Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier: V+m9EHmU2ta6x2XlfN5+RJhXdZCimI4rDxaSI5eVC+o=
Subject key identifier: 71:30:10:D0:67:B9:7D:67:7F:40:73:D7:35:D8:B5:15:64:7B:8C:88
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial: 019D3A53B0CDE356915670264A06051C468D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number: 1897
Signing time: Sun 29 Mar 2026 16:00:56 +0000
Manifest this update: Sun 29 Mar 2026 16:00:56 +0000
Manifest next update: Mon 30 Mar 2026 16:00:56 +0000
Files and hashes: 1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: +IoKD5XpKQ8HhHnw/QCKTLYV94DApjayXyyQflENDBc=)
2: l6d-s6pGrwjzo2MVrYFXt_vj8FQ.roa (hash: GWCGfDBQXbx8zU/9pE2/fyqt5ipxe1FQBrMDGvjciQY=)
3: wNW1OJ6nNt-LJ_qt91rusWZGqUk.roa (hash: Uf/zMrnHEJKdoypvZyEP0WBvkTlQGSBhuCZb5Fsvgco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:b0:cd:e3:56:91:56:70:26:4a:06:05:1c:46:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
Validity
Not Before: Mar 29 16:00:56 2026 GMT
Not After : Mar 30 16:00:56 2026 GMT
Subject: CN=713010d067b97d677f4073d735d8b515647b8c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c1:d7:b2:87:0a:00:5a:ce:56:a9:28:5f:3d:
0a:bb:f6:28:9c:89:8d:60:c9:7f:3d:c5:31:2b:28:
84:2f:12:97:a9:5e:25:fa:6d:04:6c:69:f5:01:94:
97:a3:e1:9e:3a:5c:31:14:e1:15:29:07:94:e1:76:
09:3a:77:48:8d:f3:93:0a:89:cf:cd:ec:31:e1:de:
8d:bf:ab:fb:a5:66:29:03:30:d8:92:1b:b3:7b:98:
7a:aa:e7:96:56:7d:5c:50:8a:23:28:8d:4b:53:67:
db:f6:0f:86:b7:72:2f:f3:ff:0b:15:1d:9b:9f:9d:
8b:33:5c:a0:97:22:c0:8e:76:cc:88:7f:2e:f6:98:
ea:5c:ab:a2:f6:19:14:60:5b:03:4d:2c:5f:bc:32:
ea:43:b0:fd:6b:4d:83:8c:8b:47:77:ce:34:a8:0d:
18:3e:51:5d:98:31:eb:f9:dd:ed:80:58:bb:a5:50:
1e:e7:03:9d:16:3b:fa:e4:43:0f:37:42:48:cc:dd:
d0:6f:eb:6a:6e:78:ac:34:0c:0d:3b:a2:77:65:3d:
eb:c0:51:11:c9:e9:ca:29:97:37:7b:63:b1:88:84:
c2:4b:f3:62:87:93:4a:37:54:d4:e5:55:b0:39:d1:
7e:4b:22:e7:21:f3:5c:86:29:de:7c:eb:b7:07:8c:
29:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:30:10:D0:67:B9:7D:67:7F:40:73:D7:35:D8:B5:15:64:7B:8C:88
X509v3 Authority Key Identifier:
keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:6e:76:f4:30:bc:7a:8a:c5:ee:ba:aa:74:92:e6:0b:e6:a3:
fa:03:42:b1:a4:c8:f5:d7:7b:24:38:50:27:2f:81:34:aa:af:
fc:08:e1:d3:85:d8:b2:8b:51:cf:b0:c3:41:68:ef:72:7f:b6:
ac:76:bd:27:b2:55:ca:c0:e6:07:e9:2a:9c:b2:f5:29:0b:a4:
6e:88:fd:cc:29:72:c7:ff:33:f9:aa:98:70:96:30:a9:87:b8:
a7:6a:6a:e9:7c:a1:01:b5:f8:74:35:ee:64:e2:61:de:d8:68:
50:d8:c7:e2:08:6e:2f:2d:35:f5:6a:b9:38:87:24:6f:ef:ca:
c7:50:08:07:bf:5c:90:8e:10:48:56:7e:36:ea:c2:b5:b8:36:
ba:5f:09:fb:de:b1:91:79:0d:c8:a9:15:62:fe:e8:d3:46:3c:
c0:88:63:22:3c:1c:36:f1:c4:31:ca:63:ee:46:a1:2c:63:99:
c9:42:14:6e:a7:16:58:95:d3:31:42:67:4b:80:fb:2e:5d:82:
4d:23:94:86:e5:5d:eb:10:d3:87:b4:99:fb:6a:a2:f3:a7:61:
c0:2b:87:de:0f:9a:aa:7c:8c:f3:64:51:7c:f0:6e:aa:40:58:
98:de:45:28:ad:84:c5:54:dc:b1:54:2e:5d:85:fc:07:73:fc:
b6:22:7b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:53:56 2026 by rpki-client