Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
File: hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft (raw, json)
Hash identifier: t70keC/n5qYHTFVs5ejnbH2mqURTOP1H1OKozvEdD8I=
Subject key identifier: 00:CC:B8:DE:1A:75:99:48:46:FC:7E:AC:02:FA:25:38:09:86:E5:0B
Authority key identifier: 84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
Certificate issuer: /CN=84f590ca62c246440583818c31f2573a0f50ffd0
Certificate serial: 019D25BA237559C58B395885725C3802177F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
Manifest number: 0C99
Signing time: Wed 25 Mar 2026 16:00:48 +0000
Manifest this update: Wed 25 Mar 2026 16:00:48 +0000
Manifest next update: Thu 26 Mar 2026 16:00:48 +0000
Files and hashes: 1: hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl (hash: WPgNTF/NFC169QUrc4+5xYfRIr1ZHyvT17kpiujPkFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:23:75:59:c5:8b:39:58:85:72:5c:38:02:17:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f590ca62c246440583818c31f2573a0f50ffd0
Validity
Not Before: Mar 25 16:00:48 2026 GMT
Not After : Mar 26 16:00:48 2026 GMT
Subject: CN=00ccb8de1a75994846fc7eac02fa25380986e50b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0e:25:62:ba:25:c7:8c:f0:ca:52:40:10:59:
95:e8:24:4d:d8:2f:23:39:76:b4:0c:31:80:0c:b4:
89:0b:78:3b:6e:c9:66:4f:d1:89:9c:7a:b9:99:a3:
b5:72:73:e6:ed:9f:d9:d3:25:40:c2:45:ce:ef:b6:
cf:9b:d7:21:48:ca:57:33:34:ae:09:9e:78:41:3f:
da:fd:7f:6b:19:f4:3a:2d:16:7a:9c:62:a3:da:4a:
ee:42:e4:d1:42:c3:19:9a:b0:4a:80:e1:f2:85:8c:
0a:61:84:f6:b6:39:14:54:d1:ed:36:a5:1e:0e:d5:
ad:85:31:b5:f5:8d:44:5d:ec:fb:2d:8c:20:67:94:
c1:9c:87:12:f7:95:ac:a6:d6:c9:c8:3c:1b:c2:24:
9a:ad:d8:c1:01:86:13:59:bb:77:f4:0d:0b:bb:f4:
e2:25:20:ad:cb:26:39:a1:f7:92:86:21:31:10:c5:
a8:d7:84:e5:52:ef:a4:31:79:ef:ba:b7:24:0f:d3:
fd:22:d2:a7:f5:49:eb:1d:b3:68:da:eb:4c:f9:e7:
1a:ec:3e:99:b0:46:7b:92:d7:a6:31:75:e4:12:b7:
f2:5e:26:d5:64:cd:34:46:28:e5:c5:35:fd:4d:9f:
b9:d2:73:a9:fd:6a:4a:97:67:97:f4:25:71:c9:51:
65:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CC:B8:DE:1A:75:99:48:46:FC:7E:AC:02:FA:25:38:09:86:E5:0B
X509v3 Authority Key Identifier:
keyid:84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:a1:99:ac:b2:44:0d:82:cd:6f:af:37:8f:f2:00:e3:8f:45:
3f:e7:7b:6a:1c:81:ed:6d:b6:e2:09:03:41:ae:e9:a5:7d:a1:
42:88:ad:b0:1c:10:d1:b8:7c:4d:03:e5:e3:77:62:ae:3c:a9:
db:48:38:ea:2f:8d:3a:95:51:fa:31:b7:fa:14:b3:62:6b:9b:
29:8b:88:82:76:a6:7f:cd:4c:3e:74:3a:9f:0c:ad:93:ae:4b:
c3:f3:c0:aa:6f:40:1b:9b:f4:de:eb:f3:66:5f:70:f8:e9:16:
fd:59:c5:6e:f8:59:92:10:9c:cd:4a:f7:fc:db:92:86:be:7d:
4a:4f:b4:c1:a1:17:bd:30:90:e9:87:fb:6a:6d:95:42:16:b3:
8b:cc:8d:d1:c9:ee:05:af:74:5a:7c:f6:f7:e1:07:f5:fd:99:
05:9a:93:f7:2e:0a:e3:45:fe:83:f2:6e:d6:f9:54:84:79:4c:
a2:44:02:d7:a9:fe:99:ea:9b:f3:8b:15:b1:87:ff:77:88:95:
a0:ad:ef:8b:c4:0a:03:d7:10:bb:6f:a4:e2:a1:9b:66:58:2d:
9a:b5:33:1a:17:56:4b:60:5f:ad:10:38:92:1b:7e:9b:06:d1:
38:e1:e7:87:3c:f8:62:af:a1:21:8f:d8:2f:eb:76:bc:b0:a0:
32:5c:77:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:34:56 2026 by rpki-client