Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json)
Hash identifier: 5G0lGG2MoA8DXOL3xrOtkJcHnIIc0zMJZ6yR+FFppD8=
Subject key identifier: 2F:0B:31:7F:23:93:4C:AC:1C:C1:42:9F:11:12:27:A6:DC:FB:79:8B
Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Certificate serial: 019CAB343E8AE2EDD91C3B7700155470DD18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
Manifest number: 07C9
Signing time: Sun 01 Mar 2026 21:00:53 +0000
Manifest this update: Sun 01 Mar 2026 21:00:53 +0000
Manifest next update: Mon 02 Mar 2026 21:00:53 +0000
Files and hashes: 1: LVJLyRNkzYXWrFPMXDuqL1cx3r0.roa (hash: /6VNNRjnmK1nx7DLPoyOKEbtFH+S0vHKlP1nyDqaMBk=)
2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: phR2JTQk9uRS6QPXZjw0wLxuEGju13Xmsb56zCkF5UY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:3e:8a:e2:ed:d9:1c:3b:77:00:15:54:70:dd:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Validity
Not Before: Mar 1 21:00:53 2026 GMT
Not After : Mar 2 21:00:53 2026 GMT
Subject: CN=2f0b317f23934cac1cc1429f111227a6dcfb798b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f5:56:34:8e:ad:c4:b7:86:d7:d8:4a:9f:c8:
f7:4b:4e:f6:a5:d3:91:72:46:e1:b5:b0:1e:c0:4b:
05:3a:74:df:b0:85:dd:b7:7d:fd:72:f4:4b:0e:5d:
c5:55:93:f4:32:f3:ae:a7:1e:34:08:2f:3c:1d:a8:
36:2e:d6:35:47:44:41:e1:a3:b5:cc:3a:ac:f4:93:
df:3d:b9:ec:83:d0:59:37:da:d9:2d:d9:c5:cc:da:
b2:b6:fb:eb:75:1a:74:c7:19:7f:59:fe:5c:ba:ae:
e4:66:c3:06:f6:b2:85:c6:e7:02:14:e6:9b:5c:b9:
93:d4:a6:df:3d:b4:29:52:b0:b3:b7:4d:98:29:b1:
a8:2c:03:6f:4a:5b:14:2f:1c:3c:17:56:91:a5:5b:
65:63:58:75:0c:f0:2f:d3:c2:92:65:2b:8b:8a:fd:
f6:a9:b7:b8:41:a5:08:f3:6d:86:e3:90:e7:b2:06:
91:b4:1c:bc:32:e1:b8:cc:ce:5a:14:f0:5d:5f:5d:
c5:91:d6:db:b1:01:b0:80:b1:f9:b5:7f:a0:4a:67:
e7:68:11:e6:2f:98:97:99:20:c6:08:68:f4:3b:5d:
f2:64:d9:66:85:9b:8f:36:a9:a3:ed:d7:a5:45:b7:
33:15:63:38:98:17:0e:1f:ea:4f:6e:b9:f5:9a:1a:
00:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:0B:31:7F:23:93:4C:AC:1C:C1:42:9F:11:12:27:A6:DC:FB:79:8B
X509v3 Authority Key Identifier:
keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6c:55:45:31:ae:7b:23:f9:ff:b1:ad:ef:de:7e:84:f8:3b:
c2:94:d6:ab:76:f4:83:72:73:62:9b:0b:f6:dc:be:65:75:60:
1c:2e:79:d7:47:f6:9e:c3:1d:6c:80:b5:5f:92:bf:b3:5f:27:
ae:1d:7c:9e:9a:2e:ec:38:3d:87:86:55:a1:cb:5a:d8:fc:20:
18:85:60:cf:b6:43:2e:88:39:4d:d1:cc:99:53:27:45:74:90:
a1:90:75:67:a9:05:58:b8:d2:97:01:20:85:5c:83:13:d7:45:
2b:cd:7b:9d:17:1e:c4:d7:16:49:24:8c:72:29:49:3c:b3:23:
98:0e:85:4c:92:88:5f:f7:75:f1:bb:57:e0:8b:22:e7:48:79:
a7:7c:98:d4:b9:3e:cc:b3:46:d8:7a:2b:fa:c0:e0:db:95:d4:
af:ba:fc:d8:ed:c3:c0:ff:3f:bb:a7:e2:3f:ab:09:92:9e:8f:
15:84:14:b6:fb:66:15:a7:98:88:27:cf:32:10:99:5b:bf:86:
32:48:6b:f2:a5:e2:0c:40:2e:56:3d:f4:57:d3:44:4c:60:21:
c0:88:9e:c2:6b:f0:c5:25:07:33:49:9d:73:e1:c0:30:2c:c0:
94:21:f6:bf:92:7e:df:2a:c3:8f:6f:46:c8:69:5f:44:ca:a9:
f0:01:a7:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrND6K4u3ZHDt3ABVUcN0YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1YWNmYjlhZDNhNTBjZTE1MzMxY2ZmNGViYTg4YmNjMDdi
N2EyODIwHhcNMjYwMzAxMjEwMDUzWhcNMjYwMzAyMjEwMDUzWjAzMTEwLwYDVQQD
EygyZjBiMzE3ZjIzOTM0Y2FjMWNjMTQyOWYxMTEyMjdhNmRjZmI3OThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/VWNI6txLeG19hKn8j3S072pdOR
ckbhtbAewEsFOnTfsIXdt339cvRLDl3FVZP0MvOupx40CC88Hag2LtY1R0RB4aO1
zDqs9JPfPbnsg9BZN9rZLdnFzNqytvvrdRp0xxl/Wf5cuq7kZsMG9rKFxucCFOab
XLmT1KbfPbQpUrCzt02YKbGoLANvSlsULxw8F1aRpVtlY1h1DPAv08KSZSuLiv32
qbe4QaUI822G45DnsgaRtBy8MuG4zM5aFPBdX13FkdbbsQGwgLH5tX+gSmfnaBHm
L5iXmSDGCGj0O13yZNlmhZuPNqmj7delRbczFWM4mBcOH+pPbrn1mhoACwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC8LMX8jk0ysHMFCnxESJ6bc+3mLMB8GA1UdIwQY
MBaAFIWs+5rTpQzhUzHP9Ouoi8wHt6KCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgt
NmQ3N2YwNjVhMmMzLzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgtNmQ3N2YwNjVhMmMz
LzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbGxVRTGu
eyP5/7Gt795+hPg7wpTWq3b0g3JzYpsL9ty+ZXVgHC5510f2nsMdbIC1X5K/s18n
rh18npou7Dg9h4ZVocta2PwgGIVgz7ZDLog5TdHMmVMnRXSQoZB1Z6kFWLjSlwEg
hVyDE9dFK817nRcexNcWSSSMcilJPLMjmA6FTJKIX/d18btX4Isi50h5p3yY1Lk+
zLNG2Hor+sDg25XUr7r82O3DwP8/u6fiP6sJkp6PFYQUtvtmFaeYiCfPMhCZW7+G
Mkhr8qXiDEAuVj30V9NETGAhwIiewmvwxSUHM0mdc+HAMCzAlCH2v5J+3yrDj29G
yGlfRMqp8AGnYA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:52:28 2026 by rpki-client