Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
File: HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json)
Hash identifier: LC20UMowGPZpgXXN1raVXL172MsXlBrTOYyOdqMsEvU=
Subject key identifier: E8:A2:F0:DD:4B:72:8B:FC:5C:5E:72:1A:DD:65:E8:6E:B9:2D:A1:21
Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
Certificate issuer: /CN=1c24f1caafb3208eb827a07826417bcb9493412f
Certificate serial: 019CABA1B4FED2CD36407B6F221034BEBABC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
Manifest number: 07BC
Signing time: Sun 01 Mar 2026 23:00:27 +0000
Manifest this update: Sun 01 Mar 2026 23:00:27 +0000
Manifest next update: Mon 02 Mar 2026 23:00:27 +0000
Files and hashes: 1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: L4rBBeakPraX3Nw6PJ/EEBgSP80FVFn/YZ4KGo9NTIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:b4:fe:d2:cd:36:40:7b:6f:22:10:34:be:ba:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f
Validity
Not Before: Mar 1 23:00:27 2026 GMT
Not After : Mar 2 23:00:27 2026 GMT
Subject: CN=e8a2f0dd4b728bfc5c5e721add65e86eb92da121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a4:57:09:99:ec:b3:08:b9:76:22:74:df:ff:
c8:a2:3f:ce:9a:04:4c:f4:96:34:5f:55:24:a3:9f:
6b:ce:f5:28:bc:e7:10:47:c5:0d:3d:2a:39:17:b1:
ff:f9:fd:18:ed:15:fb:ca:e1:b8:19:0e:43:a3:af:
95:58:9e:4e:3c:57:ac:21:e3:06:46:21:33:06:fc:
ee:ca:76:28:77:63:a6:04:b0:b0:38:af:28:ed:a5:
11:7d:93:31:90:11:2d:b0:df:82:0f:94:c4:0e:a0:
7d:0e:7d:27:84:79:08:49:ed:ab:7d:7d:16:0f:66:
42:97:d3:a6:b6:91:1a:dc:6a:9a:6e:84:20:f7:ca:
e3:b1:4c:4d:58:30:b3:52:5c:8e:85:4a:13:17:48:
6b:19:69:76:36:d6:d3:25:e6:10:1c:4b:9c:b7:63:
ed:8d:70:da:fa:0c:6f:24:91:40:fb:ec:6c:a5:85:
c2:b6:32:ea:5e:cd:6f:8d:92:87:b4:57:6f:e7:48:
0c:37:24:a3:ee:d1:16:22:4f:98:05:03:70:2e:85:
bd:38:0b:0d:e6:1d:1e:07:15:8a:54:1b:da:01:6f:
14:8a:b0:0f:70:93:b0:90:64:44:15:e1:b9:d7:04:
52:4d:97:5c:5e:6e:cc:8d:5d:48:04:cc:91:4a:33:
48:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A2:F0:DD:4B:72:8B:FC:5C:5E:72:1A:DD:65:E8:6E:B9:2D:A1:21
X509v3 Authority Key Identifier:
keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:01:de:7a:fd:1f:c2:67:fe:24:a8:37:fb:7d:56:1a:b9:38:
2f:84:e3:8c:52:43:8d:0f:3f:4c:0a:6a:af:ac:fe:4c:ac:b3:
62:a2:2a:5a:d8:9d:c4:f8:24:89:86:34:0a:b3:4d:c4:ff:a2:
6b:09:2c:41:a5:bd:43:9c:53:18:f1:16:fe:84:ae:27:e3:2d:
e5:01:0f:03:7d:25:6d:68:8b:bc:f6:fb:1c:98:e7:ea:74:30:
d6:8b:eb:ea:f4:12:01:f9:cd:5b:85:bd:c3:1e:ff:02:4a:84:
84:cd:05:24:6d:cd:ac:b5:9d:9e:d6:96:6b:c4:03:96:1c:b9:
45:67:71:5f:00:2c:62:b9:3c:82:4c:52:23:7f:73:c8:ca:2e:
9d:aa:a7:ca:82:59:26:3d:a3:2a:c4:35:0b:10:9f:79:af:82:
c4:ec:d9:1d:34:2c:15:d6:3e:22:2e:d9:88:98:cb:99:e2:d0:
3c:68:e0:ac:79:28:a4:f6:6f:80:61:c6:e0:01:5d:29:66:99:
88:63:84:5a:ca:0e:ea:0a:e3:82:7d:b4:b3:17:f7:ae:ba:3a:
a5:f8:84:77:be:89:58:5f:87:56:3f:13:1f:b8:62:2d:59:13:
3e:bd:6c:e8:b9:c8:ad:a2:68:90:01:b1:d6:50:29:f7:8b:47:
6e:8f:01:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:08:07 2026 by rpki-client