Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
File: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft (raw, json)
Hash identifier: FdUxU2A+J8cofBKzM961mGrEp0lMktmhx3C2VGaWWL0=
Subject key identifier: C8:68:FB:F0:11:C8:2D:66:A8:2C:E4:48:EB:1D:21:93:A3:64:44:19
Authority key identifier: F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
Certificate issuer: /CN=f0ac0ce700b17d499e898ec7a14730405157c478
Certificate serial: 019D37C11D91DD4BA868C2B3C89D18D02EED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 04:01:35 +0000
Manifest this update: Sun 29 Mar 2026 04:01:35 +0000
Manifest next update: Mon 30 Mar 2026 04:01:35 +0000
Files and hashes: 1: 8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl (hash: sv2vrVleAQdzI2LXH+RFD/+YrfKg1/19kdcppR3Y2no=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:1d:91:dd:4b:a8:68:c2:b3:c8:9d:18:d0:2e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ac0ce700b17d499e898ec7a14730405157c478
Validity
Not Before: Mar 29 04:01:35 2026 GMT
Not After : Mar 30 04:01:35 2026 GMT
Subject: CN=c868fbf011c82d66a82ce448eb1d2193a3644419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:74:bf:6c:5b:e6:9d:0c:99:00:16:d9:3e:ad:
02:a1:0e:6e:32:cc:a2:58:80:34:b8:51:02:0d:77:
bf:a7:25:1d:56:7d:e0:27:4e:d9:21:09:b8:05:3d:
ce:20:07:6b:1e:cc:6c:81:1f:18:09:86:01:ca:a7:
70:35:3f:70:47:70:94:7a:bd:e7:46:34:0a:0b:26:
84:63:27:20:c1:8d:72:d3:01:fb:4e:e8:b9:21:e9:
2d:37:70:e6:19:fc:bd:47:0a:cc:38:86:7e:bc:a5:
11:87:53:cb:0b:07:b1:3a:71:4c:10:fd:8b:08:85:
f9:c5:57:de:40:d1:c5:c7:f7:a9:9a:e0:7b:bf:1a:
7a:8f:1e:35:11:4c:ae:5b:38:a4:20:cb:48:73:b1:
22:54:6a:38:3f:f5:5b:f9:d5:05:aa:75:dc:5c:29:
e1:0e:59:f0:33:3e:33:14:ca:b9:fa:ce:a8:6c:c6:
7b:2f:e0:4d:62:98:b4:71:ec:81:34:3a:a5:65:ac:
1b:7a:03:f0:72:35:0b:69:f1:ef:0e:56:1c:73:f2:
4f:44:f8:87:01:f9:25:d0:87:c2:a7:d0:0c:39:b6:
14:e7:c3:57:b6:15:87:c5:c2:26:8e:12:c1:49:d4:
a8:7d:e6:04:83:a0:42:97:6d:d6:3d:44:24:0b:0d:
aa:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:68:FB:F0:11:C8:2D:66:A8:2C:E4:48:EB:1D:21:93:A3:64:44:19
X509v3 Authority Key Identifier:
keyid:F0:AC:0C:E7:00:B1:7D:49:9E:89:8E:C7:A1:47:30:40:51:57:C4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KwM5wCxfUmeiY7HoUcwQFFXxHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8fb2a6-cae5-4f39-a858-7e46cc3701b9/1/8KwM5wCxfUmeiY7HoUcwQFFXxHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:f7:a1:6d:c8:00:21:24:f4:93:58:a4:8d:aa:b4:4c:4e:d3:
db:e1:27:87:60:6e:36:0f:44:32:a1:b6:b8:0f:55:1c:af:21:
39:72:b9:44:c4:0a:3a:33:70:64:d5:cf:a9:45:9d:c7:88:d1:
66:ad:65:72:3e:c7:9b:84:8a:9b:cf:55:87:3f:be:e2:e6:bd:
a1:81:86:c3:ca:59:78:d7:20:7a:d7:76:db:57:2f:57:3d:fd:
ed:5e:fa:92:51:93:9f:d8:3e:c0:d5:cf:a4:58:66:5c:e0:f7:
1d:bd:c5:7b:f8:b1:2d:7d:aa:b6:a8:9a:51:f0:39:40:05:70:
0a:a1:02:e2:ec:02:05:74:7a:e9:0e:08:b7:09:32:cf:fe:75:
34:7e:6c:a6:67:fb:93:45:46:4c:81:fc:97:49:5b:e1:ae:03:
8a:42:28:5b:ed:08:33:0c:14:3b:66:84:03:6c:f5:6a:2b:74:
87:de:31:0f:9a:f1:9a:cf:46:8b:4f:56:2d:bc:d3:0c:01:a8:
6a:ba:d8:bf:46:62:67:d9:a4:16:4e:fc:78:f8:c8:db:af:7b:
7c:3e:12:16:12:b0:1e:18:a8:7c:7f:f1:cf:fe:8c:95:6b:66:
44:0c:e1:7e:f2:bf:b0:a9:58:ea:c7:5e:c4:e8:b3:8d:a3:53:
c4:f3:fd:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:37 2026 by rpki-client