Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
File: hUxfKY2BrMVXP9WfsF3YbyCry6g.mft (raw, json)
Hash identifier: vtv+d34XHpSpY33WM5M7SOnDYuXYWBn5l6KWpHnJPX0=
Subject key identifier: 4F:CA:13:84:47:77:80:E7:9B:95:96:02:96:18:9D:2D:01:3F:D3:5D
Authority key identifier: 85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
Certificate issuer: /CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Certificate serial: 019CAC0FC55915FB77D5E3AE770487F39C57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
Manifest number: 12C6
Signing time: Mon 02 Mar 2026 01:00:40 +0000
Manifest this update: Mon 02 Mar 2026 01:00:40 +0000
Manifest next update: Tue 03 Mar 2026 01:00:40 +0000
Files and hashes: 1: KDlCkTZJ_trioChGEq3qqR2sW-g.roa (hash: jNNvN3keVzRoRmynZdoMPevs+yPDhsuaoYcA8SI2cJs=)
2: hUxfKY2BrMVXP9WfsF3YbyCry6g.crl (hash: Z4RtODNiJ6iovkaEjHPPvTJ3AL+emltL0Drn/sQ26sA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:c5:59:15:fb:77:d5:e3:ae:77:04:87:f3:9c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Validity
Not Before: Mar 2 01:00:40 2026 GMT
Not After : Mar 3 01:00:40 2026 GMT
Subject: CN=4fca1384477780e79b95960296189d2d013fd35d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2e:14:25:2b:d4:fe:40:32:7d:e9:7a:e4:33:
0d:ed:5a:dd:d9:c2:64:da:5c:0f:05:d7:ad:ca:d9:
8d:e1:72:ce:8a:de:71:d7:fa:49:d1:53:0a:33:76:
76:ab:59:e8:1e:48:cb:ce:7f:c4:74:a3:4b:fa:55:
a0:9d:0a:75:f1:72:a4:a9:00:33:26:d8:58:8d:52:
0a:98:9a:53:5b:e5:bd:91:e1:e7:a6:57:da:6a:27:
d9:5b:09:4a:62:b3:68:f3:e5:ca:e8:38:a6:e7:ef:
3a:5a:13:45:96:6d:15:2a:5f:ab:a5:f7:61:a4:e1:
7e:32:64:68:25:19:fa:9f:35:6d:6d:2c:2c:34:fc:
b6:10:5f:7b:f8:54:91:fe:5e:f6:fb:b6:92:13:1d:
71:50:95:19:a8:16:c5:b0:44:73:5b:eb:07:c4:77:
16:35:d8:96:d1:e2:58:44:df:bb:9e:76:f2:32:f5:
0c:0f:f5:f5:f7:02:6e:df:c8:d4:f3:0e:91:2c:3d:
ca:44:f7:3f:c0:5e:e4:a8:83:f7:8f:d1:9f:89:57:
8b:bf:51:bf:b7:41:f3:e7:33:cc:75:92:fe:14:4b:
e4:15:8e:c6:90:d7:f6:5f:d8:f1:18:65:9c:5e:59:
2c:d4:e7:8f:75:9e:f0:de:8f:ea:61:17:a3:54:10:
e0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CA:13:84:47:77:80:E7:9B:95:96:02:96:18:9D:2D:01:3F:D3:5D
X509v3 Authority Key Identifier:
keyid:85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:f1:97:ae:13:08:b4:ab:ad:cc:aa:8e:8a:f4:65:79:f6:f0:
37:1e:57:38:d5:b5:43:9a:c9:2d:83:4c:b9:ad:6b:49:ea:1a:
65:49:04:64:33:0e:b9:4d:f5:68:e8:3e:8c:c1:ff:52:4a:e4:
b3:1c:af:d5:8f:de:36:53:d9:6c:29:ea:c2:55:8c:ae:7a:75:
db:f5:10:63:91:76:3b:f8:97:6c:b7:5b:8a:54:f5:9e:e3:11:
4a:89:c5:96:90:90:26:2e:f9:55:77:77:fa:40:cc:88:f8:71:
52:d5:9b:4e:55:26:6f:99:2d:21:81:05:df:9e:4a:25:77:76:
18:e5:01:68:5e:65:76:fd:3c:0e:80:00:17:a4:7b:81:68:b4:
c1:d5:05:17:2d:98:9a:ef:4d:83:f5:80:83:53:c6:a8:e4:92:
b1:a5:5b:f9:99:f3:a4:cf:80:8d:13:1a:7c:25:bc:b5:35:e3:
4f:e3:ca:5b:17:31:0b:44:6e:d2:d9:c8:aa:11:80:4b:e0:08:
31:cf:87:a7:62:ce:23:e7:52:03:58:e7:11:aa:4c:76:49:9a:
04:12:9d:f8:05:07:ed:51:4e:ca:9a:98:6b:97:7f:e6:39:bf:
aa:9b:b9:17:e9:78:9b:ab:91:d6:c5:b8:2d:ee:1a:1e:49:c9:
bf:1c:f1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:08:02 2026 by rpki-client