Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json)
Hash identifier: EMtoYKwMVAi0le0HBDkAt0i5yTejJIsdY3gIplYvXss=
Subject key identifier: 86:2C:DE:82:CA:B8:50:79:C2:1D:F1:C2:60:0B:DB:76:5C:BB:49:3C
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 019F18312DC1DE105FD446A6EAB088CE6D8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
Manifest number: 0A68
Signing time: Tue 30 Jun 2026 11:01:43 +0000
Manifest this update: Tue 30 Jun 2026 11:01:43 +0000
Manifest next update: Wed 01 Jul 2026 11:01:43 +0000
Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: 0BbW/c2K7/QA7VuGlDRqETjQbcpHx7a89FMu/z7czTA=)
2: qW7GPOXUB2kOz17G8MW05EGL-qI.roa (hash: 23gVv5PC4uk3d5shuh+rzrrM1ECcEw5rTuYmm2m+M2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:31:2d:c1:de:10:5f:d4:46:a6:ea:b0:88:ce:6d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: Jun 30 11:01:43 2026 GMT
Not After : Jul 1 11:01:43 2026 GMT
Subject: CN=862cde82cab85079c21df1c2600bdb765cbb493c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e5:28:72:64:b2:75:c4:8b:49:e1:74:4e:60:
46:f4:f6:d8:d3:51:8f:d3:ab:bb:84:4e:d8:cf:cf:
5c:93:53:7b:82:06:d1:69:d3:8e:19:85:e8:59:36:
9c:83:da:22:33:92:32:b8:7f:c8:4c:62:16:bc:18:
92:61:6f:6d:0c:2e:55:c8:12:01:7c:42:2d:ee:a4:
8e:5d:44:7d:ac:e0:4a:2e:a2:ec:cc:c9:82:bb:24:
72:95:86:f8:0d:71:5c:f1:5d:63:72:20:33:b4:5d:
1a:ec:7a:8f:82:67:b9:2b:02:65:19:98:0c:3f:5c:
b3:2e:ea:9a:0b:88:71:57:8e:93:c7:7b:cc:8a:b2:
09:4d:41:27:14:d8:8e:50:f0:c3:04:42:94:0b:6f:
4f:c4:24:56:d1:95:44:27:d9:95:12:64:49:ba:f1:
d7:9b:b5:a1:f6:6f:5f:7a:d0:79:62:85:50:bc:e6:
81:43:dc:ee:bd:5a:13:ad:d3:00:bc:95:79:36:fa:
65:b0:3d:e8:0e:58:1d:03:65:c0:89:f3:f7:14:ab:
63:e2:23:23:01:43:46:5a:0b:2d:82:ca:ad:32:5f:
58:ab:b1:f4:a6:9d:e7:63:60:f9:94:04:fe:28:38:
84:98:02:97:87:d7:41:fc:8e:67:8d:77:7e:1f:5b:
3b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2C:DE:82:CA:B8:50:79:C2:1D:F1:C2:60:0B:DB:76:5C:BB:49:3C
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:36:85:89:bb:e0:15:a2:57:d5:47:f5:ff:95:c7:b3:0d:82:
ec:c5:97:3f:57:47:dd:be:7c:60:e2:e9:4c:42:f5:54:a1:9e:
c9:da:8d:60:bb:03:ef:2f:31:87:37:1a:1f:f2:26:30:d0:1a:
00:6f:90:cb:3d:7d:51:34:1d:d3:e8:ac:6f:e6:09:89:38:e3:
c3:4d:fd:4a:40:70:88:26:ae:fd:cf:20:30:2f:86:32:12:e7:
d8:aa:70:7f:c8:a0:09:9d:1b:41:8d:e6:00:7d:b9:07:c4:1f:
54:54:04:82:78:54:ae:32:f1:4c:19:c7:9a:ec:3b:6f:c6:17:
b8:30:c9:0a:dd:98:03:73:93:8c:69:a7:59:a8:29:0e:9b:15:
81:89:81:82:8b:a1:0b:01:90:f6:0f:4c:46:bc:96:67:8c:ad:
b3:ea:38:f3:55:fa:1a:55:a8:53:a3:05:1e:2b:38:14:e4:55:
74:50:7d:9a:b8:5e:86:a9:72:83:7c:4c:13:e2:04:2f:f0:d0:
7b:a8:85:37:30:e5:fc:24:4f:f0:d1:b6:8b:12:76:d4:de:43:
6a:c1:49:d3:c0:1c:d4:ab:2b:ea:fd:4d:3d:2d:e8:fe:95:a4:
52:4c:88:2f:51:7b:0f:87:15:6a:c9:52:f2:ec:6f:29:ac:71:
5a:91:a1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:18 2026 by rpki-client