Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier: +q7yqaJP63z2sUjlzhL/7uE9L26qh2CAjEHPO7rkZE4=
Subject key identifier: 71:AA:5F:9E:F6:82:9D:1B:36:FE:AF:BB:38:91:4D:CC:2D:71:EE:CC
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial: 019E3185B6F369FEDF57BA45318B278FB7A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number: 1917
Signing time: Sat 16 May 2026 16:01:47 +0000
Manifest this update: Sat 16 May 2026 16:01:47 +0000
Manifest next update: Sun 17 May 2026 16:01:47 +0000
Files and hashes: 1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: zHVOh566IduMZSCPpzxQtC5G1nkDTWcLZ+fConBAnWQ=)
2: l6d-s6pGrwjzo2MVrYFXt_vj8FQ.roa (hash: GWCGfDBQXbx8zU/9pE2/fyqt5ipxe1FQBrMDGvjciQY=)
3: wNW1OJ6nNt-LJ_qt91rusWZGqUk.roa (hash: Uf/zMrnHEJKdoypvZyEP0WBvkTlQGSBhuCZb5Fsvgco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:b6:f3:69:fe:df:57:ba:45:31:8b:27:8f:b7:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
Validity
Not Before: May 16 16:01:47 2026 GMT
Not After : May 17 16:01:47 2026 GMT
Subject: CN=71aa5f9ef6829d1b36feafbb38914dcc2d71eecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:dc:8f:d7:8c:e6:7b:39:3a:65:5b:d6:4d:c5:
d3:7c:71:4a:bb:c2:fa:99:a7:2c:32:6f:36:38:33:
7c:62:0f:14:32:f7:84:c5:73:ee:92:30:e1:cb:e5:
ff:0a:c4:37:4d:4f:99:ed:1e:47:19:1d:03:23:52:
15:85:43:73:55:96:f1:58:49:6b:f9:b1:a2:f0:4a:
5b:57:52:f4:87:3b:28:1b:66:15:69:e0:f7:6f:e1:
08:f2:ab:8b:4b:cc:65:2f:26:0d:0b:08:11:76:40:
80:98:cb:c3:b6:8f:d9:e9:de:f1:ac:56:c6:5e:95:
01:53:06:ee:c3:72:ec:5c:d5:5d:43:47:a6:3a:ee:
7e:28:3e:f3:f1:60:c9:a6:76:fd:85:1c:09:e1:f1:
a6:68:79:08:3c:ae:4d:fd:9c:c8:5c:1e:64:54:4d:
a1:50:97:78:51:de:b1:3c:65:07:93:81:85:68:56:
c9:92:31:62:fd:0a:64:94:b5:27:57:8b:2d:77:5d:
eb:08:ed:21:81:16:68:86:9e:9e:b8:bf:0a:23:18:
5f:9a:98:aa:99:e3:3a:2f:58:44:9e:76:97:23:a5:
c7:b5:1a:ea:39:f4:37:59:68:41:5e:ee:dc:1d:45:
a1:8b:5c:45:14:73:31:a5:7c:85:88:1c:31:90:df:
2e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AA:5F:9E:F6:82:9D:1B:36:FE:AF:BB:38:91:4D:CC:2D:71:EE:CC
X509v3 Authority Key Identifier:
keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:6a:7f:1f:2d:5a:e0:77:4a:87:aa:37:74:9c:54:e5:00:42:
62:8c:0a:59:50:eb:dd:0c:cc:b2:4c:7a:d2:5e:b4:6b:86:9c:
fc:1f:7b:25:89:77:52:29:17:36:69:c5:da:ae:b4:ab:e0:da:
56:34:2f:8b:8a:0b:eb:05:b5:33:8c:ae:d2:7e:49:f2:90:96:
a3:e6:8c:e1:7c:ea:bc:9f:0b:a4:3d:0e:53:eb:32:ae:c5:8a:
d1:a4:c8:aa:2b:e5:64:27:76:a8:de:bf:a5:29:7b:ac:99:35:
f6:51:1d:88:96:57:e4:cc:ba:20:4e:c1:e5:66:19:67:0a:05:
d4:93:9f:69:b4:5c:18:4d:82:d6:c1:8b:33:4e:60:63:11:3b:
44:66:cd:6d:e8:3f:9d:a8:03:c1:42:d6:b9:4d:53:d3:8a:ec:
ea:4f:b4:78:ae:84:f3:86:5e:49:34:9c:25:3f:1c:f0:3d:59:
ee:b2:bf:22:12:c1:3a:5a:d7:45:cf:19:eb:48:e7:66:d6:67:
83:d4:49:c7:86:ad:9e:21:27:71:86:1b:8d:32:46:e0:09:08:
3a:70:43:39:a2:f7:f7:e8:b0:d3:c4:ab:db:1c:f6:e7:a4:15:
6d:32:b3:54:b1:72:6a:50:42:08:24:c7:d8:47:f9:14:ad:5b:
1b:ea:e9:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:23 2026 by rpki-client