Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: +SNCTC99TCpmJsT1EHUglktDk9z464HrVEzzIGSA8oA=
Subject key identifier: ED:FB:20:57:EF:4B:6C:90:20:B8:3A:BD:C7:54:E7:0D:33:BB:C7:92
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 019CABA1C3D16E08ECD66DAF9743F021EF4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 0A5B
Signing time: Sun 01 Mar 2026 23:00:31 +0000
Manifest this update: Sun 01 Mar 2026 23:00:31 +0000
Manifest next update: Mon 02 Mar 2026 23:00:31 +0000
Files and hashes: 1: 08llQ74BuBaNWqT4Y7FAkII-DJw.roa (hash: pxdI4iXE9K/M2+2A8OZhCl+4882oOXHYqUhqvnxntUE=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: JDMxH6a1ap+O1SGVisnwBZ4yl8+EHB9xNq6xsRPA5Xc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:c3:d1:6e:08:ec:d6:6d:af:97:43:f0:21:ef:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Mar 1 23:00:31 2026 GMT
Not After : Mar 2 23:00:31 2026 GMT
Subject: CN=edfb2057ef4b6c9020b83abdc754e70d33bbc792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e4:bd:43:d4:23:63:8f:c4:7f:e4:52:24:04:
db:19:7d:32:e8:a1:e1:b4:65:6b:37:4f:38:db:df:
e9:e6:39:31:3b:42:7d:80:69:83:4c:8a:44:de:79:
10:16:c9:59:da:ba:dd:58:87:f4:5d:5f:10:6c:29:
27:70:90:78:ff:2a:f0:af:7e:17:62:8c:1e:7e:be:
c2:bf:6c:a2:e8:b8:eb:5e:a4:2c:ca:cd:4f:ea:1a:
61:fc:12:50:54:d3:e5:e9:fe:6a:0c:c7:a8:78:c7:
f7:d6:1d:02:0d:d9:4e:4c:33:e6:a5:a1:d5:8f:b6:
9b:80:d5:83:1d:e7:f5:9c:b5:6e:9c:9d:f8:9a:b4:
56:65:02:48:17:0f:44:bd:d4:dd:1a:19:d7:96:82:
91:17:91:5d:7f:f1:51:96:10:74:82:3c:77:e7:2c:
d5:b2:b4:c2:66:7a:ed:e8:f3:b8:8e:26:04:ff:e4:
9a:e8:05:af:2b:1c:81:c9:79:72:4f:d4:94:c2:20:
d7:5e:7a:c7:cf:37:98:6b:c5:d2:91:2d:40:00:a1:
f3:47:f9:e5:77:4c:26:31:71:a6:15:c1:63:13:c5:
90:ad:77:e9:5c:a0:9b:4e:39:8e:de:52:ca:ac:4e:
7b:93:ce:16:8d:9b:f6:f9:3c:66:5b:c0:6f:24:96:
ea:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FB:20:57:EF:4B:6C:90:20:B8:3A:BD:C7:54:E7:0D:33:BB:C7:92
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:a9:bd:50:8e:95:4c:47:28:e5:ad:03:2c:5a:be:dc:89:20:
e8:b4:4a:a4:06:82:35:aa:0c:aa:ac:ea:1e:23:77:7a:18:01:
fa:e3:3f:f8:4b:b1:66:78:f9:ad:74:21:89:26:2c:80:e9:fa:
44:c3:e9:fb:c3:82:fe:71:41:ab:b4:61:25:fe:0c:81:09:5e:
f7:7f:d2:d6:ff:8c:af:e6:f5:5f:0e:31:67:cb:f8:df:5c:7a:
ca:be:5b:14:97:6e:dd:c9:39:39:cb:b4:a2:f7:aa:f7:12:bc:
9b:46:37:f2:ff:b4:30:14:93:27:64:39:0e:6c:1e:4a:74:e1:
a8:d6:df:b6:30:ce:cf:cd:e3:09:5c:33:17:45:06:a1:f1:86:
dc:59:cb:4f:46:ba:02:5a:02:b4:1f:99:03:00:ea:03:3a:17:
9f:73:ae:07:c6:c2:2e:76:c8:f5:70:85:5e:85:27:01:a1:2b:
4d:e2:a4:22:06:2f:5b:c7:0c:70:61:99:45:80:f3:eb:c8:c5:
1c:f8:e7:22:b8:39:43:68:c8:a6:2d:4f:a5:39:d8:3e:68:4c:
96:94:60:9a:9d:e5:59:20:a6:23:fc:d3:20:14:ed:1b:81:ed:
c2:e1:e4:5c:a3:ce:3a:ae:29:6d:29:66:64:6f:c9:71:c6:bd:
af:0b:3f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:24:01 2026 by rpki-client