Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json)
Hash identifier: oXwMml4L10VQI/leBKOypmWuEOfKbJKdSzKCf2Qvu+U=
Subject key identifier: EE:3D:42:3A:CD:F9:97:A1:35:26:1F:50:5B:23:C0:F7:48:FD:B9:57
Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Certificate serial: 019E90941C4F8C91F96B4B806145C5C2D486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
Manifest number: 0ACF
Signing time: Thu 04 Jun 2026 03:01:26 +0000
Manifest this update: Thu 04 Jun 2026 03:01:26 +0000
Manifest next update: Fri 05 Jun 2026 03:01:26 +0000
Files and hashes: 1: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: 113vqgVzZ/kzACvtjoj/vb26hl8UUpdEz4xtqQ5Jtsw=)
2: vRy4dtwuzcoaMObZOrhsdgekFn8.roa (hash: EEHH4lnEcaLiLMDse86Umm3P044hYY8hcdkDDqvn/M4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 03:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:94:1c:4f:8c:91:f9:6b:4b:80:61:45:c5:c2:d4:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Validity
Not Before: Jun 4 03:01:26 2026 GMT
Not After : Jun 5 03:01:26 2026 GMT
Subject: CN=ee3d423acdf997a135261f505b23c0f748fdb957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:33:e5:37:01:b4:60:de:6f:4f:17:b2:7b:b4:
1c:de:0d:13:e0:aa:eb:08:15:41:28:a0:a2:1f:99:
cc:40:d5:bb:66:04:d1:25:ba:5c:d6:23:5f:49:4f:
bd:0c:56:74:54:ac:35:c9:a9:d2:ab:00:bc:21:65:
5c:a2:69:43:d9:ea:ff:50:89:8f:db:b2:8a:ea:1d:
b0:20:a7:d2:92:7e:a4:df:7b:44:4f:fe:2d:ec:08:
67:7f:1a:d8:7b:c8:f9:73:eb:63:56:6b:a2:dc:9c:
ad:5c:38:75:d9:42:19:f4:c2:92:22:68:be:78:be:
79:4e:60:73:df:4e:ae:e0:68:e7:7d:92:83:33:f2:
ab:e6:e9:ff:4f:c6:1c:c4:d5:7c:2e:52:5e:01:9a:
07:19:7d:bd:18:3e:16:6a:ea:4a:a5:76:ef:04:06:
2c:cb:1c:e4:dd:6b:bf:ef:8f:4b:35:9c:88:57:6a:
67:14:9a:fd:37:e3:c2:cd:2d:82:63:52:0d:f5:63:
15:47:49:c6:75:ac:33:9d:62:d9:f7:8c:fa:f3:16:
d2:8a:1f:42:c3:3c:9c:b6:85:dd:4c:86:2c:d3:73:
22:cf:10:09:98:54:bf:36:54:73:7c:c7:ba:97:6b:
f8:f9:4f:e3:ed:a1:75:29:f8:22:a3:5a:86:1b:c4:
0b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3D:42:3A:CD:F9:97:A1:35:26:1F:50:5B:23:C0:F7:48:FD:B9:57
X509v3 Authority Key Identifier:
keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:70:a7:c7:5b:a0:6d:55:f7:dd:bb:10:90:53:ea:01:d8:28:
d2:03:f2:37:0d:b1:2e:6b:39:12:6a:db:53:b3:8a:d1:9d:54:
8b:cc:a0:0d:3b:16:15:e2:a8:52:87:8c:80:d5:bb:c0:e9:a4:
c1:f7:a2:2c:f2:7c:05:47:73:f3:62:24:99:66:33:b7:5b:1f:
41:56:8b:a4:8b:43:63:15:4d:3a:eb:32:87:cd:25:08:e0:94:
49:8c:96:01:72:ff:34:88:07:9c:ac:26:a1:ff:84:37:1a:bb:
25:c7:07:61:a2:d5:7b:79:33:d2:05:36:cd:b1:9c:8a:1f:41:
da:88:3d:80:d9:32:21:29:b5:e2:14:b9:62:33:b6:47:e2:f2:
d0:ef:86:7b:4d:2f:e6:39:f1:02:d5:b6:0d:8e:80:40:20:b1:
d1:ec:e8:da:39:a1:b2:9f:f8:e2:35:5d:a3:b7:65:bb:5d:86:
5a:97:fd:8c:bd:16:42:b2:5b:34:f8:5c:d6:3c:a8:83:33:5b:
b9:89:af:51:c9:9d:59:ab:21:b7:f4:8b:2a:65:ad:eb:92:3c:
80:41:7c:bd:89:0c:9a:0f:6c:ab:81:c1:bd:ea:98:72:df:72:
a4:a1:c6:68:5b:dc:5f:6a:03:bc:00:d9:75:92:bd:fc:bb:10:
1b:17:44:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 13:05:23 2026 by rpki-client