Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json)
Hash identifier: ywzNFCW+XjockVCnRnH+BIa+jW/KRn6LTiwXFHdKBjo=
Subject key identifier: E7:32:03:EA:DE:04:77:24:38:F7:7D:20:FF:04:40:87:6A:20:CF:13
Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Certificate serial: 019D38657CB8C87F2EB415D05629DB114282
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
Manifest number: 0EE4
Signing time: Sun 29 Mar 2026 07:01:08 +0000
Manifest this update: Sun 29 Mar 2026 07:01:08 +0000
Manifest next update: Mon 30 Mar 2026 07:01:08 +0000
Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: QDKwFVUUAzAR2IY++/I/urPrjwclnoBwgKHISuU77Ws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:7c:b8:c8:7f:2e:b4:15:d0:56:29:db:11:42:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Validity
Not Before: Mar 29 07:01:08 2026 GMT
Not After : Mar 30 07:01:08 2026 GMT
Subject: CN=e73203eade04772438f77d20ff0440876a20cf13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:15:ed:13:bd:41:dc:b1:41:de:e4:ba:87:1f:
e5:46:77:23:26:c1:e9:9a:68:de:a4:e0:3b:74:ca:
d7:37:d6:2a:58:2a:92:f0:99:4f:bf:70:4b:7c:61:
56:7e:f5:0f:49:94:85:bb:8b:ee:4d:78:13:04:98:
bb:35:b3:a4:25:cd:a1:3b:c4:cb:db:94:06:92:61:
81:1c:86:e7:14:9a:3e:04:9b:34:bf:d7:01:0d:05:
9b:91:ac:28:04:44:82:1c:ae:a5:40:5c:c4:89:14:
0a:56:0c:54:87:e5:1e:04:17:19:68:23:49:e0:6b:
29:90:59:e4:52:54:5b:85:45:14:68:fa:84:0f:7a:
82:54:7a:bf:7a:24:6b:e7:52:11:23:78:4b:4c:27:
8c:eb:19:d4:af:a1:a1:25:06:26:81:4c:3b:69:48:
02:06:90:28:67:48:10:91:85:d2:e8:d6:61:c8:87:
de:50:16:b6:11:d1:ab:64:fc:79:9b:76:ab:12:4d:
ee:3d:0c:dc:03:76:93:d0:44:00:49:de:6c:2d:da:
15:68:dd:5b:c5:60:c4:8f:38:a7:00:6f:b0:a7:bb:
93:3b:0b:45:0f:8f:c2:1a:7f:a8:fc:91:29:60:80:
58:18:64:78:32:3e:65:29:32:7b:24:31:1b:ec:be:
83:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:32:03:EA:DE:04:77:24:38:F7:7D:20:FF:04:40:87:6A:20:CF:13
X509v3 Authority Key Identifier:
keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:8d:a3:08:97:98:96:51:35:1b:42:8c:22:eb:3f:1f:c0:b7:
39:2b:2f:74:0f:e9:87:a9:90:91:f7:a2:d6:ae:17:20:5b:3d:
a8:30:65:ed:73:04:40:65:cd:50:2d:33:66:56:ad:97:74:44:
3c:6c:8e:42:d5:17:14:c0:41:51:96:34:b5:ca:e9:c2:0f:b9:
19:93:2f:b0:9c:be:ad:34:82:ed:84:e1:bf:dc:6c:55:b8:eb:
4d:24:b0:9b:88:a9:2c:cd:bf:e4:fa:7e:1f:61:69:1d:e6:09:
c1:9e:d0:88:36:aa:9c:a6:ff:1a:ff:5b:9f:71:2b:5c:25:6e:
13:ab:11:8a:e7:4f:ce:2b:9d:68:82:3f:c9:70:8e:15:bf:d6:
95:a4:ba:8c:ac:34:5a:45:3c:62:5e:ec:fd:ba:73:cd:0d:00:
23:35:be:48:da:2d:9a:09:35:cf:42:8b:4e:3a:8f:94:d8:3a:
2a:11:59:ac:2d:4b:b9:f8:21:e2:9f:60:47:1e:e4:0e:fc:f7:
60:25:2c:e8:b2:f4:65:bb:e9:54:7a:d0:10:ed:3b:e8:a3:03:
35:55:9a:54:53:f0:f1:fe:8e:65:56:8a:bc:3d:ed:a9:5e:17:
0d:63:c3:9a:4e:fa:02:8c:d5:a6:cd:20:22:ca:46:a0:40:12:
0e:71:ac:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:56 2026 by rpki-client