Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
File: _hEX6Xaz4zlTuTYbtLseui9Ane0.mft (raw, json)
Hash identifier: /o3EUrCPagicIR65swhHi5n+GCh1V7ZsCyrB4in4+FM=
Subject key identifier: E8:68:A6:CB:18:CC:AA:EF:84:C9:39:34:FE:89:F3:F1:7F:35:7D:F2
Authority key identifier: FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
Certificate issuer: /CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Certificate serial: 019D99D0392D449F167AFE74BD55885A1128
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
Manifest number: 09DE
Signing time: Fri 17 Apr 2026 05:00:53 +0000
Manifest this update: Fri 17 Apr 2026 05:00:53 +0000
Manifest next update: Sat 18 Apr 2026 05:00:53 +0000
Files and hashes: 1: _hEX6Xaz4zlTuTYbtLseui9Ane0.crl (hash: seTAZJ5Fx2Rph7PuF75RiP8NQg+moCHRGaWbgrwJTTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:39:2d:44:9f:16:7a:fe:74:bd:55:88:5a:11:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Validity
Not Before: Apr 17 05:00:53 2026 GMT
Not After : Apr 18 05:00:53 2026 GMT
Subject: CN=e868a6cb18ccaaef84c93934fe89f3f17f357df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:76:4d:1e:03:c2:0d:d5:a0:da:2d:08:7d:87:
05:c6:31:24:b3:e0:c3:39:89:d5:da:65:71:ba:52:
57:0f:d2:6e:c4:5f:f3:24:a3:cf:b3:07:87:95:76:
f3:bf:f0:19:3b:11:e0:1d:30:60:d7:23:d9:9f:b1:
c1:b2:ea:27:67:bc:3b:97:20:2c:80:3e:fd:0e:84:
6b:24:aa:c7:4a:61:f2:0d:cc:c5:24:a0:29:98:8a:
a6:59:d9:55:ad:ee:24:49:25:b0:3e:14:98:28:ef:
b5:db:0e:aa:6c:42:69:3e:39:48:6d:86:3e:aa:89:
38:f1:3c:d0:ce:70:fd:47:16:4c:28:67:5e:2c:a8:
3e:49:58:de:d4:98:d5:b2:03:16:3f:52:69:ad:d2:
2c:ed:ba:c0:fb:4c:71:de:25:89:5f:43:f5:44:60:
f6:4d:58:2d:33:59:82:24:66:27:a3:c8:c9:32:e2:
09:45:91:fd:09:79:42:40:c4:ac:10:b2:35:e0:7d:
4b:4c:93:1a:ba:71:ad:0e:00:14:bd:96:5a:11:a7:
8d:1b:94:fd:46:03:ed:0d:7a:e0:31:69:e9:e4:6b:
1c:e7:1d:8c:ca:f7:e8:0c:30:4f:ee:49:da:c1:ca:
f0:2b:78:da:41:60:78:d9:e9:c3:b7:8d:7d:9a:b1:
bb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:68:A6:CB:18:CC:AA:EF:84:C9:39:34:FE:89:F3:F1:7F:35:7D:F2
X509v3 Authority Key Identifier:
keyid:FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:47:3c:82:18:f5:63:9f:e6:35:46:d8:df:e9:b1:1a:0c:0b:
2f:84:86:62:95:5e:17:5a:fd:a1:5e:c9:94:a4:da:a1:d8:56:
67:36:f6:ed:0f:e8:3e:fa:ff:54:3d:40:d5:66:6c:d8:8b:8b:
83:3d:d1:de:4f:a0:44:bb:fd:7b:b6:c3:ed:1c:0a:77:bc:ed:
d5:84:36:f6:58:19:72:bd:07:ac:4c:31:87:40:3d:c0:b3:99:
a3:42:3d:fa:47:dd:c7:f7:4f:35:d3:00:d9:80:5e:26:2b:cf:
93:a2:56:2a:8f:70:70:0c:66:32:ab:93:2c:a4:a1:39:9e:94:
c4:34:30:83:fc:d0:20:22:78:e7:fa:73:87:a8:d5:68:f6:63:
b1:54:5e:a1:1e:18:3c:09:a8:00:c0:ab:99:af:c8:91:2a:7b:
19:0a:02:50:64:c6:8f:c7:03:3d:54:cf:08:7e:2d:a2:91:b6:
35:06:57:ff:52:30:35:0c:33:70:38:24:56:40:4b:f2:a0:68:
56:e6:f9:26:ce:03:93:64:a9:0e:5f:cf:97:f3:a5:fd:ba:64:
6a:69:52:13:20:c5:08:a7:d9:82:fc:5d:d7:e0:57:78:6c:4f:
82:db:f5:72:e5:a6:f1:6c:f0:1a:b1:5e:83:69:54:3c:95:ea:
56:e2:9c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:42:47 2026 by rpki-client