Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
File: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft (raw, json)
Hash identifier: Utcr8zWQl8BDK10tXu52uqzwMovULqXNGtyP1FXywls=
Subject key identifier: CC:F2:96:47:BE:61:6D:04:67:85:C0:FF:EA:73:21:97:49:AA:FC:64
Authority key identifier: D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
Certificate issuer: /CN=d217978586bff3a6777d55a9a9635841516d43b4
Certificate serial: 019E1F47932CAFD45C9C2A695F58F27A8408
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
Manifest number: 0E9A
Signing time: Wed 13 May 2026 03:00:44 +0000
Manifest this update: Wed 13 May 2026 03:00:44 +0000
Manifest next update: Thu 14 May 2026 03:00:44 +0000
Files and hashes: 1: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl (hash: KaTUx+ojwh4PWyR4PyLn6IHXSUJ+bZK060vJCNf5OLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:93:2c:af:d4:5c:9c:2a:69:5f:58:f2:7a:84:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217978586bff3a6777d55a9a9635841516d43b4
Validity
Not Before: May 13 03:00:44 2026 GMT
Not After : May 14 03:00:44 2026 GMT
Subject: CN=ccf29647be616d046785c0ffea73219749aafc64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:df:e7:ea:d9:38:81:73:41:dd:5b:c9:6a:df:
7d:88:57:ef:21:07:35:a5:f9:1b:26:a6:33:15:e8:
34:03:4c:2c:a0:0b:05:3a:00:13:8f:b1:51:9a:84:
18:25:ee:f8:cc:b3:0a:4d:45:4d:c6:86:5e:d2:8e:
79:24:12:75:8c:1d:de:65:7d:e5:5b:3f:8c:e9:f0:
7e:38:a7:d4:9f:06:61:3c:f7:38:ed:af:ec:b0:92:
4f:3f:cf:4b:5c:8a:ed:78:6c:65:b2:85:ec:6b:dc:
28:45:34:a4:2e:b7:d6:f4:16:b5:50:38:39:cd:10:
f5:32:8a:03:0f:0d:2d:25:45:39:68:9d:2f:f6:54:
df:99:f7:9e:e5:73:2b:c8:7f:e2:28:1b:76:1d:7a:
ee:d6:fb:06:98:66:d1:04:36:da:50:de:05:c6:d5:
9c:e3:2f:64:fa:97:fa:c8:73:7d:41:32:22:7e:3b:
0c:05:e0:48:ac:1c:b7:5b:04:fc:0a:d3:be:67:01:
09:c9:98:8b:88:2b:c2:0f:eb:29:91:05:84:9c:bc:
67:e8:ff:07:25:9f:c9:6c:3f:c0:ed:82:de:b1:a4:
39:20:74:86:39:8d:95:62:00:c6:6c:9e:64:17:6c:
46:ca:21:82:16:50:66:5f:b4:2f:3a:c7:f0:d6:89:
76:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F2:96:47:BE:61:6D:04:67:85:C0:FF:EA:73:21:97:49:AA:FC:64
X509v3 Authority Key Identifier:
keyid:D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:7e:9e:20:14:8a:c4:1a:73:0e:99:c2:f0:29:c6:9c:03:b1:
b7:41:ce:16:0b:b1:9b:da:8b:22:5f:3d:42:66:0c:9b:8c:6f:
0f:02:44:48:9a:2f:da:5b:7d:37:49:f0:b5:0c:8c:ce:90:db:
aa:9c:8b:47:1d:76:a5:10:67:7f:8d:bf:bb:cc:fb:35:dc:77:
a7:f1:fa:b2:3d:b3:0f:41:84:0f:d0:82:a7:06:21:9e:65:72:
95:9d:90:53:ab:dd:53:01:ea:17:1f:c9:72:2e:9b:ca:0a:0b:
bd:82:69:df:07:ba:14:7a:46:f6:0d:fd:59:32:78:7b:c6:db:
5e:1c:ea:4f:37:a7:24:1f:a2:99:56:2f:03:ec:a3:67:28:b5:
60:d2:57:7f:47:0b:f3:42:cb:0d:ec:85:db:f9:37:4a:c4:bc:
c2:8a:6c:a9:84:4e:65:61:a5:ed:eb:e9:77:71:ab:24:c9:bf:
35:fd:f5:ee:d1:18:b9:ae:8b:1c:19:77:75:2c:1a:0b:49:d2:
bd:4b:73:3d:df:1d:6e:92:90:7b:5d:47:5b:b2:c7:08:19:99:
2c:5e:49:3e:3d:d9:b8:b9:68:bb:7a:34:d1:3a:c6:49:83:f9:
0e:6a:31:e5:ec:b6:f0:6a:78:e1:93:9a:92:89:73:97:5d:93:
13:50:f3:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:31:46 2026 by rpki-client