Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
File: hWL0qJNlk83sba1-Ls8beb9lwFo.mft (raw, json)
Hash identifier: ltCr064WKiqIYhMw6QHYmqoGdtHr5tUhgvs5l+pygRU=
Subject key identifier: 8F:83:24:74:24:3E:4A:3E:13:A0:D9:60:D8:FF:ED:38:F8:DB:8A:06
Authority key identifier: 85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
Certificate issuer: /CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Certificate serial: 019CAC0FD0AD7B9F9CEC34D13B84E2278D10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
Manifest number: 1729
Signing time: Mon 02 Mar 2026 01:00:43 +0000
Manifest this update: Mon 02 Mar 2026 01:00:43 +0000
Manifest next update: Tue 03 Mar 2026 01:00:43 +0000
Files and hashes: 1: EvjH0eB3lK8EGxr2MMZY47KwFJo.roa (hash: 3qzbTURdZCLde3ZZJmDOq+A/YFi0KzBJQ1AgqJiCMy0=)
2: hWL0qJNlk83sba1-Ls8beb9lwFo.crl (hash: YebR8Nm0VI7I1OW18WjfPNWfiPxiDx6TzRO7VHm1u5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:d0:ad:7b:9f:9c:ec:34:d1:3b:84:e2:27:8d:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Validity
Not Before: Mar 2 01:00:43 2026 GMT
Not After : Mar 3 01:00:43 2026 GMT
Subject: CN=8f832474243e4a3e13a0d960d8ffed38f8db8a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:01:a9:7d:2c:87:5e:d4:ca:3e:db:ab:8e:9f:
85:53:4c:1b:7d:ce:29:ba:de:28:7d:7f:42:17:5e:
62:b4:70:6b:a7:e1:e5:c8:89:04:57:e0:26:49:27:
07:f8:24:1e:9b:f9:2c:57:47:10:e2:7b:cf:c6:7f:
be:d9:30:bf:a7:5c:68:90:f7:5b:6c:0b:97:e9:7c:
72:75:8f:d5:fe:50:31:a2:d8:1b:9c:a2:0a:34:d0:
4a:f4:b0:c3:5b:fc:01:39:c1:e8:e7:0c:5e:c1:55:
fd:44:66:96:9f:41:c6:d5:36:23:d1:71:15:15:00:
51:cb:6c:ac:0b:ff:d8:04:11:4b:76:a1:b2:ec:14:
67:9e:ff:20:ff:17:29:f1:65:05:83:5c:b6:d8:9f:
f2:d8:8a:d0:93:e0:d4:a9:39:81:18:ea:ba:b2:6c:
59:39:36:8a:cd:f2:28:17:41:ba:7d:3f:46:d0:01:
75:62:e4:d7:50:79:5b:a0:ce:9e:22:42:47:a7:c7:
10:36:9a:76:96:af:24:d9:76:7a:a6:7e:00:1e:94:
83:44:5f:0d:ea:99:dc:bf:75:a3:18:88:40:53:b3:
b0:0d:e2:5f:29:1d:bd:86:72:f2:0a:79:b0:71:8a:
f9:3a:4b:27:3e:66:51:9a:91:45:3b:0d:3e:b0:f4:
db:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:83:24:74:24:3E:4A:3E:13:A0:D9:60:D8:FF:ED:38:F8:DB:8A:06
X509v3 Authority Key Identifier:
keyid:85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:3d:3c:2e:25:12:81:8e:01:3e:8d:03:9e:35:2f:c3:db:05:
71:89:22:94:71:03:ee:73:b5:24:64:2c:fa:67:13:cd:a1:fd:
21:6e:3c:25:02:67:21:0e:c9:ae:59:89:96:5f:5c:4c:db:af:
e4:16:53:b2:d6:bf:03:10:8b:da:85:24:6b:2b:6c:a7:c9:0c:
4f:47:45:5d:50:ad:80:99:62:03:32:b1:bb:45:eb:14:e8:08:
e5:44:66:25:e1:d2:b7:9f:40:92:ce:82:7e:8a:60:98:68:11:
71:18:71:aa:28:57:44:af:0a:d6:9f:64:d7:70:4e:d2:c8:98:
a9:85:93:77:1d:83:e1:58:ee:10:c6:12:c4:32:fe:7f:74:de:
a6:e7:e3:d5:5d:a2:29:29:c4:47:fd:2d:65:f5:5b:c6:19:6c:
48:20:d4:a3:41:cc:eb:bd:27:12:97:24:ab:44:fc:8d:a0:e2:
13:2c:80:7d:e9:2d:7a:b0:00:b1:90:02:8b:60:6b:a0:ef:88:
63:f6:65:23:21:b6:ef:aa:ac:2e:2d:a3:0c:f2:dc:34:4c:8f:
f5:e0:a5:26:c4:80:8b:15:2a:24:a8:17:81:d5:9d:4c:ce:8c:
78:d1:cb:8d:82:75:e8:42:c9:a5:37:93:f0:02:1c:e7:67:0d:
4d:b3:29:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:51:35 2026 by rpki-client