Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: rufq8O35fbRkwT5v8YeEyyqdVL2yOJ/OeX6GHb3B8rM=
Subject key identifier: B6:E8:11:F8:A5:E3:14:05:AD:18:18:83:8B:6A:A5:BB:FB:35:DF:B9
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 019CAE35BD2103DD8A346C1C9927754EF949
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 0C30
Signing time: Mon 02 Mar 2026 11:01:23 +0000
Manifest this update: Mon 02 Mar 2026 11:01:23 +0000
Manifest next update: Tue 03 Mar 2026 11:01:23 +0000
Files and hashes: 1: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: WuLCV/TypuWyJJurBdFWqApX93zfMB0zlNp/BLhE1/k=)
2: kGQeneiJZNT_BjB_XoReSyXguQ8.roa (hash: yt9dzzQfHrZsnLkuZ9r3U4v8elv0IkIyoER8sIW2HPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:bd:21:03:dd:8a:34:6c:1c:99:27:75:4e:f9:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: Mar 2 11:01:23 2026 GMT
Not After : Mar 3 11:01:23 2026 GMT
Subject: CN=b6e811f8a5e31405ad1818838b6aa5bbfb35dfb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:46:be:4b:aa:c7:11:c1:4e:52:a5:78:01:1f:
1e:37:c0:b2:6b:8e:d4:bd:0b:8d:0c:2c:d4:58:59:
a5:f6:6b:e4:0c:c1:3a:1a:e4:8d:8f:42:b7:e1:0e:
fa:ba:05:4b:2e:cd:83:15:b7:5f:d2:a3:9b:08:98:
2e:7b:08:d7:f7:4f:2d:5a:f4:6e:72:00:3b:0a:d9:
06:aa:4e:f0:70:ff:93:5d:26:47:c0:ac:14:b1:cf:
84:97:d4:fc:3e:52:af:70:06:f6:4e:80:9c:8e:67:
76:bf:52:5a:ee:56:fc:9b:5c:3c:39:c6:a6:c0:cb:
46:04:42:52:fa:07:be:89:b2:ac:30:e0:99:64:70:
22:da:65:14:4d:f6:8a:32:a4:83:94:e5:f9:df:89:
ad:6e:d7:bb:12:cc:d4:00:33:d5:49:c7:c1:0f:2f:
a5:1d:a9:4d:a2:9a:f1:50:2f:bb:9c:67:37:00:c5:
57:9b:68:ac:a1:3d:d1:9c:1f:76:3e:1e:f4:ba:b2:
bc:9d:75:b5:4b:9c:9a:cd:bc:f1:a9:89:bf:0c:8d:
f6:e2:07:d5:dc:a3:13:0d:6b:48:4e:8e:79:e8:cf:
f1:08:1d:c0:43:e6:a4:a1:86:86:c6:aa:b6:08:7d:
b2:8a:68:10:0d:db:b1:75:23:e4:55:84:7a:00:79:
a5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E8:11:F8:A5:E3:14:05:AD:18:18:83:8B:6A:A5:BB:FB:35:DF:B9
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:37:25:ed:81:59:9a:a5:38:97:db:52:81:1f:8d:84:9f:50:
57:32:ae:6d:dc:7d:57:e3:e1:9e:b8:3a:25:93:25:b7:d1:2c:
a9:f5:d9:a6:56:b5:12:9c:d4:de:94:9e:2a:62:dd:8b:c4:6c:
05:ac:86:92:1d:0c:4f:fc:0d:ba:bd:5b:18:6a:00:05:3d:73:
4a:16:b1:76:10:a3:8f:02:db:3d:3e:11:d2:f9:37:69:59:c7:
2d:25:65:85:16:19:8f:79:1c:0c:76:1c:dc:c2:7f:f8:95:ce:
6c:6a:99:d7:7a:de:d1:a7:ba:ee:9d:1b:38:df:89:45:ab:ba:
bf:98:99:29:ae:9d:01:53:15:89:f7:ec:53:87:d3:24:86:39:
e6:33:c5:32:05:91:64:d0:57:06:cd:67:7b:b6:6a:15:04:22:
9f:b9:70:23:49:54:16:d5:31:d1:10:cf:94:f1:80:4f:8a:0a:
e8:65:c3:35:c3:04:26:65:db:59:71:2e:26:a9:a4:27:a2:8e:
28:ef:06:14:41:2b:95:3f:80:6f:0b:9e:93:67:47:2e:86:c0:
f2:65:5f:59:fb:a3:a7:09:75:65:a9:66:0c:ff:2b:20:94:90:
a3:f6:8c:80:fb:f9:8e:05:2b:d5:6e:a8:3e:f3:be:b9:2f:90:
34:1a:24:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:14:14 2026 by rpki-client