Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
File: hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft (raw, json)
Hash identifier: esiHhMLglz1DkVpoCfMA6pV5/RvN61X0tDb+NX1rL40=
Subject key identifier: 5C:36:5E:4E:71:91:54:A4:C3:73:2A:C3:32:33:A5:E9:A6:38:D8:5E
Authority key identifier: 84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
Certificate issuer: /CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Certificate serial: 019CAB6AD2D64FFD600C51460589961C7CF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
Manifest number: 0B2B
Signing time: Sun 01 Mar 2026 22:00:30 +0000
Manifest this update: Sun 01 Mar 2026 22:00:30 +0000
Manifest next update: Mon 02 Mar 2026 22:00:30 +0000
Files and hashes: 1: hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl (hash: nC6N7LVT+8+cPov2JhnaSiiYnwyU2fA+QSPyYIQrrDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:d2:d6:4f:fd:60:0c:51:46:05:89:96:1c:7c:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Validity
Not Before: Mar 1 22:00:30 2026 GMT
Not After : Mar 2 22:00:30 2026 GMT
Subject: CN=5c365e4e719154a4c3732ac33233a5e9a638d85e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b7:b0:6a:7e:62:ae:1b:a4:d4:7a:5f:94:0a:
fa:e5:73:35:14:08:9c:4d:10:5f:32:a4:93:1f:35:
35:3b:3c:cb:28:e5:73:6f:04:8f:5b:99:e8:31:5d:
8b:20:ab:60:34:88:d0:9e:f7:31:e3:28:ed:29:75:
26:1e:3a:01:d8:b0:97:68:72:14:20:44:c6:81:38:
d5:9d:1b:9b:d8:ac:17:96:8e:26:08:a2:52:9d:66:
af:90:e2:77:de:73:84:68:38:cf:1d:f6:31:9b:8f:
8e:8c:f0:2b:60:d9:4a:10:74:a9:73:02:a7:06:9e:
2b:16:96:2e:28:b0:68:4c:41:53:5d:be:89:31:a5:
7c:35:7c:08:c8:02:39:32:4f:84:81:5c:61:a3:7e:
d1:bc:e3:88:52:63:b4:e2:6d:14:fe:8f:39:ee:fa:
e2:f7:80:fd:51:ad:af:59:88:22:a9:8c:5f:19:59:
58:13:73:d4:2e:07:60:48:a3:62:84:db:2e:98:9a:
7f:fc:fc:17:b2:f5:92:72:4e:11:ae:40:94:f2:ea:
69:5c:df:18:b2:16:a2:cb:c3:11:91:08:ea:dd:0e:
e6:1d:76:af:47:7b:84:e8:8f:b9:42:18:50:3b:72:
41:8e:b0:d1:d6:18:bb:ce:14:5e:94:04:b6:9d:45:
43:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:36:5E:4E:71:91:54:A4:C3:73:2A:C3:32:33:A5:E9:A6:38:D8:5E
X509v3 Authority Key Identifier:
keyid:84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:95:36:83:ba:b2:0c:60:2f:80:c0:36:f5:27:19:0e:7d:1e:
65:50:c0:16:97:33:d2:ae:46:b3:27:32:90:4f:56:74:0a:b0:
88:23:a1:c1:0a:4c:95:82:3e:a9:dd:ef:ca:7d:84:6b:e8:2f:
83:db:a8:d0:ed:a6:89:39:77:82:d7:8c:32:74:9b:2e:c4:81:
b3:7c:8d:ba:3d:ed:38:9f:33:24:e8:9b:60:b9:e7:bf:17:dd:
36:65:62:be:10:ae:7c:cb:62:c1:4e:b0:1a:9e:2c:19:12:ea:
ea:55:a3:06:c0:ea:83:62:b5:c9:0d:89:98:6e:ce:3d:51:9d:
95:c2:7e:51:e4:b9:c5:4a:0c:b8:85:1c:57:a2:22:52:49:fa:
08:e3:05:a0:0c:72:ea:e1:46:3f:a6:fc:b5:e4:ee:9c:0a:3d:
97:6d:b3:74:d2:47:03:34:31:30:bc:4b:a3:16:14:a2:95:ee:
10:19:71:d4:57:ff:f1:0b:7e:ea:a5:b4:67:bc:0e:97:eb:c3:
80:4d:37:2b:e1:54:bb:e8:f8:49:be:c5:a4:03:39:de:2f:e6:
87:25:ac:d4:c7:a3:1f:19:2a:57:8e:72:6e:cc:3b:da:f3:10:
3e:16:3f:e1:ef:a3:1e:2b:cc:ce:8a:f4:14:03:6d:87:82:00:
1e:6a:76:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:04:05 2026 by rpki-client