Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
File: hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft (raw, json)
Hash identifier: SsKgB77m6tIxIy5Xi1XZS6z2kT7H+XYjccEoVmBcDog=
Subject key identifier: 5F:71:E5:0E:B3:47:0B:48:17:1D:8E:18:BA:8A:7E:DA:3C:41:5F:CD
Authority key identifier: 84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
Certificate issuer: /CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Certificate serial: 019D3865C50510DDF449AF3B19B4E404C92A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
Manifest number: 0B74
Signing time: Sun 29 Mar 2026 07:01:26 +0000
Manifest this update: Sun 29 Mar 2026 07:01:26 +0000
Manifest next update: Mon 30 Mar 2026 07:01:26 +0000
Files and hashes: 1: hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl (hash: ijZG0TJjtNJacsHFw3rAnAuUWI5SEXs1ME9z9XIFV+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:c5:05:10:dd:f4:49:af:3b:19:b4:e4:04:c9:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Validity
Not Before: Mar 29 07:01:26 2026 GMT
Not After : Mar 30 07:01:26 2026 GMT
Subject: CN=5f71e50eb3470b48171d8e18ba8a7eda3c415fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5b:c6:a1:8e:db:df:b9:54:33:56:3f:fd:0d:
31:21:f2:d2:4e:87:7d:b0:94:9c:40:a9:32:29:4a:
47:44:4d:d7:57:20:e8:30:dc:1f:d6:37:f1:d8:b3:
2a:47:dc:47:51:c5:c3:e8:f1:a5:53:3c:5a:e1:5c:
e6:22:ed:86:e1:20:27:7a:8e:a1:78:87:77:8c:ed:
5a:6d:55:36:40:8d:27:31:20:bc:04:d9:47:32:0f:
04:eb:0f:a9:c8:6a:41:c7:72:22:66:95:44:da:d5:
b4:6b:7b:ab:9a:68:1d:4e:0b:2e:06:fc:5b:35:ca:
1c:f2:78:5f:d2:f7:56:ac:3c:8c:1e:ce:90:d6:d6:
30:fa:26:41:83:ae:81:18:ec:e9:1d:12:8c:03:cd:
88:cb:09:0b:b6:eb:16:61:f5:3e:df:4e:1f:00:45:
db:87:8d:2c:3f:66:c8:4f:b0:ff:3c:df:ab:f9:34:
48:8c:78:d5:86:d0:80:08:89:93:40:8a:15:8f:4b:
82:06:5a:b6:3b:ab:00:09:44:0f:f6:ac:24:1d:e9:
b9:35:c3:4f:99:bb:b9:dd:f8:6f:ae:f9:b7:b9:ca:
51:4a:67:62:f3:b3:f1:d3:61:f1:e6:1e:c3:6d:e7:
f6:30:13:fa:a4:58:34:7b:a6:a0:4e:f3:7d:01:fd:
44:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:71:E5:0E:B3:47:0B:48:17:1D:8E:18:BA:8A:7E:DA:3C:41:5F:CD
X509v3 Authority Key Identifier:
keyid:84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:56:eb:0b:e0:c7:e1:c4:0a:1a:fc:c4:24:44:ec:79:8d:7d:
1b:96:42:ba:19:f8:d9:50:ec:da:23:2a:be:91:b6:52:99:ed:
ea:07:0e:c6:40:68:48:90:b4:fc:cc:85:3d:1f:a9:52:b3:00:
09:ab:6f:92:d4:e8:06:0b:4a:57:b5:6a:7d:4f:b9:aa:a9:fd:
57:af:35:a7:ce:5f:c3:11:eb:94:de:93:03:0f:13:2a:27:d0:
51:0b:bb:91:cf:92:ae:bc:f7:c9:79:00:d7:03:5e:c7:2f:e1:
04:88:1e:31:24:89:4d:8f:7d:64:a0:f5:e0:1e:a3:14:c0:f3:
53:f7:8b:97:57:44:e2:9c:5e:db:38:31:9a:8c:da:75:bc:9e:
cc:29:b2:74:91:3d:55:fc:a0:d4:95:47:c7:cf:fc:63:cf:f6:
24:0a:76:77:30:23:07:6c:41:3f:b5:d5:a9:aa:81:c8:a1:7c:
93:18:5f:19:d2:84:63:4d:6a:fb:0b:59:45:5f:81:98:25:7f:
88:5a:05:85:22:60:c9:4b:44:79:60:1f:60:83:27:d1:62:aa:
77:dd:1e:92:eb:18:8a:08:e9:9d:1b:c7:52:c3:78:62:76:b6:
80:3b:25:fd:f7:bc:c7:5d:66:7b:09:64:34:a2:58:78:2b:ad:
4a:e7:e6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:36 2026 by rpki-client