Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
File: hYPpE4a3wAKken-k97f9Nf-eTgo.mft (raw, json)
Hash identifier: 6S2QhyDvfVR5giAWz8JNKv9OTKSF4lv372bGWMKRf4k=
Subject key identifier: 24:15:87:39:C8:7A:55:B2:04:AF:0C:F1:49:0E:3A:BE:B7:51:43:13
Authority key identifier: 85:83:E9:13:86:B7:C0:02:A4:7A:7F:A4:F7:B7:FD:35:FF:9E:4E:0A
Certificate issuer: /CN=8583e91386b7c002a47a7fa4f7b7fd35ff9e4e0a
Certificate serial: 019CAED9E08F4031052D5A4A41C3D0845E4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYPpE4a3wAKken-k97f9Nf-eTgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
Manifest number: 07
Signing time: Mon 02 Mar 2026 14:00:40 +0000
Manifest this update: Mon 02 Mar 2026 14:00:40 +0000
Manifest next update: Tue 03 Mar 2026 14:00:40 +0000
Files and hashes: 1: hYPpE4a3wAKken-k97f9Nf-eTgo.crl (hash: wALbKOFfv0U8Mr4FErr9PFTKFPDBR4grsL9TTiP5iF8=)
2: rdpASP2znJQvquGxJOvyDRpnmhU.roa (hash: 2K9g0ofmwtg+0wCGPKVHPvtZQPkH/atZkucjpNuBbHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYPpE4a3wAKken-k97f9Nf-eTgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 14:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:d9:e0:8f:40:31:05:2d:5a:4a:41:c3:d0:84:5e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8583e91386b7c002a47a7fa4f7b7fd35ff9e4e0a
Validity
Not Before: Mar 2 14:00:40 2026 GMT
Not After : Mar 3 14:00:40 2026 GMT
Subject: CN=24158739c87a55b204af0cf1490e3abeb7514313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c8:c6:ee:58:e8:5d:54:26:bb:4b:d6:b7:15:
41:02:38:71:42:ed:17:2e:57:33:62:09:6a:09:1a:
a3:2d:89:45:c0:82:6b:70:7c:eb:60:b3:b8:47:30:
48:b1:5f:af:fd:30:08:1e:e0:ed:a4:55:7a:de:25:
ae:5b:94:7f:46:b3:5a:cd:50:c7:0c:8d:96:94:92:
a0:ad:18:4a:b0:82:e9:a3:48:d4:3e:0c:6e:9d:be:
9b:41:f5:c9:7e:2f:38:7a:0a:c4:fd:81:bf:c8:c8:
a1:0b:07:a9:b3:1d:a7:0e:ba:9f:b4:4b:79:82:6a:
14:82:b3:35:09:bd:b8:df:f9:37:16:81:c7:d8:ed:
9a:6f:84:9f:64:5a:2a:2a:4f:69:0b:55:44:59:56:
c0:44:2c:32:5c:fb:82:fe:46:c2:a8:be:f8:77:c3:
f3:e6:bb:5c:1e:12:db:52:96:ee:e4:72:36:2c:eb:
d6:fb:1f:80:a3:aa:91:50:b5:9a:a0:50:d6:f1:1c:
d7:36:67:8f:53:1e:cf:c4:a5:e8:f9:7c:68:da:ef:
c4:ed:a4:8e:bb:b7:fe:84:4c:9d:a4:a9:af:5e:65:
be:30:e8:4a:b9:65:71:f5:a6:dc:5b:51:d2:a0:2a:
ac:48:c7:04:23:52:83:9a:16:76:06:03:e3:7a:73:
25:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:15:87:39:C8:7A:55:B2:04:AF:0C:F1:49:0E:3A:BE:B7:51:43:13
X509v3 Authority Key Identifier:
keyid:85:83:E9:13:86:B7:C0:02:A4:7A:7F:A4:F7:B7:FD:35:FF:9E:4E:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYPpE4a3wAKken-k97f9Nf-eTgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a6de87-5517-4681-a236-368bc1bf83ea/1/hYPpE4a3wAKken-k97f9Nf-eTgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:dd:f2:fd:7b:da:76:e1:bb:1f:91:70:97:21:ed:5b:e9:e2:
ee:d0:5a:bb:e3:e7:70:70:2c:6e:8a:e8:c5:e9:8b:7a:c4:73:
39:1d:13:88:12:f0:87:b1:ea:34:fc:6f:09:27:fc:35:2f:b9:
3f:ed:43:86:f3:ed:3d:6e:d6:23:ca:dc:2a:f1:2c:3b:49:18:
b8:e4:e0:fc:6e:53:35:4e:59:1a:21:a8:a2:7d:63:1f:a7:d3:
2f:7d:35:b9:ef:ba:0c:4f:d9:e6:f7:01:bd:eb:d3:92:0e:ca:
d0:9e:f7:43:8b:dd:04:a0:01:f7:7f:11:94:d4:81:d2:28:75:
2d:4b:78:5f:d6:e3:8e:f8:f9:a8:e1:a3:f9:5d:27:1e:22:c2:
3e:aa:5c:3a:e7:44:1d:95:c0:ff:37:ca:b0:37:bf:f8:37:b7:
b6:fe:63:50:7c:21:ae:62:2b:ca:15:ec:91:d8:86:59:46:88:
11:e5:07:a8:fc:34:0d:fe:33:e8:5e:c8:fa:c3:08:5a:cc:2c:
7f:8e:26:8f:5f:8a:fc:28:ac:98:e4:31:58:ad:1e:1a:e4:22:
af:f2:94:a2:83:df:3d:fc:a8:d3:b9:6b:7f:f8:28:80:09:61:
0d:3e:a3:48:3f:f5:a1:c8:25:0e:ea:6f:c2:28:6c:eb:b4:86:
e0:78:1d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 22:30:37 2026 by rpki-client