Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
File: _hEX6Xaz4zlTuTYbtLseui9Ane0.mft (raw, json)
Hash identifier: I9OgdmCRxUNQ7v1JhSf5T1NqhdRqX5/Z4xaNvAaGH6g=
Subject key identifier: 8C:C0:82:B8:01:62:13:CF:C6:58:2D:1F:0A:08:31:A5:C4:E0:50:F9
Authority key identifier: FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
Certificate issuer: /CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Certificate serial: 019CAE35B75AB77141B1D51A91F241BC7CF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
Manifest number: 0964
Signing time: Mon 02 Mar 2026 11:01:21 +0000
Manifest this update: Mon 02 Mar 2026 11:01:21 +0000
Manifest next update: Tue 03 Mar 2026 11:01:21 +0000
Files and hashes: 1: _hEX6Xaz4zlTuTYbtLseui9Ane0.crl (hash: Ajcw1I3keAoaP4uS7IPWsj3jvKP1sRr4suIzIv87PmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:b7:5a:b7:71:41:b1:d5:1a:91:f2:41:bc:7c:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Validity
Not Before: Mar 2 11:01:21 2026 GMT
Not After : Mar 3 11:01:21 2026 GMT
Subject: CN=8cc082b8016213cfc6582d1f0a0831a5c4e050f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:10:86:85:d7:32:87:c4:e5:2b:eb:a7:53:33:
6a:f1:f4:5d:54:6d:cf:50:50:56:40:df:6e:19:71:
ff:03:d2:fe:11:e7:ba:6a:75:9d:12:d6:99:68:70:
a1:2b:62:36:3a:d1:6f:56:ff:a4:3a:85:86:ba:0b:
c5:a4:f5:08:29:67:90:de:89:73:21:05:9b:35:63:
48:6c:87:4a:b1:68:8d:6d:31:11:02:21:02:8c:0f:
de:c0:50:29:c1:06:86:0c:42:d0:c0:ed:9e:31:be:
bc:08:70:81:b5:47:c1:f1:70:35:c0:c6:e7:f7:f7:
9a:59:64:a7:0e:00:74:c1:e4:53:d7:c9:68:ca:38:
35:b6:13:bc:8c:b6:99:c2:25:db:6b:31:21:58:7d:
92:bc:18:cb:5d:a9:51:b0:2e:84:96:69:48:19:4a:
a8:6f:8f:f5:b4:c7:26:fa:41:b8:ac:c8:ff:07:69:
cb:25:7a:e0:e1:03:89:82:34:bc:9f:20:73:a2:ea:
6d:a7:b6:c6:d5:0b:c9:19:f8:e1:61:16:8c:02:66:
6e:0a:2e:34:ad:f7:ca:31:83:e8:a7:74:b0:cc:9e:
3f:5b:d1:d8:46:6b:19:74:36:87:33:4e:6c:86:fd:
75:2e:64:63:b9:a6:88:35:a5:5b:94:16:77:6a:1e:
ec:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C0:82:B8:01:62:13:CF:C6:58:2D:1F:0A:08:31:A5:C4:E0:50:F9
X509v3 Authority Key Identifier:
keyid:FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:e9:7e:68:55:e9:b4:8e:d7:e8:00:66:41:dd:41:92:69:ff:
b0:fb:0f:13:9d:34:94:1b:7f:6e:e6:30:82:bc:dc:ff:03:bb:
81:8c:63:27:bb:48:79:f8:26:4e:c7:83:5f:56:9b:2d:7e:43:
4a:c7:c6:a7:87:7f:96:f4:c1:88:42:72:c2:d3:e2:19:18:15:
cc:83:ab:dd:98:74:da:13:31:aa:ef:51:37:44:8d:df:e7:e4:
a5:b3:f0:ea:05:6d:41:8b:ee:67:fe:46:35:54:dc:f0:06:01:
7a:63:63:57:ca:3b:31:e2:9e:72:98:c4:16:d4:ca:9c:8f:2c:
da:6b:6b:3c:5f:14:e7:bd:69:4d:f8:45:18:12:f6:9e:ce:12:
60:76:2f:e2:93:a0:60:a6:4f:10:69:d7:c2:a2:bd:4b:ad:ec:
9f:3c:52:ef:42:53:99:b3:cc:df:8b:ce:21:88:01:3d:ac:a4:
7b:36:a3:ef:a4:ad:c0:85:1e:07:1c:83:16:e6:b1:95:81:3b:
29:5e:f0:5e:d0:c9:f2:f1:ea:c9:aa:44:d0:69:79:38:72:5d:
3b:1b:84:52:96:9f:84:c5:e1:9e:5f:a6:8e:1a:4f:cf:a4:7c:
8d:d0:38:62:d3:a4:ba:e8:24:ac:27:3b:1d:de:c3:36:d2:6a:
c5:7c:bd:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:27:03 2026 by rpki-client