Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
File: h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft (raw, json)
Hash identifier: cS10eDENMiHYeLx+VUCpOY84WIN+s85LOE2ivsaJZb0=
Subject key identifier: 4F:A2:1D:34:A5:48:E3:9A:C9:3D:DA:1C:03:75:4D:6D:01:51:E0:25
Authority key identifier: 87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
Certificate issuer: /CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Certificate serial: 019CAC470D1419A12F63ECFC321B08F0EC22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
Manifest number: 0C1A
Signing time: Mon 02 Mar 2026 02:01:03 +0000
Manifest this update: Mon 02 Mar 2026 02:01:03 +0000
Manifest next update: Tue 03 Mar 2026 02:01:03 +0000
Files and hashes: 1: h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl (hash: 7tMwc8GssjmsxeEi5YPtZrlhfwsZxU7DQ/k45YM7tO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:0d:14:19:a1:2f:63:ec:fc:32:1b:08:f0:ec:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Validity
Not Before: Mar 2 02:01:03 2026 GMT
Not After : Mar 3 02:01:03 2026 GMT
Subject: CN=4fa21d34a548e39ac93dda1c03754d6d0151e025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f1:44:d2:4f:ae:47:9f:1e:88:a9:1b:b4:b8:
b3:ec:7c:56:57:7e:43:bc:47:77:35:1f:e1:74:b4:
11:64:f4:20:8f:36:e1:b8:7f:0b:eb:cf:09:11:91:
dd:4d:10:a7:d2:f6:08:1d:68:c4:03:36:79:95:2b:
df:d8:b2:60:17:b5:e6:39:d2:12:c0:2f:0c:c7:a9:
15:3d:39:eb:48:01:f1:1e:ec:a4:38:67:6b:49:7b:
be:f2:66:2d:73:a3:2b:32:27:69:a4:68:b5:d7:f4:
93:e0:11:23:3d:85:f0:6c:0d:7d:67:05:47:09:34:
06:62:4b:b7:12:8a:bf:cc:30:7d:c6:8e:e4:4d:f3:
a5:23:75:df:72:21:80:6f:a1:ed:93:7b:a6:20:1d:
b0:f3:75:74:40:55:73:a8:58:ef:7b:be:56:e5:82:
0c:74:39:f7:8c:5c:33:de:2f:f3:b4:70:50:01:be:
c2:f5:0f:17:2b:22:fa:82:6a:3e:86:23:4e:b1:a2:
1d:7d:e1:20:e3:94:bc:22:e0:67:03:aa:62:3e:b1:
bb:e5:59:f1:5a:80:b6:80:17:3c:ac:cc:dd:c1:70:
99:40:5f:20:29:00:52:a0:65:7e:e9:ce:af:84:d1:
71:aa:3d:fd:f9:ff:9f:c3:42:d8:88:c2:cc:4d:85:
14:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A2:1D:34:A5:48:E3:9A:C9:3D:DA:1C:03:75:4D:6D:01:51:E0:25
X509v3 Authority Key Identifier:
keyid:87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:1d:24:a8:64:a3:fe:f8:fd:90:08:2b:2e:db:11:6d:ad:ce:
72:c9:9e:9b:19:05:0b:60:be:4c:53:4c:46:ef:75:52:14:13:
53:5a:11:15:65:2e:52:0c:1d:ac:02:d3:30:a4:5f:62:1a:41:
8b:f1:b4:7b:f9:d5:e7:0c:5d:13:40:4d:44:21:f0:66:18:70:
69:7f:85:14:c4:34:59:65:5b:c5:8a:e5:c2:fc:74:70:66:bd:
76:02:23:35:2c:f6:0c:1b:39:72:65:a1:cb:b9:57:36:09:ba:
40:94:43:ef:6b:0d:76:9d:30:41:6d:62:5c:a7:3d:c2:62:55:
e3:d9:57:6c:17:76:7d:90:ac:44:80:f4:b2:e5:93:a7:0a:49:
ec:05:95:4d:8a:d8:71:ff:1b:78:eb:35:02:81:d9:ed:81:73:
a6:0e:42:7c:c0:00:30:54:9f:11:1e:b2:f5:cc:7f:41:c5:73:
5e:6b:2e:68:27:77:dc:ef:8c:4c:bb:83:55:c9:06:a1:ef:34:
a9:f4:59:20:90:da:13:c0:a9:16:ec:5f:01:5a:66:66:a8:d8:
65:e9:64:2e:71:41:bb:32:83:b6:7d:0d:a9:e2:5b:c2:f9:31:
9d:88:68:ef:34:06:61:f0:47:19:bd:cd:d1:05:43:ca:70:07:
ed:db:f9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:43:29 2026 by rpki-client