Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
File: h3OqvdPia0S3mDfBRwq44XQV6o4.mft (raw, json)
Hash identifier: y9l6bBMbSzdiG0KizW1dyumqJYpg3IeZf2QehsbV8gE=
Subject key identifier: 0E:28:21:8E:0B:91:40:62:15:42:E8:6B:19:F5:BF:FE:E5:D9:18:7C
Authority key identifier: 87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
Certificate issuer: /CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Certificate serial: 019CAFB5FD9483BC7F0E15E6FECB8134620E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
Manifest number: 0434
Signing time: Mon 02 Mar 2026 18:01:05 +0000
Manifest this update: Mon 02 Mar 2026 18:01:05 +0000
Manifest next update: Tue 03 Mar 2026 18:01:05 +0000
Files and hashes: 1: h3OqvdPia0S3mDfBRwq44XQV6o4.crl (hash: agoItjI+LVOMa/GTdX/JvFVtTuhVVqEUL2bcjY9fvgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 18:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b5:fd:94:83:bc:7f:0e:15:e6:fe:cb:81:34:62:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Validity
Not Before: Mar 2 18:01:05 2026 GMT
Not After : Mar 3 18:01:05 2026 GMT
Subject: CN=0e28218e0b9140621542e86b19f5bffee5d9187c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:d4:5c:71:a0:0c:dc:e9:ec:85:af:68:ac:
b8:04:8a:4f:a5:3c:48:b7:f6:e4:76:58:05:3d:a3:
24:ea:46:a3:3f:49:ff:ab:74:a2:6d:b9:95:ef:b7:
79:23:c0:7f:ee:81:87:64:75:18:b2:91:a5:80:43:
d0:4d:7f:66:7e:54:0b:e0:e7:93:70:22:c2:eb:8a:
ee:ce:b6:3a:82:43:8e:b3:d5:ba:93:86:08:95:94:
51:f7:2a:69:de:ab:f9:0e:63:3c:2c:7e:29:8a:68:
f0:a5:7a:78:95:e2:99:99:25:9b:1b:32:34:45:83:
bb:56:6c:1e:87:cd:57:4b:b1:c4:f9:1d:6f:ee:ee:
f8:76:4b:55:e8:71:b5:1f:76:50:78:0f:d1:24:74:
07:ae:3d:af:e7:3a:03:7c:77:47:86:b2:aa:20:4c:
11:99:31:9e:8a:99:d0:9e:5e:76:f3:9f:a5:f0:7e:
62:d1:7a:38:b2:c3:3d:c6:e2:25:eb:95:55:77:a0:
de:e9:41:68:6b:51:16:16:5d:3f:12:c3:22:cb:a4:
63:9b:1b:3f:0f:8a:90:95:b9:fd:80:02:c0:51:ff:
19:8c:e6:90:15:e2:06:40:95:f2:f6:7b:f2:65:0a:
3c:59:ca:63:6b:8a:57:e0:46:7c:cd:49:ec:a9:d2:
85:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:28:21:8E:0B:91:40:62:15:42:E8:6B:19:F5:BF:FE:E5:D9:18:7C
X509v3 Authority Key Identifier:
keyid:87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:07:b9:11:b4:d5:6b:61:49:92:10:02:39:07:9c:0f:18:2b:
ec:24:66:b9:93:e9:ee:aa:f9:40:5c:a2:05:da:8f:a3:c6:0c:
16:57:85:c3:7a:15:60:ef:e7:a1:dc:43:be:ea:5e:8d:1d:f1:
81:3f:8d:52:56:20:30:11:e4:9b:f3:ac:a7:ac:fe:2b:8b:0b:
f7:ef:d1:18:65:16:aa:2a:c3:1b:dd:15:0c:58:9b:b2:86:ca:
fb:7f:78:f3:06:80:20:f7:45:14:03:c4:2f:a8:b9:24:de:d5:
df:d8:b2:aa:63:ae:86:ea:47:e9:43:7c:ea:d0:8a:78:57:70:
df:6e:7c:e0:f1:87:b9:6f:67:2c:6c:51:6b:56:d2:d9:76:cf:
1b:ae:bb:b9:34:14:fe:57:99:5a:e2:01:b0:af:cc:1f:bf:08:
a0:ab:da:38:46:cc:79:b6:10:98:25:e8:0d:3a:f1:cc:ef:4b:
a6:43:63:7f:72:09:33:6d:7a:30:06:48:3d:8d:18:7e:61:01:
93:56:19:d4:3e:89:eb:81:e4:a5:77:0a:2c:87:04:e4:11:da:
dd:6b:89:a2:84:6c:d2:41:07:f6:ac:82:25:00:fc:23:fb:83:
a4:b6:b9:18:0a:2c:cd:e4:98:28:24:57:20:8e:2a:e8:98:93:
a4:0e:e0:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 04:07:29 2026 by rpki-client