Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft (raw, json)
Hash identifier: PtXuJjbeOYZt0GK1BptRa9ENpT6xnadh11RseFX79KA=
Subject key identifier: BC:56:1B:C1:50:9B:F4:09:5A:DB:68:E3:A2:04:A8:78:30:CE:A6:3B
Authority key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
Certificate issuer: /CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Certificate serial: 019D37C134A5C77876EA6EF6DE0C106671F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
Manifest number: 11A6
Signing time: Sun 29 Mar 2026 04:01:41 +0000
Manifest this update: Sun 29 Mar 2026 04:01:41 +0000
Manifest next update: Mon 30 Mar 2026 04:01:41 +0000
Files and hashes: 1: bgpnt5ibenfPpBkC5ed1S0aPSHU.roa (hash: S5fBLUnI7/aLMxt/ortotYg/YTHmJIqk2MiL/kErwvI=)
2: i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl (hash: TG5n/L2IypyJwxDz3zvT0nU2hYuEEozBIMILXOMVJnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:34:a5:c7:78:76:ea:6e:f6:de:0c:10:66:71:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Validity
Not Before: Mar 29 04:01:41 2026 GMT
Not After : Mar 30 04:01:41 2026 GMT
Subject: CN=bc561bc1509bf4095adb68e3a204a87830cea63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1c:b5:10:b0:b4:a5:3b:03:32:13:4c:d9:c1:
50:94:df:dc:20:d9:75:0a:d2:66:df:0c:3c:4d:79:
82:56:cb:9c:87:87:ff:7b:52:77:23:4a:14:09:9e:
7a:dc:4f:e8:94:dd:5b:ce:d2:f0:34:9e:b4:43:4a:
ff:00:4e:e8:e3:c7:bd:e7:5d:f8:76:aa:08:b7:38:
2c:9c:56:69:3d:11:29:7d:95:98:07:6f:bb:1e:06:
73:75:eb:1c:9e:f6:73:85:31:f2:b8:e2:87:77:89:
22:58:41:79:06:9f:e9:e3:2c:d0:9d:31:7c:4c:11:
8d:bf:91:93:e7:91:50:3e:c9:93:6b:4b:3b:04:1f:
6c:30:b5:a3:1f:2a:e0:b8:17:1b:bd:b7:8c:8e:43:
ef:87:b1:9f:6c:59:54:ee:22:c2:07:e2:9b:c3:8b:
04:22:b2:db:5b:37:9a:94:cf:b6:2b:fe:e4:44:88:
1f:43:78:fa:f8:57:07:aa:6e:b7:2c:cd:9f:e4:8c:
df:12:6c:e3:0a:91:74:21:9e:11:18:fd:bc:d4:42:
44:84:78:05:d5:6c:a4:eb:2f:74:9c:e4:bc:c5:c0:
b1:50:e1:6a:c4:c1:2d:4c:7e:8b:bb:78:01:e7:28:
2d:3c:1d:f2:eb:18:5d:66:6d:24:1a:10:da:82:23:
cf:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:56:1B:C1:50:9B:F4:09:5A:DB:68:E3:A2:04:A8:78:30:CE:A6:3B
X509v3 Authority Key Identifier:
keyid:8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:5c:1b:7d:10:e8:89:e4:f5:ba:66:a4:07:91:a1:b7:83:ce:
7e:d4:67:b6:36:2c:24:aa:a1:f8:b1:68:7c:bd:76:15:bb:e0:
88:c2:10:b6:42:c1:bf:5d:cd:d7:19:0b:1a:bf:7a:d1:76:c4:
9d:da:66:d1:e4:a0:b1:5e:05:7d:5d:a0:e3:3f:b7:d9:72:e4:
a8:9d:38:57:42:52:77:c9:f8:6d:7e:52:85:5a:3b:20:65:09:
7c:b4:cb:35:56:ae:df:41:96:e8:37:7f:20:92:5e:91:50:bd:
3b:19:f5:74:41:6a:bc:4c:8d:8d:e0:bd:ea:81:85:a9:1c:cf:
54:b5:2e:4f:c0:bb:e0:09:e8:42:cd:fa:a1:8c:31:ce:ed:fa:
21:6f:67:16:79:58:e9:29:95:cf:c5:39:89:4c:bd:50:54:e0:
d3:ec:d6:47:59:d5:cd:cc:0e:62:07:41:04:87:d0:3f:6f:c1:
9d:bf:8a:ef:7e:9c:16:db:40:8a:ab:54:44:99:87:3c:94:29:
c6:62:5e:12:34:e4:a3:ec:45:c9:a8:e2:8e:e1:a4:cf:d5:51:
73:98:f4:34:fe:8e:19:33:a9:5a:8d:b0:b8:59:c1:cf:22:ac:
c9:4b:0d:2f:7a:5c:f0:d3:9c:0d:12:fa:dd:cd:7d:1d:58:2e:
b2:ac:f1:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:55 2026 by rpki-client