Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
File: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft (raw, json)
Hash identifier: S5ENxVMeRHclWBKJ9o3SWjInHoAmX530kPNKcp9tBDE=
Subject key identifier: D1:EF:A1:E2:90:C3:8D:A6:8D:5B:E5:3E:B3:E5:B4:5C:DD:D5:64:2A
Authority key identifier: F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
Certificate issuer: /CN=f0ac0ce700b17d499e898ec7a14730405157c478
Certificate serial: 019E30DFD98B31D3BF018C1A9D5FFB93464A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
Manifest number: 190E
Signing time: Sat 16 May 2026 13:00:36 +0000
Manifest this update: Sat 16 May 2026 13:00:36 +0000
Manifest next update: Sun 17 May 2026 13:00:36 +0000
Files and hashes: 1: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl (hash: A/G/wgZLcgvaigU/M6JBYCzW99WFHfnUVieLCUekzZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:df:d9:8b:31:d3:bf:01:8c:1a:9d:5f:fb:93:46:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ac0ce700b17d499e898ec7a14730405157c478
Validity
Not Before: May 16 13:00:36 2026 GMT
Not After : May 17 13:00:36 2026 GMT
Subject: CN=d1efa1e290c38da68d5be53eb3e5b45cddd5642a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5f:79:71:40:fd:08:ca:3a:01:80:78:3b:64:
5a:8e:9e:2b:ba:f8:85:6e:6f:1a:d7:88:18:27:4f:
5f:f2:63:23:fe:b9:e4:c1:5c:fb:eb:80:fe:21:b2:
94:47:59:9f:dd:fc:8b:1d:4d:53:dd:95:61:91:4d:
8f:a7:dc:5d:87:e0:ca:8b:37:2a:f6:96:2a:f5:81:
b5:54:e2:74:9c:f8:e9:3e:54:4e:64:f6:11:fc:67:
55:64:b5:90:07:18:ad:2d:96:71:1a:c8:6f:aa:54:
e7:56:85:b3:58:8f:7f:21:8d:7c:06:ff:17:d2:5b:
0b:5e:fb:0b:fb:0c:37:5c:3b:8c:06:fa:f2:60:7e:
7a:2c:af:bb:cb:db:28:67:1e:94:5a:cf:4b:54:ce:
53:8a:c3:77:ed:cc:82:ec:44:5b:61:e1:45:0b:26:
91:2b:b8:5b:fe:55:fc:86:78:69:1c:02:da:a6:33:
64:50:7e:0c:c9:ac:ba:1f:3f:c2:cb:f0:ff:ae:6d:
9e:55:97:97:d3:f6:49:65:fe:b0:0a:ab:1d:41:56:
61:e9:93:61:ff:99:2a:70:f9:5d:77:ad:32:f9:b1:
36:63:21:32:02:32:20:87:21:08:06:cd:36:8d:4a:
26:ee:28:19:a5:3d:16:5e:12:f3:61:52:00:d0:35:
54:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:EF:A1:E2:90:C3:8D:A6:8D:5B:E5:3E:B3:E5:B4:5C:DD:D5:64:2A
X509v3 Authority Key Identifier:
keyid:F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:ea:5b:ec:45:6c:be:67:a3:9e:68:c2:d8:dc:b3:56:01:19:
e4:53:de:de:67:2a:f8:95:43:cc:1e:14:26:74:d5:64:f2:b9:
b8:44:e2:c1:fb:31:62:49:15:ba:a2:82:f2:88:f7:5f:b3:79:
f0:3a:09:7d:08:c3:88:7d:fd:a6:e7:e9:e5:4a:89:40:7e:0f:
cc:1e:4a:a5:a0:7e:a4:03:ba:73:d3:e6:b1:ef:13:61:5f:f7:
20:33:aa:74:5e:cb:b7:ac:2d:47:a6:97:fd:fd:ed:6f:67:10:
eb:94:52:07:37:39:b3:01:f8:98:9d:3a:b5:49:a9:4f:61:b1:
35:e9:0f:19:ab:d0:9f:e7:86:a1:ad:de:34:34:da:a7:96:43:
c0:d7:ff:46:00:dc:a3:f0:1d:5a:7f:8a:7c:81:11:8e:09:e1:
c1:77:1d:06:e1:c0:97:9c:26:03:1e:1a:fa:b1:41:11:8c:7c:
dd:49:3a:18:55:8f:0d:27:aa:1a:97:17:3a:ce:4f:51:35:ec:
01:d5:68:ca:c8:01:33:0a:65:08:60:a3:ee:0d:d8:8d:d4:4e:
06:d8:af:70:9e:0b:ed:99:f3:03:84:e3:ce:90:c1:e8:55:d2:
f3:61:4c:e7:07:04:e6:7d:9e:c3:f3:72:b2:ec:ba:64:66:69:
87:ba:b8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:31 2026 by rpki-client