Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
File: 8oxp2pTIXt1I2cH9jjMq477mYAQ.mft (raw, json)
Hash identifier: 6bKWrT3cN4DHYsn7c/kKix17zWWAnnwQ48PK4EO+2zE=
Subject key identifier: A8:F5:4A:12:23:71:6F:35:1B:FE:D7:33:2D:D7:11:AB:87:70:AE:8F
Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Certificate serial: 019F1942FCA76DA9DC480C227C56B514B75D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
Manifest number: 1253
Signing time: Tue 30 Jun 2026 16:00:48 +0000
Manifest this update: Tue 30 Jun 2026 16:00:48 +0000
Manifest next update: Wed 01 Jul 2026 16:00:48 +0000
Files and hashes: 1: 5AGKlldahfI2UQwePdR7aOZv59k.roa (hash: yineAINt5f0q9Dc8di7gq2DzeIUdj6NUc5yoND8zPYQ=)
2: 8oxp2pTIXt1I2cH9jjMq477mYAQ.crl (hash: pPF6cSYWz8mY5XJlARagcaIgl9868lE927z1dA93Uog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:42:fc:a7:6d:a9:dc:48:0c:22:7c:56:b5:14:b7:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Validity
Not Before: Jun 30 16:00:48 2026 GMT
Not After : Jul 1 16:00:48 2026 GMT
Subject: CN=a8f54a1223716f351bfed7332dd711ab8770ae8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a1:f5:89:1e:1a:ec:16:53:fa:c8:4a:30:7f:
1e:94:b9:26:6d:b1:be:30:54:6f:14:03:a3:94:f7:
cd:e0:5f:6a:cc:7c:1d:ff:39:46:46:a7:c6:dc:11:
bf:98:9a:91:5b:b2:ea:10:cf:97:20:48:24:d1:20:
19:4c:00:93:62:47:d7:79:72:6e:2d:81:cd:6c:49:
8a:e9:69:50:a5:4c:c7:48:14:1c:90:c8:7f:ce:82:
e6:af:22:0e:9c:66:55:6c:02:69:17:e7:2a:71:03:
63:27:b2:03:a0:1f:0e:18:bf:29:95:4a:f9:15:d2:
11:90:7e:27:97:18:f4:de:e8:ca:14:c5:81:da:89:
4b:4a:f2:db:fb:2f:45:1e:e2:43:1a:92:66:76:5b:
bb:a4:9e:e3:b8:98:0b:ba:b7:db:55:9f:0a:69:c2:
3c:c9:d4:1e:1c:c7:aa:44:89:41:09:8b:99:2f:ff:
d0:1d:b4:e2:d8:16:14:2e:aa:87:65:18:0c:b7:52:
d6:5a:40:95:13:3f:d0:47:0f:15:cd:7c:7c:f0:78:
7b:99:ce:3b:4c:06:f7:1b:6f:e9:42:d6:46:0a:18:
9a:2d:76:62:ad:2d:f0:fc:0e:26:53:89:91:19:71:
69:67:32:94:fb:e5:ad:13:40:21:81:f8:df:25:72:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F5:4A:12:23:71:6F:35:1B:FE:D7:33:2D:D7:11:AB:87:70:AE:8F
X509v3 Authority Key Identifier:
keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:88:46:3b:fd:c4:33:c1:52:a7:21:5d:51:b3:fa:89:df:64:
16:cb:7d:a5:35:ac:b6:b7:5a:1a:6c:ad:72:11:f0:ea:ab:55:
26:8e:e1:3d:4a:58:1b:10:87:81:93:55:12:4c:0e:14:43:12:
1f:6e:23:b8:a4:df:11:39:3b:1d:5f:6f:ec:7c:8d:60:e6:61:
a2:82:e7:ca:09:e6:7a:71:24:e3:6d:ef:c4:00:cc:61:ef:8d:
50:aa:9f:ae:a2:17:b1:ac:63:5e:4c:28:79:e0:c5:9c:7e:37:
d6:30:06:4c:47:64:a9:ba:2e:b9:17:f6:b1:38:cb:1a:66:9f:
34:c7:58:97:a8:bb:01:1f:88:d7:50:8d:15:8e:09:06:cf:57:
cb:02:29:72:bf:df:a5:b4:94:b8:ee:cf:ad:7c:12:1a:8e:0e:
28:4c:28:3e:57:91:ee:41:aa:1d:95:a9:90:89:59:79:f9:6d:
13:76:a9:d0:b9:7f:f9:24:a2:6b:8f:7c:32:b9:9c:47:e6:c1:
34:8f:67:f7:bd:96:b1:a2:53:2e:a7:9b:16:5a:65:f4:d1:6d:
63:70:f4:6e:63:1f:96:a6:e4:47:10:21:f0:4c:ad:9b:39:91:
ab:db:4b:18:26:3a:51:33:ae:a5:ff:6a:3e:2f:3a:37:52:06:
d8:39:43:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQvynbancSAwifFa1FLddMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyOGM2OWRhOTRjODVlZGQ0OGQ5YzFmZDhlMzMyYWUzYmVl
NjYwMDQwHhcNMjYwNjMwMTYwMDQ4WhcNMjYwNzAxMTYwMDQ4WjAzMTEwLwYDVQQD
EyhhOGY1NGExMjIzNzE2ZjM1MWJmZWQ3MzMyZGQ3MTFhYjg3NzBhZThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaH1iR4a7BZT+shKMH8elLkmbbG+
MFRvFAOjlPfN4F9qzHwd/zlGRqfG3BG/mJqRW7LqEM+XIEgk0SAZTACTYkfXeXJu
LYHNbEmK6WlQpUzHSBQckMh/zoLmryIOnGZVbAJpF+cqcQNjJ7IDoB8OGL8plUr5
FdIRkH4nlxj03ujKFMWB2olLSvLb+y9FHuJDGpJmdlu7pJ7juJgLurfbVZ8KacI8
ydQeHMeqRIlBCYuZL//QHbTi2BYULqqHZRgMt1LWWkCVEz/QRw8VzXx88Hh7mc47
TAb3G2/pQtZGChiaLXZirS3w/A4mU4mRGXFpZzKU++WtE0AhgfjfJXLvQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKj1ShIjcW81G/7XMy3XEauHcK6PMB8GA1UdIwQY
MBaAFPKMadqUyF7dSNnB/Y4zKuO+5mAEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEt
YTkwMmIwMDk2Yjk5LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8wZGNkOTYtMGFlMy00ZjVjLThkMjEtYTkwMmIwMDk2Yjk5
LzEvOG94cDJwVElYdDFJMmNIOWpqTXE0NzdtWUFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmIhGO/3E
M8FSpyFdUbP6id9kFst9pTWstrdaGmytchHw6qtVJo7hPUpYGxCHgZNVEkwOFEMS
H24juKTfETk7HV9v7HyNYOZhooLnygnmenEk423vxADMYe+NUKqfrqIXsaxjXkwo
eeDFnH431jAGTEdkqbouuRf2sTjLGmafNMdYl6i7AR+I11CNFY4JBs9XywIpcr/f
pbSUuO7PrXwSGo4OKEwoPleR7kGqHZWpkIlZefltE3ap0Ll/+SSia498MrmcR+bB
NI9n972WsaJTLqebFlpl9NFtY3D0bmMflqbkRxAh8EytmzmRq9tLGCY6UTOupf9q
Pi86N1IG2DlDbA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:29:59 2026 by rpki-client