Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
File: HpKJoBWvREH4-d9MjFXpiykogc8.mft (raw, json)
Hash identifier: S7xoa/hKzJhvnL064x97UrAASc2DOHx0RAwIh5Fr6RE=
Subject key identifier: ED:25:8B:36:F4:C0:DE:70:F1:B6:84:2B:6D:7B:C2:07:43:64:E1:D3
Authority key identifier: 1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
Certificate issuer: /CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Certificate serial: 019CAC477F2BBD643E303C76B1ABB63341B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 02:01:32 +0000
Manifest this update: Mon 02 Mar 2026 02:01:32 +0000
Manifest next update: Tue 03 Mar 2026 02:01:32 +0000
Files and hashes: 1: HpKJoBWvREH4-d9MjFXpiykogc8.crl (hash: N7hUf8Y1i7EgZhocS9O1ZOEJplH5z3G4S/R9PVu3940=)
2: qXW1tFeOtiksAO4B-LToz6aX1z0.roa (hash: uLilZNr9B9MLP79uUoSooDJXZ1XBNKFz1okgC0rlTvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 02:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:7f:2b:bd:64:3e:30:3c:76:b1:ab:b6:33:41:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Validity
Not Before: Mar 2 02:01:32 2026 GMT
Not After : Mar 3 02:01:32 2026 GMT
Subject: CN=ed258b36f4c0de70f1b6842b6d7bc2074364e1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:bb:9f:eb:11:8d:f7:82:41:40:58:d3:9e:76:
cb:ef:5c:a5:ac:87:a0:67:ed:7b:3b:34:ac:89:33:
fa:5f:bc:da:0d:d5:98:c7:dc:a3:63:2a:b8:3c:2d:
1c:a6:e3:9b:77:36:3a:44:85:f2:23:0c:8c:98:a7:
72:9d:85:72:80:9f:4f:0b:dc:8b:8a:46:b9:0a:87:
1d:57:5b:ec:83:00:c8:ac:9c:dc:30:ad:db:9a:d9:
1d:e1:60:1f:4b:7e:5c:bf:92:5b:7e:26:61:7f:b8:
56:ff:8c:a7:1a:4e:b3:8a:cc:2d:db:59:8e:41:0e:
24:12:57:3f:cb:e2:75:73:61:b6:17:b4:68:af:95:
2e:55:39:4c:6e:13:6c:aa:3c:e7:e2:bb:6c:3a:9d:
b2:92:d7:cc:78:0f:f0:06:6f:48:17:08:c3:81:67:
0a:29:21:32:e7:38:2d:44:15:51:05:eb:8f:7e:56:
37:90:8e:3c:af:d1:eb:71:0f:dc:93:6f:84:54:ea:
e9:5c:a2:cf:04:27:0b:c5:49:6e:4a:2c:ee:56:ad:
a3:47:78:47:c5:19:0c:87:bb:c4:12:77:99:44:17:
df:5a:73:0e:aa:57:18:cc:3e:05:54:bf:ba:a0:7d:
d5:c4:a1:04:a8:78:55:8f:1b:20:cf:66:38:42:ea:
89:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:25:8B:36:F4:C0:DE:70:F1:B6:84:2B:6D:7B:C2:07:43:64:E1:D3
X509v3 Authority Key Identifier:
keyid:1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:d7:43:ff:6e:58:e6:ce:ba:10:34:75:da:91:2d:16:33:53:
00:7f:57:76:93:83:53:fc:54:47:ec:a8:24:77:da:85:48:85:
c0:1a:4a:9c:de:a9:83:c8:db:d4:d3:32:12:ce:8e:bf:0d:ef:
7c:e3:51:03:f2:8e:a6:2f:1a:5b:77:73:b6:06:6f:a5:bd:56:
22:c7:b2:a0:8c:ef:75:b2:92:8e:1d:e6:1a:a5:92:bd:e1:cb:
a9:d4:10:41:1e:a5:72:98:1e:23:14:e1:e5:34:77:29:e7:e5:
a5:fa:45:c1:0e:f4:64:de:e8:ff:c0:4d:dc:13:e1:ad:28:f5:
df:b7:b3:ce:4b:b9:28:6b:31:df:a3:fd:6b:81:9c:16:0d:5f:
80:7a:1e:26:68:0b:dc:ce:c9:78:e8:fd:6c:3d:7a:0b:17:28:
c9:ad:ac:62:4e:84:85:58:2a:44:42:76:6d:8c:44:6a:b1:41:
75:c5:f2:0a:8d:2e:dc:76:cc:22:3c:7d:e4:01:e6:2c:cd:11:
77:a5:30:b4:ac:b5:f4:ce:67:d6:98:29:48:9b:ef:20:93:6b:
2b:18:7c:d7:09:13:0b:bf:09:c4:b4:7a:84:5c:36:fc:16:74:
86:a0:15:d3:77:8e:f1:7c:e3:f8:74:ff:3c:2a:25:15:df:84:
66:80:c6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:26:03 2026 by rpki-client