Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
File: h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft (raw, json)
Hash identifier: rCDZnKPRw6Y4bhUggYd4bT7TLNlChKrp+k2GVR2e8nE=
Subject key identifier: 0F:81:58:CE:96:3E:97:66:A0:63:B7:80:8B:C8:1C:C8:22:B9:87:6A
Authority key identifier: 87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
Certificate issuer: /CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Certificate serial: 019E9025F88BCF3248E1D973AEB62002E4B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
Manifest number: 14EE
Signing time: Thu 04 Jun 2026 01:01:08 +0000
Manifest this update: Thu 04 Jun 2026 01:01:08 +0000
Manifest next update: Fri 05 Jun 2026 01:01:08 +0000
Files and hashes: 1: aMxhZsLMDx304AXjnZldJIQi_VU.roa (hash: nX4KFrnvKm65Zf0OrETssJJWMj+/5dAoLpEa4nDLRE4=)
2: h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl (hash: +R/oswQ8USzKcKfOMQxl42Px1NDILnTaTFWEC0/d9fw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:25:f8:8b:cf:32:48:e1:d9:73:ae:b6:20:02:e4:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Validity
Not Before: Jun 4 01:01:08 2026 GMT
Not After : Jun 5 01:01:08 2026 GMT
Subject: CN=0f8158ce963e9766a063b7808bc81cc822b9876a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4d:14:fe:c0:e3:d4:94:3b:00:cb:bf:3c:20:
00:bc:71:fd:fa:40:02:fd:64:3e:1b:72:1f:b5:b2:
37:b7:b9:bf:29:b9:c5:69:64:f0:76:54:d9:c8:91:
90:05:8b:de:11:c1:82:3f:89:67:45:23:e4:de:c6:
b7:8f:44:87:ef:a2:70:d7:ee:16:c4:09:c4:9e:66:
f7:dd:bc:1b:ed:6a:9d:a1:0f:71:1f:2e:16:cf:86:
26:d9:fe:6c:79:f3:6a:6d:eb:dd:32:31:16:e6:d6:
73:b4:49:cf:5a:dd:b7:0d:4b:f0:ba:e0:6b:2f:b1:
02:de:46:05:30:48:26:a8:9c:62:b8:3c:91:6b:96:
98:6c:3d:9c:90:b5:6a:80:8d:12:66:ee:81:40:35:
2b:ec:53:f8:c8:88:15:67:e2:73:41:70:bb:2b:b6:
ee:96:04:c7:ee:14:16:e0:68:00:67:01:4f:19:b1:
01:cf:85:a7:30:7e:70:20:c7:28:6c:0a:96:56:91:
07:b5:04:fc:ba:d1:1b:87:03:96:2f:13:d0:68:5b:
97:c9:dd:06:3d:74:10:f8:a0:4e:b0:12:cb:49:b6:
34:a5:58:6b:c5:54:da:0e:18:0d:1b:6e:cc:6c:7f:
36:21:62:35:0b:8d:1c:85:dd:f3:bd:11:0a:fb:43:
9e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:81:58:CE:96:3E:97:66:A0:63:B7:80:8B:C8:1C:C8:22:B9:87:6A
X509v3 Authority Key Identifier:
keyid:87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:a9:f7:f7:7c:90:26:e8:b5:f3:a5:e3:9c:08:7c:61:5e:40:
c2:2a:5e:b3:0d:e8:f2:97:3b:0b:e2:ea:1b:07:98:c5:16:fa:
a8:e3:89:45:e0:07:f8:22:59:0a:e0:03:6f:60:e9:58:84:f8:
e5:34:07:78:b3:9b:00:45:89:92:69:ee:f3:f7:57:79:c5:65:
63:2a:15:e1:0c:97:d6:0d:ed:31:60:51:92:5b:60:ed:8b:26:
df:37:57:30:7c:89:84:29:d2:e8:32:e4:6d:97:98:c9:33:f5:
67:20:63:1c:01:ef:2b:ce:0c:17:03:9b:cf:3d:f3:e6:fe:dc:
da:c8:8b:d4:dd:76:6d:34:ee:eb:a4:c0:52:a7:ff:88:38:b8:
03:21:69:f3:60:5c:d4:2e:fc:84:69:a4:ec:9a:a3:99:39:7d:
6e:a7:c4:dc:38:b1:52:eb:ae:66:97:c7:79:9c:cb:2e:99:fe:
51:92:b9:8c:cc:38:81:a3:7f:93:8b:c6:81:f1:df:ca:c3:dc:
37:4d:22:08:80:3e:1a:dc:da:3c:d9:d7:e0:ed:c2:75:03:97:
2e:8c:a4:89:42:aa:d3:9b:8f:16:9e:2f:92:9c:cc:c3:1a:67:
ce:89:3c:e8:6a:bf:64:59:0b:32:41:67:34:56:11:4f:f1:01:
67:b8:70:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 04:17:31 2026 by rpki-client