Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File: hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier: mA/hol+xg9RSc03jEwVhMkjFZGtIjT0tstJZPUTEfIU=
Subject key identifier: 69:E6:BF:0D:A5:60:B2:24:EF:D6:BC:62:58:5B:BD:C0:1D:E1:7F:90
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer: /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial: 019D9A071DA51D5BC487017F6593AFE41712
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number: 0DB3
Signing time: Fri 17 Apr 2026 06:00:50 +0000
Manifest this update: Fri 17 Apr 2026 06:00:50 +0000
Manifest next update: Sat 18 Apr 2026 06:00:50 +0000
Files and hashes: 1: D07dxDXxrFaWAK13Zm1gQWe6sqM.roa (hash: WEmuyO7ijZIUqK6Kdgpk4wxDQKr57OBRHR5wIMw0Uxo=)
2: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: vqGouY4lmVHhXG7uN9yYWrekc77ipMG8jVzwt5Y8Cv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:1d:a5:1d:5b:c4:87:01:7f:65:93:af:e4:17:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
Validity
Not Before: Apr 17 06:00:50 2026 GMT
Not After : Apr 18 06:00:50 2026 GMT
Subject: CN=69e6bf0da560b224efd6bc62585bbdc01de17f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b4:2c:63:a4:37:cf:be:d0:75:bd:53:f8:e4:
2d:c7:92:67:d5:8f:d2:d0:4f:4a:33:d9:81:2a:5f:
f6:e6:be:1b:8d:be:76:02:f6:1c:b8:83:0c:bc:c2:
7c:3e:0e:24:d3:2f:28:c3:df:a9:9b:57:00:e8:59:
15:3b:6f:95:20:eb:15:4b:3f:02:60:26:a2:36:b5:
a7:6c:68:65:0f:4e:8d:c8:42:34:30:31:6d:16:6f:
a9:53:51:68:4c:80:61:c7:2c:1b:7d:b0:3d:22:f4:
a5:fa:b1:cf:3e:7c:d9:1e:43:97:07:1c:47:26:47:
0e:a9:97:32:4d:b0:69:b3:af:61:ac:25:e3:e3:ae:
5c:20:49:ad:a5:09:2b:05:4c:39:f4:6e:66:b1:6f:
5b:37:1e:d1:3e:be:a2:fc:25:ed:14:3b:86:43:4e:
3c:d1:45:e9:1d:00:36:70:7d:f3:ef:98:98:0b:4f:
ed:ce:cb:85:0e:00:8b:2d:71:7e:96:82:29:ee:d1:
1a:8f:dc:53:4c:2c:f0:24:93:f6:30:51:72:c6:0b:
1d:20:93:aa:8a:0e:de:e6:ce:59:d9:e6:1b:5e:2f:
02:42:37:92:52:4f:b9:fe:7d:71:cd:66:73:fe:95:
28:74:51:51:f9:01:bc:2f:5c:3b:f5:ca:f0:29:6c:
fa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E6:BF:0D:A5:60:B2:24:EF:D6:BC:62:58:5B:BD:C0:1D:E1:7F:90
X509v3 Authority Key Identifier:
keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:9e:d7:6c:94:60:e5:de:62:0f:c1:93:3b:b5:6b:56:14:31:
f2:63:fb:aa:ae:9e:e6:54:23:3b:11:51:88:f4:dd:a7:35:cf:
36:63:4e:83:ea:4e:dd:24:d7:40:d7:56:91:c1:b4:7c:17:03:
77:8b:db:46:1d:66:b0:22:ff:50:88:62:19:d4:12:70:ab:42:
0b:bb:e7:cd:7e:a4:45:07:0c:38:0a:b8:41:4f:ca:5d:15:a5:
e8:28:cd:1b:b4:e3:a8:f4:ac:f2:74:2a:37:a7:c6:ee:6e:8a:
fb:f5:73:71:ad:3b:26:db:4b:71:1c:5f:36:4b:fb:41:02:18:
64:dc:52:6b:7e:fb:2b:a6:10:cd:f2:c9:78:22:d6:d6:cb:a1:
a3:6b:98:ba:e7:0e:f0:20:f3:08:fb:ad:b3:dd:25:38:a7:25:
ef:4c:26:c4:4c:11:a2:b7:a2:b0:ea:7c:1d:dd:88:a1:c4:d3:
c5:78:f6:ba:41:8c:96:6f:07:8e:91:22:e2:4d:35:59:24:1a:
f2:84:2f:0d:47:eb:3d:e5:f5:0e:92:a0:7e:88:a8:96:16:9a:
07:2c:5d:a4:8b:d8:59:38:39:ef:8a:68:a6:af:e7:3c:59:10:
12:87:2b:0f:85:4c:27:2a:c3:83:f1:67:4c:98:b6:59:7f:d4:
ee:c6:11:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:02:04 2026 by rpki-client