Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
File: hFNK68PtnHkETCI8iyXgEdq_L98.mft (raw, json)
Hash identifier: jO5v4aQ+DAhmdpcl/lOCvo3FO//N9pAH1INunJbA+28=
Subject key identifier: 25:D1:8E:2A:2C:84:04:F1:FC:F8:6D:34:8B:C1:4A:50:FB:2A:FE:EA
Authority key identifier: 84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
Certificate issuer: /CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Certificate serial: 019D390A52CC1F24B925DC0013B3B4D3D7B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
Manifest number: 0974
Signing time: Sun 29 Mar 2026 10:01:11 +0000
Manifest this update: Sun 29 Mar 2026 10:01:11 +0000
Manifest next update: Mon 30 Mar 2026 10:01:11 +0000
Files and hashes: 1: hFNK68PtnHkETCI8iyXgEdq_L98.crl (hash: UmlTobElnvvhwjd/teVK0jpFmUBRGZqcUov1J2w8m6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:52:cc:1f:24:b9:25:dc:00:13:b3:b4:d3:d7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Validity
Not Before: Mar 29 10:01:11 2026 GMT
Not After : Mar 30 10:01:11 2026 GMT
Subject: CN=25d18e2a2c8404f1fcf86d348bc14a50fb2afeea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:75:cc:61:91:2c:23:a7:63:13:fc:aa:c0:3e:
ab:aa:25:fa:db:92:42:a2:5a:35:34:e2:eb:7a:32:
9c:2c:8e:87:5e:d3:bf:e3:27:2f:34:2b:bb:95:e3:
2e:9d:23:32:1c:ac:ad:c7:e7:50:95:a5:05:34:a0:
8f:0d:5b:d5:03:01:36:97:44:ce:1d:e6:fd:fc:5a:
9f:17:5b:34:00:79:4d:37:96:4a:de:af:24:04:91:
f1:bb:27:98:55:ac:01:fc:6f:dc:b9:58:5d:68:f1:
17:07:cc:a9:68:fe:44:db:39:88:a1:8f:18:8e:42:
a2:18:22:b8:67:ad:35:f6:fd:b2:4a:c5:80:5a:27:
17:ff:7e:27:a4:eb:8c:20:f2:ba:4d:7c:f9:db:82:
f9:13:01:11:57:97:7a:13:68:2b:99:cf:a6:67:e0:
b8:ef:52:d2:f4:02:9b:7c:40:a3:84:6b:01:b2:28:
73:2a:66:85:e7:73:99:7a:a8:fb:04:fd:46:f2:87:
dc:c4:2d:ec:70:43:47:2e:c8:82:98:ee:0b:fa:8a:
ae:c8:e6:d1:d7:8a:53:e4:b3:d6:17:cc:b8:82:ae:
24:5b:15:37:d2:a5:a8:81:13:9b:42:2b:34:9a:cc:
64:58:a9:a0:b6:78:1f:03:d1:48:32:67:08:8c:ca:
46:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D1:8E:2A:2C:84:04:F1:FC:F8:6D:34:8B:C1:4A:50:FB:2A:FE:EA
X509v3 Authority Key Identifier:
keyid:84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:99:4a:1e:08:fc:45:3e:92:6c:76:69:e0:23:28:d4:40:e3:
8f:a9:a6:61:8d:99:c4:a9:0b:cf:19:99:5b:c5:2a:9c:f6:d1:
ba:76:cf:f5:84:cb:34:85:66:c8:aa:8d:f0:ff:03:27:5f:85:
c3:32:61:96:32:c4:13:ec:6e:33:79:e1:18:82:36:76:b8:14:
8f:ff:d8:b7:a3:24:22:5c:0c:00:f3:a3:8f:0e:f4:93:9f:ac:
1f:b6:37:61:7d:ea:f9:2a:ba:59:0f:14:8b:28:80:5e:c1:4b:
28:c3:f7:7e:e7:fb:db:cc:7e:23:54:3c:ae:f4:b3:ba:4d:42:
94:9d:f6:e4:78:06:a2:3b:e9:a3:95:04:c0:28:bf:4a:b9:f7:
1b:6d:bf:d0:b8:25:81:aa:18:30:83:3a:e0:42:24:c8:51:b9:
be:f2:ae:06:b1:cd:da:eb:53:cd:5f:af:d6:27:b8:5e:5e:f0:
6b:88:e3:db:60:31:bf:10:60:5f:fc:15:11:f7:3f:75:88:f7:
a9:72:43:f0:83:59:db:96:8a:54:4a:55:e0:be:70:9c:5a:e7:
66:dd:78:de:10:a1:98:17:8d:ad:5c:26:ed:50:f5:c8:64:00:
2f:ac:29:46:d9:5e:8a:ec:c3:ab:fb:ec:1b:3e:a5:f1:e0:80:
7e:f5:b3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:57:45 2026 by rpki-client