:81:29:92:69:c5:14:32:
c0:6f:7f:1e:af:fc:e3:59:6e:dd:2f:54:06:6d:78:
c1:c4:a4:45:28:77:c0:a3:da:c1:6f:ce:08:31:c6:
16:ea:22:97:03:65:49:a5:d2:21:1d:69:bc:b6:1b:
b0:b4:cd:73:19:09:c8:d3:75:db:86:f1:18:e7:e3:
43:e6:9a:12:97:08:a0:07:cd:e9:f5:8a:56:cc:fa:
47:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0A:37:73:69:00:CB:42:96:76:1F:DE:AD:F1:8A:B6:39:0A:02:D6
X509v3 Authority Key Identifier:
keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:3e:48:67:1a:1f:ba:43:b1:61:75:0e:a6:00:9b:7a:20:3d:
70:f0:59:18:80:a9:28:25:b0:d9:d2:47:d7:6e:4b:09:da:b8:
35:e9:e5:0a:97:be:1a:60:70:4f:70:b1:73:ac:a7:c4:bb:ab:
fb:73:1f:07:76:fb:2e:2a:d3:12:46:2a:7c:8f:2f:ce:a0:df:
cb:50:da:5a:46:19:5d:c7:e0:b3:0a:69:e1:7f:21:c5:f9:6f:
5a:fa:fc:11:af:9e:2d:38:29:43:c8:49:cc:83:57:35:8e:cd:
8d:96:72:46:84:be:a3:9a:9d:46:44:ef:02:b4:92:28:9e:91:
52:84:57:72:b0:d1:4d:23:75:6e:bc:ac:0a:fe:f8:65:24:cf:
ba:93:1e:7a:37:de:29:d4:cd:26:ff:db:9a:f6:b4:e7:36:b2:
7f:23:97:aa:8f:e5:dc:04:d9:e9:8d:15:5f:d2:a9:44:a7:17:
8d:d7:ba:6f:31:67:88:a3:73:32:56:e7:4f:91:91:b4:54:16:
15:e9:c7:7a:77:0b:5d:9a:83:6c:71:7a:4f:c1:42:9d:0f:3f:
21:3a:da:8c:1c:ea:67:e1:43:b2:1c:f7:ec:18:7f:22:d8:1b:
cc:a8:89:21:11:7a:fd:7e:17:91:72:17:c1:94:71:8e:c2:3f:
94:f6:b3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:11:37 2026 by rpki-client