Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: A2N9TatJh4vsCpLOeQ2Jb7vUORzOSZrCGvQusmJT2vI=
Subject key identifier: CC:B2:75:CA:E6:AD:E8:6D:56:6D:09:3B:D0:9E:C3:E6:C3:89:A9:E3
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 019CAA8FF6684906DC23A65ABB7327E7AC8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 127A
Signing time: Sun 01 Mar 2026 18:01:27 +0000
Manifest this update: Sun 01 Mar 2026 18:01:27 +0000
Manifest next update: Mon 02 Mar 2026 18:01:27 +0000
Files and hashes: 1: Kj0HsXicjlUn-679OFq2n6YXriA.roa (hash: oCViwBHC3VWx+KMwr83UJNJcJLGK68aAWyXoMhEGcUQ=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: FgPEaT1n8Osks2ql19O7C9ATpDq6Gdyuz/NtQIA9eNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:f6:68:49:06:dc:23:a6:5a:bb:73:27:e7:ac:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Mar 1 18:01:27 2026 GMT
Not After : Mar 2 18:01:27 2026 GMT
Subject: CN=ccb275cae6ade86d566d093bd09ec3e6c389a9e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1d:15:83:57:d6:71:17:2d:cf:8a:df:ec:34:
73:90:fa:a6:79:bb:c2:a6:0e:b5:8d:1e:f1:ea:05:
38:72:6b:ad:2f:2a:58:d3:73:82:27:34:f7:8b:e2:
9e:24:2c:a7:0c:47:43:b0:8c:81:02:01:6f:53:70:
8a:a2:bd:82:8b:fc:71:b5:ef:3d:ab:80:1b:7f:f9:
6e:58:1d:e2:3a:41:ab:62:65:99:2c:e9:87:1c:bd:
6b:90:85:81:f3:37:38:3c:1d:00:ed:0e:a9:3f:13:
f9:16:9c:a3:b5:89:6b:96:ec:24:cb:23:5f:93:ed:
fc:75:42:a3:50:f9:ef:4f:73:9c:1f:11:e5:65:14:
a5:61:c6:12:62:ea:87:b7:06:b9:20:33:07:6a:e5:
0c:f9:ea:bc:cd:19:dc:5b:be:67:2f:c8:37:88:50:
d2:df:0d:9a:f1:ec:b4:2c:98:f2:ee:df:4f:0c:75:
04:c4:52:1e:21:ff:d8:40:a5:f1:30:f8:37:1f:1f:
16:13:f4:12:8c:b5:f0:1b:fb:e8:56:da:00:e5:6a:
e2:a4:ef:d2:3a:91:c9:50:6a:1a:22:87:23:44:e5:
16:5f:93:23:47:61:02:8f:7e:3f:92:1f:0c:4f:fa:
92:77:2d:b9:d3:ad:eb:07:ba:07:9e:bf:af:aa:5e:
d8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B2:75:CA:E6:AD:E8:6D:56:6D:09:3B:D0:9E:C3:E6:C3:89:A9:E3
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:17:be:21:c5:1f:d2:a2:12:1d:22:c1:63:30:60:64:cd:39:
14:d5:cb:29:c2:3a:49:fc:58:2f:8a:1a:12:60:e1:44:bb:df:
8e:6a:51:fe:39:ff:0d:88:de:5a:8f:1e:d7:7f:2a:8d:2d:af:
4d:5d:37:f9:12:4d:66:69:9f:7f:fa:40:1d:24:b6:bf:32:a8:
b4:c5:84:0e:7e:10:99:35:d3:fc:e9:a8:f4:14:e0:4d:e3:f2:
48:2b:3f:81:6b:49:3b:7e:38:a4:be:95:ad:23:cb:af:30:0c:
da:54:02:c2:bb:93:70:62:a9:cb:7b:c3:e6:a1:84:6f:a9:22:
86:ab:b7:c7:07:98:ca:ba:20:0d:1a:0f:e3:d4:c9:dc:71:de:
30:d2:97:a9:3b:be:8c:1e:3a:ca:35:84:ae:0b:b9:d6:e0:c6:
02:9c:8b:eb:0f:cb:96:cc:bf:62:00:81:02:32:6f:16:cf:ab:
0b:06:64:51:fb:fc:cf:1b:f8:f8:d3:ea:42:b0:14:c6:8b:af:
df:dd:c2:11:b9:33:46:27:57:75:29:ef:a4:f7:51:1d:60:a2:
6c:1d:72:09:65:8f:a1:e8:6b:dd:1e:28:ea:e4:c8:27:fb:91:
4d:78:97:67:ed:96:66:c2:26:27:11:05:eb:c2:85:a1:58:2f:
c4:19:b2:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqj/ZoSQbcI6Zau3Mn56yKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NTA1OTdhNjA2NGM4ODJhZTJhZjNmYTU3NTlmMTNmOGJk
MWRkZmMwHhcNMjYwMzAxMTgwMTI3WhcNMjYwMzAyMTgwMTI3WjAzMTEwLwYDVQQD
EyhjY2IyNzVjYWU2YWRlODZkNTY2ZDA5M2JkMDllYzNlNmMzODlhOWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1B0Vg1fWcRctz4rf7DRzkPqmebvC
pg61jR7x6gU4cmutLypY03OCJzT3i+KeJCynDEdDsIyBAgFvU3CKor2Ci/xxte89
q4Abf/luWB3iOkGrYmWZLOmHHL1rkIWB8zc4PB0A7Q6pPxP5FpyjtYlrluwkyyNf
k+38dUKjUPnvT3OcHxHlZRSlYcYSYuqHtwa5IDMHauUM+eq8zRncW75nL8g3iFDS
3w2a8ey0LJjy7t9PDHUExFIeIf/YQKXxMPg3Hx8WE/QSjLXwG/voVtoA5WripO/S
OpHJUGoaIocjROUWX5MjR2ECj34/kh8MT/qSdy25063rB7oHnr+vql7YMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMyydcrmrehtVm0JO9Cew+bDianjMB8GA1UdIwQY
MBaAFIVQWXpgZMiCrirz+ldZ8T+L0d38MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMt
MjVjNWYwNWFlYjVmLzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMtMjVjNWYwNWFlYjVm
LzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFRe+IcUf
0qISHSLBYzBgZM05FNXLKcI6SfxYL4oaEmDhRLvfjmpR/jn/DYjeWo8e138qjS2v
TV03+RJNZmmff/pAHSS2vzKotMWEDn4QmTXT/Omo9BTgTePySCs/gWtJO344pL6V
rSPLrzAM2lQCwruTcGKpy3vD5qGEb6kihqu3xweYyrogDRoP49TJ3HHeMNKXqTu+
jB46yjWErgu51uDGApyL6w/Llsy/YgCBAjJvFs+rCwZkUfv8zxv4+NPqQrAUxouv
393CEbkzRidXdSnvpPdRHWCibB1yCWWPoehr3R4o6uTIJ/uRTXiXZ+2WZsImJxEF
68KFoVgvxBmy8Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:59:41 2026 by rpki-client