Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
File: _hEX6Xaz4zlTuTYbtLseui9Ane0.mft (raw, json)
Hash identifier: dy0QS0n6U71DGEgE0q321Cj7mfu/yV/uCcRxG7Pe5+E=
Subject key identifier: 05:C9:A5:86:42:49:A3:6D:DC:DA:7A:3F:12:E6:16:CD:6F:CB:0A:D9
Authority key identifier: FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
Certificate issuer: /CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Certificate serial: 019D27E025AD09FAD3711B0351E9BCBEBF40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
Manifest number: 09A3
Signing time: Thu 26 Mar 2026 02:01:34 +0000
Manifest this update: Thu 26 Mar 2026 02:01:34 +0000
Manifest next update: Fri 27 Mar 2026 02:01:34 +0000
Files and hashes: 1: _hEX6Xaz4zlTuTYbtLseui9Ane0.crl (hash: WImzgxnbYPAVlsXVYhvgiym/LsTOfyMri6ZbTzKgR9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:25:ad:09:fa:d3:71:1b:03:51:e9:bc:be:bf:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Validity
Not Before: Mar 26 02:01:34 2026 GMT
Not After : Mar 27 02:01:34 2026 GMT
Subject: CN=05c9a5864249a36ddcda7a3f12e616cd6fcb0ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:88:3b:08:bd:b0:54:6f:dc:6c:cd:aa:5a:ee:
80:1f:99:8f:65:b4:b8:e9:4c:c6:88:d2:83:16:24:
c0:a7:6c:ed:31:8c:52:59:aa:7c:b5:f3:3b:2e:c7:
36:06:bc:e4:c9:15:5a:4a:b8:79:78:d4:e8:38:16:
7c:1c:86:91:d1:a1:af:18:94:e0:6c:d4:0f:a1:5b:
f4:0a:01:f6:0a:ff:f5:d2:5e:84:b6:7c:4c:ff:a6:
96:34:25:66:dc:e4:ea:66:12:48:37:d9:28:4d:98:
85:e1:39:b8:b1:ac:d8:81:7c:4d:0d:ac:ab:e9:fa:
39:41:b0:2f:e8:ce:e7:c4:a6:7e:5f:83:c6:fd:41:
39:39:d1:d0:3b:9f:c2:5b:db:92:64:d0:fd:d0:79:
4c:28:97:3c:aa:89:3d:ff:94:ab:a4:89:bd:d4:24:
86:4a:01:a0:bf:5e:88:4e:52:38:2d:7c:23:7b:a3:
b9:37:0a:46:25:d6:35:43:e7:09:3b:66:18:9f:5d:
30:e0:bf:44:20:32:ae:0c:1b:b6:c7:41:13:18:0d:
09:9e:4e:7f:e4:0d:76:63:2f:db:4f:f1:e2:d4:48:
48:74:b6:82:35:ba:93:1a:e9:09:3e:83:97:2f:44:
d9:12:90:2a:be:44:97:8f:a1:ad:5b:c3:53:fc:9a:
06:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C9:A5:86:42:49:A3:6D:DC:DA:7A:3F:12:E6:16:CD:6F:CB:0A:D9
X509v3 Authority Key Identifier:
keyid:FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:15:a2:7a:a7:19:17:47:14:a7:f0:a1:19:27:2d:35:48:0a:
9a:1d:01:70:98:cb:2c:8b:5e:e3:c5:48:91:64:ad:fc:da:df:
13:1b:e5:d8:0e:db:d9:68:0a:b9:3d:07:96:0d:15:58:8d:f6:
63:d2:1a:da:87:d6:3c:92:e9:83:c1:62:2f:f8:30:35:f5:aa:
b2:37:32:45:4c:92:16:23:ae:67:54:30:ac:1b:db:b0:53:df:
b0:df:05:22:d5:d4:c6:53:a1:2f:63:37:05:82:0f:71:c1:48:
7d:28:8e:a7:12:b0:6d:d1:10:9a:fb:d0:e9:20:3a:52:32:c5:
80:cb:dd:12:e7:bc:4b:f3:5a:75:df:48:95:39:05:fd:3f:7f:
c5:40:a9:c7:dc:f6:db:a9:c1:f6:d3:c1:93:46:f0:e9:d6:74:
79:e0:b1:b6:e8:84:ac:c9:ac:55:82:75:b7:94:49:2a:d2:15:
33:93:e6:8b:33:cb:84:9c:d0:06:19:a3:fd:59:69:84:44:60:
04:80:7d:1b:73:94:c6:92:14:90:de:65:0e:19:c2:4e:6f:ca:
fa:ea:20:8c:65:51:ce:ab:12:a2:01:b4:a6:93:da:54:a5:c8:
32:ba:81:19:02:4b:77:70:96:a0:44:b6:cb:a1:a8:39:46:fb:
68:8d:07:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:11:32 2026 by rpki-client