Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
File: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft (raw, json)
Hash identifier: QvQSufaj/x3KWLp0PibM24Vx7qwv3qZSlAlvHpR4WhQ=
Subject key identifier: D2:A8:75:99:EC:53:04:AB:69:E5:28:15:C5:A3:C1:C0:6F:D2:FB:DF
Authority key identifier: F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
Certificate issuer: /CN=f0ac0ce700b17d499e898ec7a14730405157c478
Certificate serial: 019F189E9911502CD1D40CC6979B0A893499
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
Manifest number: 1986
Signing time: Tue 30 Jun 2026 13:01:14 +0000
Manifest this update: Tue 30 Jun 2026 13:01:14 +0000
Manifest next update: Wed 01 Jul 2026 13:01:14 +0000
Files and hashes: 1: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl (hash: gTh8FA9XWPX5ep7Ahy2MrseEp2Y3A+btkLDyOYrd+Jc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:99:11:50:2c:d1:d4:0c:c6:97:9b:0a:89:34:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ac0ce700b17d499e898ec7a14730405157c478
Validity
Not Before: Jun 30 13:01:14 2026 GMT
Not After : Jul 1 13:01:14 2026 GMT
Subject: CN=d2a87599ec5304ab69e52815c5a3c1c06fd2fbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:84:75:1b:e0:24:be:17:aa:ce:23:f1:09:06:
a3:3c:ca:ac:47:c6:1b:88:b8:b7:47:af:c2:12:2c:
d4:11:99:e4:c6:11:30:c8:99:bd:08:6a:a1:45:02:
97:17:36:91:88:8f:b1:14:0f:39:2c:dd:1d:40:68:
91:9f:69:cd:c5:e5:60:b3:e6:29:a3:39:8f:db:54:
3e:30:38:44:95:75:b0:e7:e4:d8:af:6a:50:79:ad:
41:f2:24:1a:e8:41:d2:1e:7d:0b:5a:60:b1:bf:b2:
d7:24:13:b6:c0:f0:9c:29:45:cf:35:f0:f3:84:39:
7f:a7:dc:c1:66:a7:5a:5f:52:48:a9:65:b9:de:99:
5c:c1:5d:c2:6d:1c:49:d1:b2:d4:66:80:9f:2a:6e:
b6:64:43:26:b6:db:14:0c:44:f4:ee:9a:95:0a:61:
c5:99:3c:7a:e0:ae:5e:86:13:1c:2d:d6:10:34:2c:
ea:b3:36:5d:47:83:1f:74:96:61:8b:b9:34:a7:ac:
67:9a:23:3f:78:9c:bc:91:0c:7d:3a:03:a0:26:d8:
2b:17:a9:59:56:d2:2f:16:62:cb:12:b9:af:60:e4:
cc:7a:19:e9:00:2e:51:40:00:c1:27:3d:d7:97:d5:
2f:20:64:b8:33:af:fa:da:77:6d:25:33:e7:ca:a9:
28:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A8:75:99:EC:53:04:AB:69:E5:28:15:C5:A3:C1:C0:6F:D2:FB:DF
X509v3 Authority Key Identifier:
keyid:F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:fd:64:9e:7a:03:14:39:87:1b:eb:97:00:bc:9b:31:18:ba:
aa:27:bd:a6:9b:65:e2:4d:a3:bd:7f:74:e8:03:c3:d9:a9:ff:
c9:1b:4d:a7:da:9c:cd:8c:e0:00:18:7f:ec:0b:72:ac:cb:12:
71:d2:50:50:b3:ec:15:c2:7b:4f:e7:58:86:a7:76:e4:3a:9f:
c4:fa:fa:b6:cf:ea:c7:f0:7c:dc:8f:fa:e6:bf:ee:9e:d7:0c:
d9:95:c4:7a:d4:a4:90:66:7b:cb:0c:78:ad:63:a4:1b:41:21:
aa:76:c0:00:c8:ec:57:f5:a5:70:75:b8:3e:aa:ba:3b:e5:4d:
dc:6f:36:84:56:35:97:b7:3e:b5:cb:8b:46:0e:90:c5:e0:9e:
bf:13:d3:b4:e7:37:3c:89:d7:19:cf:75:79:75:b3:c0:71:97:
11:ee:84:5f:99:3d:c6:2b:52:31:34:c0:3e:24:e7:65:43:d4:
75:53:80:3c:e6:87:b0:80:d4:f9:97:4e:8f:9f:c1:bb:33:79:
b7:e2:93:83:73:26:4f:eb:ff:4d:0e:c8:89:db:1b:7d:25:5e:
70:ff:9b:02:df:62:4c:cd:cf:4e:db:2f:68:95:e7:cc:93:ca:
fb:e9:d3:6f:6a:64:84:8a:4b:22:54:bf:1a:fd:39:0d:05:c5:
4b:e3:55:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:18 2026 by rpki-client