Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
File: hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft (raw, json)
Hash identifier: Ik1y0XTMGWLzxiw9sdgpuqpNxEsqCFZ+F/2KrlrZQhE=
Subject key identifier: F5:3A:8B:8B:3B:E0:3E:9F:EB:C8:2F:A3:AE:C5:C5:F7:A0:B8:95:76
Authority key identifier: 84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C
Certificate issuer: /CN=84926c47a3607f51a39e1c91e7897f85f47e347c
Certificate serial: 019D397784B9DBA39C34E8000ACEDE405B39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
Manifest number: 0BEE
Signing time: Sun 29 Mar 2026 12:00:27 +0000
Manifest this update: Sun 29 Mar 2026 12:00:27 +0000
Manifest next update: Mon 30 Mar 2026 12:00:27 +0000
Files and hashes: 1: hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl (hash: 74kUXobKqP38GA/ouxPUn0B0GfRpx9VM7VtqNoaq6+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:84:b9:db:a3:9c:34:e8:00:0a:ce:de:40:5b:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84926c47a3607f51a39e1c91e7897f85f47e347c
Validity
Not Before: Mar 29 12:00:27 2026 GMT
Not After : Mar 30 12:00:27 2026 GMT
Subject: CN=f53a8b8b3be03e9febc82fa3aec5c5f7a0b89576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5f:d5:5c:08:92:bc:27:46:87:b4:cf:da:48:
72:97:fb:08:77:53:ea:94:ba:9e:bc:c7:c8:7f:e5:
3d:77:36:18:72:64:1c:b5:f3:a7:48:60:8f:3b:9b:
0a:07:6b:bc:a8:b6:53:28:04:e5:98:98:16:ac:51:
4b:0c:ad:40:6a:f1:f9:45:18:53:ea:95:11:14:94:
66:b5:76:94:15:06:0c:08:95:fd:f3:f8:b3:88:75:
93:4b:47:0d:0a:66:55:58:c4:5c:6e:b4:0e:ce:41:
c4:08:3c:15:cb:e5:5c:c2:a7:b1:e9:60:3b:e1:ed:
62:27:c1:08:92:1c:f4:ac:f2:01:e4:a1:1d:57:37:
04:2c:1d:0c:e7:86:2f:c1:4b:6f:07:f8:50:e0:49:
66:52:bd:a0:e8:72:6d:db:67:cf:02:bd:f0:c0:3e:
b9:66:65:68:50:86:9b:f6:a8:90:1f:ff:fe:bf:87:
be:e3:f8:8f:48:99:fc:df:03:5c:a6:a6:48:ad:42:
b5:f8:22:bc:02:99:0c:37:c1:76:b5:8a:e3:aa:1f:
16:6f:d6:a8:3f:3a:4e:3f:26:27:38:8e:60:ae:ab:
ca:2b:9b:d9:52:19:57:19:5a:aa:09:1a:3a:18:13:
b7:3c:71:a3:69:d1:f4:f0:67:90:bb:7e:6e:2a:ed:
9b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:3A:8B:8B:3B:E0:3E:9F:EB:C8:2F:A3:AE:C5:C5:F7:A0:B8:95:76
X509v3 Authority Key Identifier:
keyid:84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:29:ef:f1:5c:99:1b:35:8d:e7:9c:36:6c:62:1a:8a:b1:94:
d8:6a:5e:36:a8:66:ea:c1:ca:43:60:13:47:c9:a7:37:26:5e:
6c:04:0a:b8:3e:b5:c4:1f:9b:f5:21:9f:46:b7:99:c8:14:e6:
c6:f6:97:27:da:0a:4c:1c:34:db:c9:e7:d9:eb:a2:a6:61:20:
cb:ae:6c:b0:63:66:b5:2f:ad:57:bc:12:d7:52:eb:b9:7b:28:
37:ce:a2:ae:18:e8:83:cb:bb:68:94:5c:4b:e8:da:e2:a5:b2:
07:1f:0c:32:5d:22:84:fb:c5:85:d8:c1:37:2d:f3:7e:74:f4:
e7:68:b4:8d:33:b9:de:1c:b4:65:57:39:22:b2:37:0a:d8:90:
64:ca:b8:1d:0c:75:ac:02:ac:18:cb:67:5d:f4:8d:de:73:2c:
27:2b:b6:04:6a:eb:95:84:54:f7:6e:9a:6b:51:a4:1f:21:63:
89:30:41:70:f3:13:ea:a0:b3:9e:d9:13:2b:c7:d5:3d:f7:b8:
64:2b:b2:98:e5:c3:f7:38:71:4b:9b:71:34:83:f4:71:a4:2f:
09:39:16:e2:06:95:aa:0d:fa:0e:b2:13:30:91:7d:8e:e6:41:
b8:82:2c:af:13:18:02:73:e9:c7:54:55:c4:1c:6e:59:a3:f3:
84:d8:79:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:41:01 2026 by rpki-client