Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
File: HYFeKwc-sEV2vLJN3k341Ot8nwg.mft (raw, json)
Hash identifier: tD5XJ34oxWV70TreF/I6ze+wIZz1CKyKvDs07NUqH/A=
Subject key identifier: FB:06:5D:0D:36:2A:51:A8:FB:27:6A:79:42:E2:04:39:24:EB:A9:4B
Authority key identifier: 1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08
Certificate issuer: /CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08
Certificate serial: 019CABD9A466C0435F0A42CF24B4DACAADF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
Manifest number: 0D2D
Signing time: Mon 02 Mar 2026 00:01:33 +0000
Manifest this update: Mon 02 Mar 2026 00:01:33 +0000
Manifest next update: Tue 03 Mar 2026 00:01:33 +0000
Files and hashes: 1: HYFeKwc-sEV2vLJN3k341Ot8nwg.crl (hash: DgjiyAKJ3Qgcl7KzdPR2Nk7kxiLmXBy7SqTP+OCMhYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:a4:66:c0:43:5f:0a:42:cf:24:b4:da:ca:ad:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08
Validity
Not Before: Mar 2 00:01:33 2026 GMT
Not After : Mar 3 00:01:33 2026 GMT
Subject: CN=fb065d0d362a51a8fb276a7942e2043924eba94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:64:b2:7d:d9:5f:9a:7c:2a:a3:19:fe:7e:df:
24:bb:16:2a:42:94:69:c9:2d:83:12:aa:98:6c:04:
df:09:37:66:eb:7c:4b:63:90:ff:d1:28:8f:21:97:
26:90:31:bd:3a:4f:d5:9d:6d:0e:87:1e:da:32:e0:
f6:07:58:6c:c5:b8:0a:8d:9c:75:8b:0b:ec:3c:de:
a5:72:0e:6e:5f:c1:6d:69:e5:cf:e2:8a:49:aa:49:
f0:63:10:81:d1:81:1d:6b:7a:9a:71:75:67:58:b2:
db:69:a0:5d:3f:0c:fc:e7:0c:36:fa:77:25:16:e4:
44:3e:b3:60:28:6c:0d:a9:56:fa:43:9c:2e:61:a2:
5d:a7:a3:d0:20:ff:80:be:4d:06:37:42:e7:04:e2:
55:4f:79:3d:10:72:cf:34:05:26:c5:d9:71:ad:54:
15:0b:b4:a8:2d:1d:c4:87:d4:1e:37:f0:df:76:db:
36:16:99:a3:50:d6:09:5c:01:85:5e:84:fb:d3:06:
c8:eb:44:2d:bf:05:5b:34:6d:a4:f6:fb:ae:1c:77:
a7:a2:6b:33:af:f6:54:fd:fb:f2:ab:c2:af:5d:be:
97:3c:9f:79:90:50:21:d2:50:4c:f9:2e:a7:aa:b2:
45:35:8c:ba:8a:5b:7b:4d:71:6c:be:9d:9f:b5:ae:
31:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:06:5D:0D:36:2A:51:A8:FB:27:6A:79:42:E2:04:39:24:EB:A9:4B
X509v3 Authority Key Identifier:
keyid:1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:fc:f0:1e:be:33:bf:95:4d:86:f7:5b:ae:b9:c8:af:ab:3b:
38:0c:ca:7e:e3:e1:9e:1e:be:d5:d0:b3:b2:70:1d:49:c7:c8:
bb:c6:e1:77:fe:90:43:8c:91:93:3a:b6:56:f4:a5:65:a2:32:
93:66:44:c2:06:c4:d8:44:9e:63:fc:03:0d:f2:2c:13:b4:af:
be:1c:d4:9c:c3:70:ae:d0:b1:19:7f:cb:6e:f8:e6:de:78:71:
07:26:1d:20:eb:58:f1:12:01:f8:77:ec:29:7b:2e:6c:86:cc:
8b:a4:eb:ac:82:4c:a1:19:41:72:3e:b6:e6:d3:4e:eb:58:b4:
06:b6:79:ea:f1:00:f2:60:ba:c7:08:ef:d5:2e:b5:9a:bb:e3:
72:00:db:06:b7:1f:b5:eb:9e:1d:88:75:e6:19:e3:cb:5b:ed:
a8:6f:7f:53:01:cd:79:e7:0e:8d:43:2d:19:6f:a6:4a:06:d4:
8d:82:90:83:5c:40:71:35:b2:3e:4b:55:11:69:82:1b:bf:d7:
aa:c5:2c:01:56:db:74:c8:9d:0c:98:37:78:8d:78:0c:d2:a2:
6b:c9:b6:18:a7:5d:3a:74:f5:a2:66:d4:83:b8:fa:96:49:a4:
c5:9d:93:d8:64:81:bc:84:10:13:7a:61:b5:8c:4f:4b:04:02:
2f:55:61:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:37:00 2026 by rpki-client