Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json)
Hash identifier: sriH+pi2/WKazdhDWDKR6q7A+UbJ/t1q/7WU8Jr7czc=
Subject key identifier: 08:CD:AE:37:D0:46:06:C3:69:34:3A:D9:EC:C5:73:9C:39:B1:92:6D
Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445
Certificate serial: 019D2703B8B9C25582ED64D363EB186D2C46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
Manifest number: 0BB8
Signing time: Wed 25 Mar 2026 22:00:48 +0000
Manifest this update: Wed 25 Mar 2026 22:00:48 +0000
Manifest next update: Thu 26 Mar 2026 22:00:48 +0000
Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: 92JTFjgDY5fBrDGg7D4M7itQ+uj+VQU03wPyzLVuEow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:b8:b9:c2:55:82:ed:64:d3:63:eb:18:6d:2c:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445
Validity
Not Before: Mar 25 22:00:48 2026 GMT
Not After : Mar 26 22:00:48 2026 GMT
Subject: CN=08cdae37d04606c369343ad9ecc5739c39b1926d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c3:47:4d:c2:7e:25:da:97:8b:fe:27:f4:3d:
0d:7f:fb:dc:9f:fd:70:c8:c6:f6:da:22:7a:05:a3:
99:00:d1:49:46:6d:6a:52:ee:45:fe:93:47:3c:24:
d8:54:e6:a5:19:c9:d8:8b:bd:53:04:fc:8c:f1:3f:
1e:8b:de:c3:96:07:6c:d8:c3:d8:f8:bb:bc:3d:6b:
d2:ff:20:7d:70:24:f7:37:25:d5:53:cc:c1:70:70:
3e:3f:57:af:8b:39:fc:af:f9:9f:22:73:c0:2f:53:
6f:33:09:f1:16:6f:5f:43:74:0d:6f:90:ba:28:24:
fc:26:3e:78:d4:3f:7d:08:0f:9e:28:93:b7:bc:72:
66:e7:65:22:c9:62:6c:e3:83:e9:52:01:02:54:72:
92:2e:bb:66:82:78:c2:2c:b0:1c:eb:ba:64:e4:70:
df:e6:61:3e:7e:6f:b2:77:0c:50:38:e5:b0:eb:67:
2b:28:e2:13:9c:04:e6:25:14:e8:f0:43:26:78:c0:
1a:22:d3:90:00:34:d9:97:6a:ce:8b:44:18:f2:6c:
ba:76:ba:7e:53:50:6f:67:cb:42:91:55:12:39:40:
10:ff:af:c9:7a:af:24:3b:17:b7:13:b9:be:56:da:
8f:ee:08:01:8a:8b:11:67:52:89:be:5b:1c:54:48:
80:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CD:AE:37:D0:46:06:C3:69:34:3A:D9:EC:C5:73:9C:39:B1:92:6D
X509v3 Authority Key Identifier:
keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:11:16:f0:f6:9c:80:75:d8:8e:77:e3:57:d8:12:dc:b3:82:
dc:72:3a:a4:f7:e5:f6:47:f9:61:47:84:dd:5a:2c:6c:f9:4b:
32:76:31:ae:7d:b9:0c:23:ee:c1:95:23:e9:94:ef:83:2d:d7:
ca:73:91:ae:65:50:79:7a:47:f4:00:50:02:52:48:da:c4:d5:
65:34:bd:e1:5b:b1:5c:95:a6:c9:62:cb:93:fe:ed:75:47:e4:
3a:27:59:0a:4f:c5:5e:be:ae:7c:19:42:2c:b4:48:2b:8d:c7:
f5:40:c3:de:c5:3b:80:3f:ae:a4:6b:96:1f:f6:37:b8:de:f6:
ac:94:e0:f6:bb:d4:ec:b3:06:34:59:f2:49:f5:5c:d3:27:84:
06:3f:76:bb:78:d7:2c:a2:2b:76:6a:4f:69:2b:9c:63:68:27:
7a:b8:9b:35:ab:25:a0:3d:6e:74:b0:93:96:1a:af:92:c9:30:
47:ce:48:2b:3d:7e:bb:22:8f:be:98:5e:0a:4f:46:50:c8:67:
4c:c7:78:35:5d:a8:a4:76:15:6d:57:85:90:75:24:d0:c3:7a:
a2:15:e8:ba:c1:de:d7:51:bd:4d:3c:e0:94:5c:31:ab:b5:7b:
a3:ad:2b:b8:03:1d:9b:2c:0e:1d:2b:d0:04:3d:0d:01:f2:e4:
86:d5:8f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:01 2026 by rpki-client