Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
File: hCIIK4U0vXrmP6gAimhbZfTNJZM.mft (raw, json)
Hash identifier: ubPgcQNrfPiOqlhXK0G3xcXSbUpx5uHYYBnBXorUrDo=
Subject key identifier: CE:AC:5C:1F:6D:1E:46:66:E0:86:E2:98:C9:25:C8:E9:72:0A:EB:D8
Authority key identifier: 84:22:08:2B:85:34:BD:7A:E6:3F:A8:00:8A:68:5B:65:F4:CD:25:93
Certificate issuer: /CN=8422082b8534bd7ae63fa8008a685b65f4cd2593
Certificate serial: 019E1DFDE4ABEBB35A5B24F6EFE402DD3339
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCIIK4U0vXrmP6gAimhbZfTNJZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
Manifest number: 0712
Signing time: Tue 12 May 2026 21:00:38 +0000
Manifest this update: Tue 12 May 2026 21:00:38 +0000
Manifest next update: Wed 13 May 2026 21:00:38 +0000
Files and hashes: 1: 7ObucnjBknjOc9VGyDvq-rah57Q.asa (hash: AfmsB5ElxTW0o9bXlvelsvJ0CpTckZTI7iwTHE4nG1E=)
2: hCIIK4U0vXrmP6gAimhbZfTNJZM.crl (hash: 7PcTtKAEUeHs7kh4v74irhHRJdCQcGDaDEjui4M26P0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hCIIK4U0vXrmP6gAimhbZfTNJZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:e4:ab:eb:b3:5a:5b:24:f6:ef:e4:02:dd:33:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8422082b8534bd7ae63fa8008a685b65f4cd2593
Validity
Not Before: May 12 21:00:38 2026 GMT
Not After : May 13 21:00:38 2026 GMT
Subject: CN=ceac5c1f6d1e4666e086e298c925c8e9720aebd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e0:57:87:8c:4a:b5:7e:1f:54:5f:c4:39:a1:
3f:d5:4b:ff:5f:d6:ab:62:52:55:0d:6f:9e:c6:e0:
d2:b9:a1:78:17:09:1a:c2:9a:1b:d6:28:85:b7:50:
97:0d:6c:61:42:ad:d8:bc:2d:36:79:d1:ee:21:0e:
ed:2e:f2:7e:a5:11:88:0e:10:72:3f:fb:49:56:98:
02:bc:da:cb:29:7e:44:40:a8:54:76:0b:3c:6f:34:
0c:39:3b:2a:17:7d:4b:0d:20:98:3b:4b:03:05:ab:
86:04:e7:6e:54:3e:0b:27:1d:81:a3:9a:9d:06:77:
d7:de:22:c0:eb:9a:34:23:e9:21:a8:0d:3c:e9:97:
64:98:f5:8a:df:ff:f9:7f:1b:10:de:cf:4c:0e:89:
f8:0f:46:97:18:ef:65:bc:e8:00:33:5c:dd:97:32:
00:64:43:07:b2:ae:1b:0f:92:1c:a8:67:7a:65:0d:
c8:c0:c9:9e:c2:04:d2:16:e2:b8:14:4b:0c:7f:09:
92:b3:31:8e:3b:e1:47:59:ca:aa:0e:98:65:6c:57:
86:0a:9a:2b:0c:01:5d:d5:92:31:64:71:49:0f:54:
44:c3:88:5c:9e:75:94:16:1f:5b:a7:e6:4e:e6:99:
b6:a8:6a:f3:75:ad:ac:15:6c:96:c0:ef:2d:1e:4e:
20:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AC:5C:1F:6D:1E:46:66:E0:86:E2:98:C9:25:C8:E9:72:0A:EB:D8
X509v3 Authority Key Identifier:
keyid:84:22:08:2B:85:34:BD:7A:E6:3F:A8:00:8A:68:5B:65:F4:CD:25:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCIIK4U0vXrmP6gAimhbZfTNJZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/094db3-e389-4461-b50e-58169fbecdfa/1/hCIIK4U0vXrmP6gAimhbZfTNJZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:6b:9e:7e:e1:a8:ed:39:20:63:ef:ce:f4:10:ed:7c:69:4c:
65:08:2c:0f:c4:33:d2:71:f9:a1:3a:3e:84:57:32:06:86:ba:
b0:4b:a1:79:e7:ee:d2:94:d2:ff:aa:d4:74:ae:30:fe:8d:ec:
6a:8d:e7:14:ee:a9:2b:c0:33:95:6f:57:1a:9b:0e:4d:ad:ef:
0f:57:d2:54:90:83:9f:91:a1:79:66:f2:c8:04:49:9b:74:1c:
ed:c2:7a:56:2a:2b:29:e0:76:1f:87:6c:97:97:3a:ef:42:9a:
d8:b3:da:b2:8f:5b:41:08:15:0a:ce:eb:aa:54:93:07:18:ec:
3b:87:6f:18:42:ad:70:ea:fa:ad:b3:8b:09:0a:81:a2:58:8b:
30:17:34:91:1a:dd:19:eb:45:4e:97:f5:c4:5e:f6:12:65:be:
c7:77:b4:be:5e:e6:4d:61:e3:97:7f:74:8e:ac:b6:32:b9:eb:
bb:5d:a8:70:b5:aa:b2:3d:3f:5c:e4:9e:30:a4:57:37:64:37:
86:86:67:4c:8d:31:e6:ea:5b:02:e6:84:c6:57:93:f5:ef:d2:
f0:8f:35:2e:be:f2:7a:c0:5d:d1:0b:40:7b:6e:b1:b4:43:bc:
7a:45:69:27:1a:5e:9d:b5:7d:87:be:d4:0b:de:bd:d0:23:ba:
26:a6:2b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:43:50 2026 by rpki-client