Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
File: HhkRubtcij4eK4pRFl-KcaCSxo0.mft (raw, json)
Hash identifier: lDFjqc74n2Jcxl2EbAkttghfDFIRQLSSZS+EqKvvg1I=
Subject key identifier: 4E:BD:DE:07:5A:43:2B:56:FA:6F:8A:DE:5F:E2:23:36:28:09:AA:70
Authority key identifier: 1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
Certificate issuer: /CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Certificate serial: 019CACB4ACD7B4B2D1BD0B7B9AE21A13BCFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
Manifest number: 13FF
Signing time: Mon 02 Mar 2026 04:00:47 +0000
Manifest this update: Mon 02 Mar 2026 04:00:47 +0000
Manifest next update: Tue 03 Mar 2026 04:00:47 +0000
Files and hashes: 1: HhkRubtcij4eK4pRFl-KcaCSxo0.crl (hash: f9jikQuHOHtOE4aszuX8sOacIKDK7fdxN4IpHfilHlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:ac:d7:b4:b2:d1:bd:0b:7b:9a:e2:1a:13:bc:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Validity
Not Before: Mar 2 04:00:47 2026 GMT
Not After : Mar 3 04:00:47 2026 GMT
Subject: CN=4ebdde075a432b56fa6f8ade5fe223362809aa70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7b:ba:62:5a:68:50:e1:e2:db:30:55:98:db:
02:e7:c7:d8:ce:92:27:8c:53:da:68:a7:14:72:2f:
23:94:29:6a:ad:a4:dc:89:77:87:50:40:87:05:83:
0e:33:a5:ea:da:d4:13:dd:23:19:e9:8a:35:b0:10:
de:57:fe:c2:d8:bc:84:e3:61:22:2b:e5:e0:23:26:
00:a9:38:3f:e1:ed:b3:cf:39:f3:ce:f4:96:38:40:
07:9e:5c:9c:a4:dd:31:2f:3f:f7:3f:9a:39:d3:6c:
40:a1:a3:c0:de:1a:e8:ff:e3:cb:cd:6d:26:39:4c:
af:61:c6:f1:b4:fe:15:76:6d:94:c8:31:43:75:31:
82:ff:66:a6:83:33:9a:fe:d8:0e:53:b1:7b:7d:ca:
2e:de:dc:a5:7b:60:28:2f:d9:df:42:58:2f:15:ad:
e4:7f:c4:68:f9:06:d6:f9:09:39:99:a8:3d:c8:79:
48:7f:0f:8a:29:3c:39:a8:26:cb:5d:72:99:bf:5c:
8d:0f:cd:37:b7:0c:4d:ff:54:1a:50:e9:6d:6a:ed:
c2:ba:22:2c:9a:9a:72:87:1e:55:61:30:c6:23:8d:
b0:f5:1d:8c:b0:7d:d6:8e:db:89:4c:f7:d6:cb:a0:
2c:dd:7e:27:5d:a9:f1:45:4d:ca:98:c5:6e:51:75:
e7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:BD:DE:07:5A:43:2B:56:FA:6F:8A:DE:5F:E2:23:36:28:09:AA:70
X509v3 Authority Key Identifier:
keyid:1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e4:b7:96:ba:d7:5a:a7:d4:11:db:0b:90:5a:db:d3:2c:e7:
00:00:1d:bf:a1:14:24:7a:1e:22:37:67:eb:4f:8c:96:f2:6b:
04:c4:5f:e7:95:36:54:fe:42:65:21:b1:33:e0:9a:ff:d2:cd:
6c:35:ff:1a:dd:0e:d0:b2:7a:a8:75:ce:fd:9c:6f:04:64:6f:
41:4a:2a:a1:7b:c6:52:4c:3a:a6:cb:b3:ed:7a:31:5e:8c:cb:
69:10:7c:6f:98:b2:44:bf:c3:97:2b:36:00:56:b6:a8:9c:11:
a0:ef:8f:11:93:14:56:2a:fe:50:5d:b7:30:ad:04:df:ee:9c:
35:3b:af:16:8f:ac:21:db:3f:24:b7:65:55:7c:e0:31:e8:75:
44:77:52:8a:09:b7:e1:a9:69:04:52:ce:a7:61:dc:ee:63:82:
25:ba:2e:f7:f3:cb:ad:44:5d:b0:3f:a8:53:00:01:de:69:58:
9a:5d:14:84:82:09:7e:b0:04:57:1b:60:46:c4:1c:50:fc:3c:
ae:92:e5:fd:1c:27:ea:06:42:03:52:9b:65:9f:f3:c5:1d:8a:
3b:a4:37:86:19:56:d1:51:33:18:a6:09:20:9f:31:46:62:75:
39:ef:bc:ce:24:90:1d:19:21:af:2a:7b:30:a8:3f:a5:d6:75:
c8:89:42:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:41:19 2026 by rpki-client