Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft (raw, json)
Hash identifier: ya7TKncWYTb/tLGMEobhjioiUdxxaKkHIDEc7WqQgmc=
Subject key identifier: 67:99:25:92:5A:CA:44:E0:01:A9:B6:F7:64:20:CF:74:33:AA:CD:18
Authority key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
Certificate issuer: /CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Certificate serial: 019F189EB3EBF2F368AC97FA145832F71926
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
Manifest number: 129F
Signing time: Tue 30 Jun 2026 13:01:21 +0000
Manifest this update: Tue 30 Jun 2026 13:01:21 +0000
Manifest next update: Wed 01 Jul 2026 13:01:21 +0000
Files and hashes: 1: bgpnt5ibenfPpBkC5ed1S0aPSHU.roa (hash: S5fBLUnI7/aLMxt/ortotYg/YTHmJIqk2MiL/kErwvI=)
2: i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl (hash: CxsZP8KrngD2puLFmVhnPjF9WYyZZuSboL1g6qbgEAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:b3:eb:f2:f3:68:ac:97:fa:14:58:32:f7:19:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Validity
Not Before: Jun 30 13:01:21 2026 GMT
Not After : Jul 1 13:01:21 2026 GMT
Subject: CN=679925925aca44e001a9b6f76420cf7433aacd18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4a:bb:60:42:46:fd:d1:0b:93:9a:77:3f:be:
04:23:44:8e:cf:35:c2:79:5a:cf:17:7b:b5:77:b0:
b2:ca:71:fb:db:f8:d6:c0:82:0b:a3:cc:5a:dc:e5:
88:58:60:66:98:12:7f:d1:83:16:2c:a6:ca:5b:5a:
85:ab:0c:da:68:32:6f:3b:e6:8e:ff:5e:68:96:7b:
96:0b:a8:92:c5:b1:67:68:de:2b:a7:7b:c5:ad:a6:
81:01:83:07:da:0b:7d:97:2b:49:9f:29:c3:6d:68:
5d:bb:df:42:89:2e:ee:60:fb:a9:ca:79:92:96:64:
70:99:79:1d:dc:32:ac:dd:de:d2:27:b5:e8:2b:f4:
90:73:b5:78:f7:95:a1:50:1b:d5:d2:d7:e3:0f:a3:
7d:8a:61:14:48:f5:62:e4:3b:ca:a9:f1:dc:bf:4e:
d2:49:1c:c1:f2:d2:7a:2c:b1:bb:86:27:08:45:0b:
a1:b3:cb:55:d4:2f:36:1b:bc:33:9c:c0:67:00:ed:
e6:23:e3:d0:82:2c:14:76:18:a0:0e:13:94:67:43:
b5:13:96:c8:25:b4:47:b0:17:29:58:ef:0a:cc:35:
ce:dd:e9:82:f0:9b:d5:e1:34:44:47:b2:48:f4:94:
41:b0:7c:b3:65:2c:c5:6a:9c:21:5d:9a:17:34:16:
10:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:99:25:92:5A:CA:44:E0:01:A9:B6:F7:64:20:CF:74:33:AA:CD:18
X509v3 Authority Key Identifier:
keyid:8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:b8:68:66:2b:95:45:08:21:f9:25:c3:66:68:bc:43:7f:17:
a0:77:74:e3:ce:dd:5d:f9:ee:d3:90:65:32:26:8b:82:80:6c:
ac:5c:46:b9:ce:22:2e:99:02:44:4c:f7:21:a7:2f:94:e5:31:
43:33:ad:4c:93:fe:20:42:9b:78:de:59:f0:89:1e:46:06:f8:
b1:ad:7a:f5:a1:59:fd:19:12:0d:a5:14:78:33:2a:10:f9:20:
85:6d:27:5a:7b:fc:b3:17:70:d1:0d:c4:60:78:ea:70:d1:23:
d3:e6:2f:7c:e8:80:7d:7e:95:83:36:77:28:6e:f6:90:84:7f:
8c:54:1a:26:b6:c8:0c:c4:51:2b:ed:dd:2c:a0:c2:e0:b6:f5:
be:02:01:41:61:ff:0b:1f:66:04:ca:d4:00:9e:a9:c8:30:c7:
53:e7:c2:94:b2:ab:a4:c8:cd:a2:b8:44:44:95:72:d6:92:f2:
48:35:a2:4e:3c:83:a8:7e:cf:f8:ec:9d:ba:3a:ff:37:59:a6:
36:6b:5c:9e:72:db:3b:ea:cc:da:61:d3:2c:5d:19:0b:d4:dc:
74:fb:da:c4:5c:92:48:34:31:cc:f1:7d:73:e1:f0:ba:78:8b:
c1:5e:b9:4a:0d:f9:2e:e9:3d:20:74:02:18:4f:2e:37:06:89:
1e:e8:cf:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:39:37 2026 by rpki-client