Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft (raw, json)
Hash identifier: 1Nvodrl8aN4sj//QMjoJ3zdTAnq/b0LKVHLwTL0zNMs=
Subject key identifier: 92:1F:97:B8:57:7B:2F:80:82:D8:B5:3E:5B:2A:C5:28:F7:98:18:10
Authority key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
Certificate issuer: /CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Certificate serial: 019E30E101DB4526C86BA772A8A05FADB103
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
Manifest number: 1227
Signing time: Sat 16 May 2026 13:01:52 +0000
Manifest this update: Sat 16 May 2026 13:01:52 +0000
Manifest next update: Sun 17 May 2026 13:01:52 +0000
Files and hashes: 1: bgpnt5ibenfPpBkC5ed1S0aPSHU.roa (hash: S5fBLUnI7/aLMxt/ortotYg/YTHmJIqk2MiL/kErwvI=)
2: i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl (hash: OJgY1NRCRbSJn9tRIJxjqF60Vp0fd2YuDG5Vnf1c1ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e1:01:db:45:26:c8:6b:a7:72:a8:a0:5f:ad:b1:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9
Validity
Not Before: May 16 13:01:52 2026 GMT
Not After : May 17 13:01:52 2026 GMT
Subject: CN=921f97b8577b2f8082d8b53e5b2ac528f7981810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:65:2c:aa:72:fb:90:77:de:ce:73:87:01:62:
4e:af:82:b7:ea:a1:1e:92:2a:21:00:e1:5a:c0:bf:
75:a4:ba:bc:71:cc:ea:e7:e8:98:30:42:3e:c1:9c:
1c:40:0c:f4:f1:ec:ce:7b:e0:07:8b:96:4b:b3:9f:
1d:c9:34:36:a5:e9:e2:9e:ad:18:23:1a:a1:d8:96:
ab:d6:8a:80:15:01:86:56:de:41:28:7c:fa:c4:be:
f6:c6:cc:51:9b:31:88:92:bb:4b:fc:51:94:ff:a3:
9a:9f:91:bd:33:c5:2f:02:b6:30:57:d4:6b:13:91:
86:a0:e0:43:14:41:9a:ac:15:18:0b:4a:37:8e:d5:
48:ef:5a:89:f0:ba:27:23:39:04:75:97:fd:bd:93:
5f:86:84:4a:e5:5f:52:33:2a:ed:30:1f:10:8d:17:
2c:f3:a1:be:b6:08:8c:40:ba:be:ad:d7:78:3a:5a:
f7:21:d9:73:02:b7:08:0a:84:62:19:cb:88:6b:42:
78:b3:84:a4:c4:02:db:3f:71:c4:93:e5:2f:ec:15:
d8:b9:82:38:c5:b3:41:fd:30:07:d0:e6:02:5f:7e:
0b:5b:98:93:bb:6d:b8:8a:2e:48:c6:4a:ab:b1:fa:
b2:8a:ea:0d:59:c6:d0:03:37:2a:fc:f0:35:fd:d0:
f5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:1F:97:B8:57:7B:2F:80:82:D8:B5:3E:5B:2A:C5:28:F7:98:18:10
X509v3 Authority Key Identifier:
keyid:8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ed:16:52:51:a8:01:ae:aa:0f:33:d9:bf:8e:02:4f:12:67:
d3:ea:44:8c:0f:02:c8:3c:5d:cf:c0:11:63:1c:24:60:7e:d7:
c4:69:3d:55:e8:c9:87:83:38:05:6a:dc:e0:d5:bc:5f:df:5e:
0b:b5:d4:04:72:9c:52:df:79:98:ab:03:f2:64:64:15:8b:7e:
17:b0:89:fc:6b:4f:21:4b:46:95:2a:9d:ba:7b:34:fe:d4:23:
7f:57:96:0a:3e:09:47:30:d5:be:c2:75:5c:13:7e:8a:f0:25:
bb:e2:34:81:95:d2:4d:31:80:a4:5a:27:eb:cb:37:d6:60:f5:
db:d0:2d:42:d3:7b:3d:fd:c0:82:aa:8f:7f:b3:46:04:24:cc:
81:d4:86:d3:66:56:7c:2b:91:59:8e:bb:d3:25:51:18:b7:ba:
d9:de:6e:52:21:c1:d7:2c:b1:3c:10:a3:84:89:82:f6:3b:6f:
52:5b:00:dd:e1:22:8d:78:41:c8:32:39:d0:9f:78:a4:cb:78:
4d:c4:c9:8d:80:88:2b:d7:4b:24:b8:fc:52:f6:3b:e5:08:b0:
ff:dd:87:06:da:12:00:19:60:c4:3f:63:08:e5:33:de:ed:e3:
10:df:a8:96:43:cc:66:64:8e:48:89:c5:f6:9c:5a:e4:b9:6a:
d3:6a:10:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:18:49 2026 by rpki-client