Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: /648TIYb9ToqpGvgUeAMizr7CzSkh8GhK4+CMFjsTTo=
Subject key identifier: EF:F6:48:36:B1:84:C9:74:45:83:FE:6F:63:64:78:65:FD:CB:09:02
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 019CAAC6FF1D9D5AF836E305B9BAD7873BD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 19:01:33 +0000
Manifest this update: Sun 01 Mar 2026 19:01:33 +0000
Manifest next update: Mon 02 Mar 2026 19:01:33 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: Qe5qXHNscd+qHsgnRlkna5ZgyvBYyA3vZ45egrs5Kmw=)
2: z_fYCrrGSV54cj1knb3xBk4SK5U.roa (hash: EFlql6uKuI4YQL66OtBnNw+c0chssYW8DVC7ieJRlbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:ff:1d:9d:5a:f8:36:e3:05:b9:ba:d7:87:3b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Mar 1 19:01:33 2026 GMT
Not After : Mar 2 19:01:33 2026 GMT
Subject: CN=eff64836b184c9744583fe6f63647865fdcb0902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ca:33:4a:54:94:09:a8:b6:6f:1b:c2:65:a5:
9e:c0:eb:08:38:62:1e:6b:a0:64:89:e3:53:3f:b2:
64:65:0a:35:fe:74:18:12:8f:b4:2a:03:56:b1:ec:
86:e3:08:4b:66:7a:a5:90:10:ae:c4:4c:e0:41:59:
b1:33:20:70:48:6c:3b:59:3c:9f:14:96:1e:a5:4c:
06:f3:62:f0:39:e8:a6:b7:f6:b4:13:9c:04:40:e5:
f3:f4:dd:c4:f7:28:ec:a5:1a:7f:7c:64:c4:d3:1e:
ca:ae:a4:bb:4d:b8:9a:29:d7:0f:3a:f9:5e:9e:13:
bf:54:80:f8:57:a6:37:85:e9:74:a2:c4:20:52:5c:
17:bb:28:3b:a3:3f:9f:21:44:a2:e6:59:d9:14:08:
ca:ff:81:c6:50:ea:05:37:54:f7:60:03:58:ed:74:
a9:d1:e2:ae:0b:3d:80:cd:0b:7a:9a:f4:93:9a:ad:
03:a7:ac:6e:03:bc:4f:8e:93:6c:b5:09:5e:84:26:
f8:91:68:8f:86:ec:ab:7a:cc:f7:59:06:aa:9a:2d:
78:04:93:f4:ca:27:91:fe:52:d5:4a:4f:53:12:a2:
11:58:66:8d:8b:68:dc:c0:d5:61:b5:ef:59:24:4d:
92:fe:27:9c:c0:f0:99:8d:31:45:01:89:5a:44:3d:
08:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F6:48:36:B1:84:C9:74:45:83:FE:6F:63:64:78:65:FD:CB:09:02
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:d2:0b:ab:92:3b:18:40:47:1b:c8:ef:ad:1a:9f:78:11:a9:
ac:80:93:ee:d1:0e:a0:3d:cf:c4:e5:76:eb:a7:90:28:7a:59:
7b:c7:6a:97:ee:77:dd:68:87:1e:cd:fb:e1:2e:ad:ab:56:8f:
d6:73:85:41:24:f0:a3:fc:17:70:80:42:52:a0:cf:71:0e:2a:
ae:04:1c:2e:92:3d:82:36:4d:82:2f:30:e9:6d:08:78:55:89:
e7:e2:68:7c:87:92:88:7e:b2:64:8a:20:28:19:0f:d5:98:16:
ab:5d:5b:0f:5b:68:a3:14:98:9d:40:d6:ad:e5:5e:20:05:df:
e4:d9:6e:c9:8a:2b:08:40:0a:d2:70:2a:0e:02:db:54:93:f8:
cb:ae:20:fc:6d:88:7a:4f:18:bc:7f:ef:4a:6b:e8:fa:46:bc:
1b:ec:09:dd:7f:7b:ef:11:55:80:11:f6:34:28:69:c1:b5:3a:
c2:93:46:01:38:77:be:17:17:78:92:55:85:51:66:09:7f:9f:
8d:58:f0:26:10:54:00:7d:45:6b:3f:66:9f:86:c6:85:31:28:
1d:58:29:14:de:e0:07:49:7d:f8:99:ce:47:15:50:19:e9:10:
04:60:8b:19:27:11:f5:86:e4:4b:b2:35:81:f3:b3:db:73:c5:
7a:0b:0d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:55:43 2026 by rpki-client