Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: sNDwkCGxjw6jRGY3FcL4n1/fXeTKdQVN8PgFTTXTHgU=
Subject key identifier: 91:F5:B5:CA:F4:7A:75:C8:B7:EA:CB:18:C4:F6:D7:2D:56:88:DF:4E
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 019F17F91EAA56A2976CAAE9D56519923C0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 12E9
Signing time: Tue 30 Jun 2026 10:00:29 +0000
Manifest this update: Tue 30 Jun 2026 10:00:29 +0000
Manifest next update: Wed 01 Jul 2026 10:00:29 +0000
Files and hashes: 1: 4dTiivW_bvCIIr9OKslRJ2ttAH0.roa (hash: nywsABEuvSZWyJVu4fBV0raW88OjCnUfbkwJDiN85oo=)
2: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: cTHk/M9TUrS2Zoi5xGhEl3twyzmEJ/s0taiQQfiHFak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:1e:aa:56:a2:97:6c:aa:e9:d5:65:19:92:3c:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: Jun 30 10:00:29 2026 GMT
Not After : Jul 1 10:00:29 2026 GMT
Subject: CN=91f5b5caf47a75c8b7eacb18c4f6d72d5688df4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:56:01:5b:12:e9:3f:4a:05:3b:a1:8d:dd:9f:
e4:cd:76:da:c3:af:ed:54:b8:f9:85:e1:8e:e9:55:
7b:6f:4c:64:22:c9:da:ce:c3:fc:b1:cb:39:86:5e:
35:0f:ec:28:aa:f3:65:09:df:f4:aa:84:0b:d3:e1:
dd:45:42:99:9a:55:cb:71:6f:1c:dc:ca:83:1a:58:
60:3a:14:5b:69:b7:6d:41:6e:95:19:96:fb:b4:f9:
06:0f:2f:52:aa:1a:28:e6:8f:b0:e9:30:1b:5e:37:
70:68:2c:7b:47:a5:cc:a8:b4:7d:ab:98:ca:fe:9c:
e8:a0:a8:e1:06:0f:57:5f:50:02:ae:9e:7e:23:99:
dd:80:9d:be:6f:7b:0f:98:a7:b9:d3:50:05:5c:94:
29:59:ca:87:b5:5b:c8:7a:df:38:30:7a:61:28:95:
62:90:3c:21:92:67:ce:5a:d5:05:d5:f2:88:2d:50:
61:50:cd:7e:b6:65:8e:ef:3e:cf:17:ce:03:f1:87:
24:66:6f:49:33:27:fd:1f:7e:ae:04:9d:7c:04:28:
90:70:cd:72:06:ca:00:3b:a4:14:3d:9e:42:12:95:
17:20:85:b0:b0:1e:fd:c8:89:6e:7a:54:1a:97:06:
5d:b7:7c:92:51:b9:7d:2c:04:66:03:96:ce:24:55:
56:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F5:B5:CA:F4:7A:75:C8:B7:EA:CB:18:C4:F6:D7:2D:56:88:DF:4E
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:de:f2:84:cf:24:b0:4f:92:6b:e3:d5:19:b4:4e:cd:a4:b1:
36:77:c5:88:c1:ae:61:d5:63:2f:54:db:1e:3b:10:44:00:37:
c7:d6:c5:3e:11:18:72:14:38:88:d7:58:eb:c4:fa:92:74:6a:
70:23:78:74:4a:74:46:72:a8:6c:d2:1c:14:fc:70:e1:43:54:
da:a8:10:51:d5:ec:4a:d3:41:d5:57:39:ae:1d:fe:fd:43:5f:
73:ef:d7:e3:c9:af:2a:aa:ed:04:0f:84:7c:8b:0c:a1:d5:80:
9c:e5:28:65:b7:3b:f1:01:22:3e:22:66:91:80:8f:97:05:f8:
23:68:c1:94:a2:06:34:81:a6:f4:ab:25:58:d6:06:c2:ab:8c:
81:f2:43:ef:e0:c6:f2:a9:54:07:70:8b:0c:22:88:d5:b4:63:
80:dc:d4:d2:85:02:22:92:23:c5:c7:a5:21:5b:00:6e:86:fd:
24:b3:b6:63:5f:99:90:a9:dd:37:c6:9f:9b:d8:1b:b4:13:8d:
53:b7:fc:e9:e8:6d:b8:ac:00:e3:9f:0d:a8:04:b0:27:29:03:
a6:d6:5b:7e:9e:77:a3:3d:3f:65:0a:12:2e:82:f6:a2:bc:21:
77:16:fc:6d:e3:d0:e3:35:9d:65:bb:c1:fd:d6:6c:22:e4:81:
c3:1d:fa:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+R6qVqKXbKrp1WUZkjwMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNzFlNDM3OTgyY2MzNDZmNmU4MTdjYTY0ODkyNzIzZWRi
NTQxOWEwHhcNMjYwNjMwMTAwMDI5WhcNMjYwNzAxMTAwMDI5WjAzMTEwLwYDVQQD
Eyg5MWY1YjVjYWY0N2E3NWM4YjdlYWNiMThjNGY2ZDcyZDU2ODhkZjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+FYBWxLpP0oFO6GN3Z/kzXbaw6/t
VLj5heGO6VV7b0xkIsnazsP8scs5hl41D+woqvNlCd/0qoQL0+HdRUKZmlXLcW8c
3MqDGlhgOhRbabdtQW6VGZb7tPkGDy9Sqhoo5o+w6TAbXjdwaCx7R6XMqLR9q5jK
/pzooKjhBg9XX1ACrp5+I5ndgJ2+b3sPmKe501AFXJQpWcqHtVvIet84MHphKJVi
kDwhkmfOWtUF1fKILVBhUM1+tmWO7z7PF84D8YckZm9JMyf9H36uBJ18BCiQcM1y
BsoAO6QUPZ5CEpUXIIWwsB79yIluelQalwZdt3ySUbl9LARmA5bOJFVWFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJH1tcr0enXIt+rLGMT21y1WiN9OMB8GA1UdIwQY
MBaAFPBx5DeYLMNG9ugXymSJJyPttUGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEhIa041Z3N3MGIyNkJmS1pJa25JLTIxUVpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8wMDcyNWEtMTllZi00MjQ0LTg4OTct
NzhjYjU5Yjc4YTRmLzEvOEhIa041Z3N3MGIyNkJmS1pJa25JLTIxUVpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8wMDcyNWEtMTllZi00MjQ0LTg4OTctNzhjYjU5Yjc4YTRm
LzEvOEhIa041Z3N3MGIyNkJmS1pJa25JLTIxUVpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW97yhM8k
sE+Sa+PVGbROzaSxNnfFiMGuYdVjL1TbHjsQRAA3x9bFPhEYchQ4iNdY68T6knRq
cCN4dEp0RnKobNIcFPxw4UNU2qgQUdXsStNB1Vc5rh3+/UNfc+/X48mvKqrtBA+E
fIsModWAnOUoZbc78QEiPiJmkYCPlwX4I2jBlKIGNIGm9KslWNYGwquMgfJD7+DG
8qlUB3CLDCKI1bRjgNzU0oUCIpIjxcelIVsAbob9JLO2Y1+ZkKndN8afm9gbtBON
U7f86ehtuKwA458NqASwJykDptZbfp53oz0/ZQoSLoL2orwhdxb8bePQ4zWdZbvB
/dZsIuSBwx36UA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:27:17 2026 by rpki-client