Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json)
Hash identifier: jjjPeaOXwsjsa0mL6kfzMPXepYHbHr+JuxVOulJFPS0=
Subject key identifier: 9E:48:7E:BA:86:4D:C2:0E:36:69:0E:39:B1:B6:0A:4E:61:3C:57:5E
Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Certificate serial: 019D27729825F79B18423E825B8B5134B852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
Manifest number: 0A14
Signing time: Thu 26 Mar 2026 00:01:54 +0000
Manifest this update: Thu 26 Mar 2026 00:01:54 +0000
Manifest next update: Fri 27 Mar 2026 00:01:54 +0000
Files and hashes: 1: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: jPVs+A4wyP6dema8RDLW5A2cFh8jghijqYaYyuZNduc=)
2: vRy4dtwuzcoaMObZOrhsdgekFn8.roa (hash: EEHH4lnEcaLiLMDse86Umm3P044hYY8hcdkDDqvn/M4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:98:25:f7:9b:18:42:3e:82:5b:8b:51:34:b8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Validity
Not Before: Mar 26 00:01:54 2026 GMT
Not After : Mar 27 00:01:54 2026 GMT
Subject: CN=9e487eba864dc20e36690e39b1b60a4e613c575e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ea:d5:d0:fd:eb:06:31:f7:5d:dc:14:6d:86:
b2:d9:aa:10:62:a5:0b:8b:63:26:f7:b0:76:a1:54:
6a:3f:a9:f9:fd:ae:bc:3d:a0:44:46:3b:40:69:2a:
f9:05:89:e1:78:0d:64:b2:c6:dc:0e:0d:59:0d:4b:
13:41:eb:0a:7e:cb:45:27:c2:9e:e1:be:75:41:c7:
6d:20:ab:ba:20:17:fd:02:35:41:21:44:d5:f2:7b:
5d:65:03:ef:36:a6:b1:88:25:5c:5e:11:56:1d:15:
d6:bf:f5:79:67:e0:20:c0:4c:05:85:bb:56:c3:71:
f3:31:8a:6d:99:b4:cf:cb:c2:6a:2f:e9:7c:9f:af:
92:b3:96:93:55:e6:27:7c:52:88:42:1e:50:4f:f2:
66:1e:1c:a0:de:19:b6:b7:04:9c:62:ee:cf:a4:07:
14:fb:4f:95:df:38:14:39:26:85:b4:84:91:27:85:
05:99:f1:a2:00:96:d0:a6:73:13:f1:ca:4c:75:4e:
ed:c1:72:2d:08:aa:60:0e:19:df:47:3c:a2:88:7f:
70:88:6d:ac:70:e4:dc:7b:09:a6:7f:9c:23:6d:18:
6b:c5:81:4e:75:61:44:b2:8c:f7:70:4e:64:a0:43:
79:b3:ad:62:a4:8a:64:57:54:81:83:b0:44:b4:8a:
15:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:48:7E:BA:86:4D:C2:0E:36:69:0E:39:B1:B6:0A:4E:61:3C:57:5E
X509v3 Authority Key Identifier:
keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:38:e9:9a:56:c0:7e:7d:dd:3d:f6:91:eb:b4:2f:81:d1:c2:
d2:fa:7f:3f:da:70:a5:ff:f3:22:a3:5f:84:06:e5:38:75:87:
11:e7:cc:a8:40:ca:64:7a:d8:9f:f5:24:17:57:08:a9:d5:0c:
b3:30:d8:cf:a8:4d:3e:78:f2:94:fe:77:d5:ad:38:1e:b4:81:
df:ec:a8:b2:1d:02:be:d2:e1:72:b6:e0:5e:64:f6:11:df:e1:
95:42:c2:61:7e:69:bb:b2:3f:c1:e2:2e:00:73:6c:62:45:7c:
89:f3:5d:dc:38:ce:ca:ac:b2:49:67:bb:94:13:f6:44:53:44:
b1:26:aa:4a:c0:aa:18:e1:7e:03:aa:b0:d2:bd:7f:6f:61:a5:
39:64:6b:88:99:97:47:d8:dd:90:2f:5d:c3:1d:fe:26:6f:b3:
95:e7:1b:72:d3:9b:3f:c0:8e:87:a5:de:9f:60:0b:d0:39:fe:
71:69:a4:4f:9b:2e:86:a0:f6:3e:04:56:66:cf:64:02:99:74:
7a:3c:ba:0f:9c:2a:e8:7d:55:da:94:21:3b:5e:6d:b8:93:2e:
35:88:7d:95:87:8e:d5:bf:3a:95:01:86:bc:b3:09:0f:e8:61:
85:17:f4:43:24:bc:10:a5:2c:92:04:40:00:86:42:ae:d2:02:
22:a2:9f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:05 2026 by rpki-client