Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
File: HzkK-DPX1CaQQsJJvPSWSFcglbY.mft (raw, json)
Hash identifier: quauPSGbxOhvKY5ZhS+jCAuspbXwvyFO2nR68eyMlx0=
Subject key identifier: C3:C2:32:18:51:CF:C9:4C:D0:E3:FE:F3:AA:73:C4:95:D9:B4:6F:F9
Authority key identifier: 1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
Certificate issuer: /CN=1f390af833d7d4269042c249bcf49648572095b6
Certificate serial: 019CAB6AD53305AA6DC4CB0B24B216F73196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
Manifest number: 12E5
Signing time: Sun 01 Mar 2026 22:00:31 +0000
Manifest this update: Sun 01 Mar 2026 22:00:31 +0000
Manifest next update: Mon 02 Mar 2026 22:00:31 +0000
Files and hashes: 1: HzkK-DPX1CaQQsJJvPSWSFcglbY.crl (hash: TDP4LNBy8bMH33R0K81JSm/kNo1W39QD5x+YhsTjQAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:d5:33:05:aa:6d:c4:cb:0b:24:b2:16:f7:31:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f390af833d7d4269042c249bcf49648572095b6
Validity
Not Before: Mar 1 22:00:31 2026 GMT
Not After : Mar 2 22:00:31 2026 GMT
Subject: CN=c3c2321851cfc94cd0e3fef3aa73c495d9b46ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fa:25:30:17:c9:89:0b:af:72:37:8f:a9:b1:
d1:d5:2d:c5:d1:45:34:35:38:a6:17:72:5b:70:d8:
b9:0c:ba:19:5a:36:cf:24:4d:0c:b6:00:68:dc:98:
58:66:c2:9c:08:72:33:41:d6:16:7c:5b:ee:78:ad:
4d:7b:cf:d6:8b:20:56:fb:1b:30:b7:63:9e:f3:0a:
ad:8d:8a:c9:a9:07:93:34:5b:38:f3:e6:9e:85:3e:
f1:15:a9:43:58:a1:2d:1e:f4:3f:a4:38:f2:e2:09:
41:b0:85:9e:3f:e4:f9:c8:a9:1d:08:8c:7d:82:4a:
bb:f3:ab:5e:e3:5d:35:70:c4:d7:18:a9:54:39:77:
2e:58:18:60:59:8a:28:91:d9:46:fc:1d:02:ac:0e:
50:c2:67:8a:7b:f9:2e:75:0e:73:07:3c:64:bc:f8:
d8:04:8e:c9:b1:43:3b:13:66:9c:40:93:05:08:3f:
0b:ba:a6:6a:3e:9b:57:4a:d8:76:e9:ec:7f:c3:e9:
5a:f7:a1:28:4e:83:c5:b3:41:a8:a4:d3:f7:5a:39:
db:b4:d4:55:79:8c:08:63:77:38:51:ce:7f:4f:6e:
0a:fb:60:09:43:60:52:6c:d4:42:62:11:a3:2f:b4:
b0:0b:4c:f7:49:e8:af:82:15:02:51:bb:bc:30:c4:
76:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C2:32:18:51:CF:C9:4C:D0:E3:FE:F3:AA:73:C4:95:D9:B4:6F:F9
X509v3 Authority Key Identifier:
keyid:1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:76:aa:c9:40:fb:46:91:7a:a0:0c:96:f8:3d:a0:e6:67:2b:
b6:d3:15:c6:b8:3e:3e:7b:61:61:ad:71:5f:2e:50:db:d9:4b:
97:a2:98:d4:5d:19:39:06:50:41:6e:7a:06:68:ca:e8:6b:ea:
08:31:ba:8a:01:10:6b:b0:64:13:7b:1e:a1:17:6d:7a:30:74:
b6:ab:d2:12:7e:cb:d4:e2:a6:11:7b:a1:7a:79:1a:a4:43:c6:
db:82:c2:af:d9:88:80:b7:79:78:42:db:16:a2:8d:54:c3:16:
d4:c8:fa:1b:b4:e7:3d:c3:cc:06:69:cd:19:21:8b:2b:0c:9e:
e1:75:a9:8a:af:9f:ed:a0:c3:4c:d8:25:12:c4:96:cc:07:2c:
cd:7b:44:c0:3e:3d:07:c0:3c:8c:10:ba:fb:57:00:3c:b2:1d:
94:54:67:cb:ff:3c:4e:b2:ac:f6:58:3f:15:ef:ca:25:f9:74:
9e:21:20:e2:78:6a:d9:4c:3f:09:5e:e1:bc:0c:fb:88:bc:71:
92:7d:a9:e3:44:62:6e:48:6a:9a:c2:94:5b:31:c8:74:ef:c4:
3c:c6:00:4a:7f:2b:76:62:9c:8d:bd:65:12:3c:83:25:35:5d:
07:1a:20:bc:56:7e:6c:8a:45:09:d5:3e:c0:ae:36:56:df:b5:
3a:0c:8a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:29:24 2026 by rpki-client