Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
File: 8H-pjVIdhMKNrsion3SIu86AAhU.mft (raw, json)
Hash identifier: MhRmyMiuIhTXJAApRfFymuj0ooB0kuaEZA88S7joQNg=
Subject key identifier: 0D:77:DF:1B:FA:38:45:DF:F3:A8:DD:04:2B:C0:2A:46:7A:AD:8C:66
Authority key identifier: F0:7F:A9:8D:52:1D:84:C2:8D:AE:C8:A8:9F:74:88:BB:CE:80:02:15
Certificate issuer: /CN=f07fa98d521d84c28daec8a89f7488bbce800215
Certificate serial: 019D33760243797139823D11D392578B37F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
Manifest number: 04B0
Signing time: Sat 28 Mar 2026 08:01:04 +0000
Manifest this update: Sat 28 Mar 2026 08:01:04 +0000
Manifest next update: Sun 29 Mar 2026 08:01:04 +0000
Files and hashes: 1: 8H-pjVIdhMKNrsion3SIu86AAhU.crl (hash: wktlY8v2M6H6uZNsxie0Zx0oGs6cOc6lrIq/apBzcck=)
2: 8_gr7ArTRAbIwtF4BAs2Yb1Q5X8.roa (hash: mNo3tCakCblgrlbHW+icbibgZLAMJGmCUvTiUz7GkBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:76:02:43:79:71:39:82:3d:11:d3:92:57:8b:37:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f07fa98d521d84c28daec8a89f7488bbce800215
Validity
Not Before: Mar 28 08:01:04 2026 GMT
Not After : Mar 29 08:01:04 2026 GMT
Subject: CN=0d77df1bfa3845dff3a8dd042bc02a467aad8c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:ce:0a:99:cc:ee:82:4c:83:1e:e2:10:1e:
c2:a8:1d:ba:87:66:da:6f:7c:ab:9c:e4:98:30:df:
4b:52:d9:f8:39:e9:27:0f:28:3c:3b:b5:07:4a:35:
8b:fd:f7:d5:a2:31:fe:49:7a:e8:41:9b:d0:75:37:
6a:ed:99:d8:cb:2a:c4:55:be:dc:fd:bc:35:48:ca:
ae:dd:8b:ed:fd:7f:5f:e7:46:21:eb:82:07:b0:56:
5d:ce:4f:1c:d7:64:d8:6c:85:8a:82:96:dd:32:26:
85:89:98:e4:8e:2c:51:79:ad:39:81:5d:c6:f7:ec:
e8:cc:52:0c:c8:e5:de:7c:92:18:80:bc:d0:b4:50:
6e:d7:96:91:3e:f1:88:bd:82:24:68:8f:1e:25:03:
90:2b:3f:9d:5e:d3:16:79:5a:3d:11:a7:b6:fb:22:
d6:fc:2a:d5:dc:44:e6:9e:99:34:44:f4:c5:05:68:
15:28:9f:3a:3d:72:4d:a1:17:80:10:ba:7b:af:4d:
5e:9e:d1:2c:b6:25:26:f0:fc:fc:7f:d2:5e:1d:73:
e8:be:c4:60:78:78:99:ea:a3:ba:d6:80:28:18:8e:
75:bf:c9:7c:25:e4:d4:14:43:c8:03:42:52:fd:88:
bc:4a:ab:06:fc:85:80:17:71:13:1b:54:6c:0f:70:
e7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:77:DF:1B:FA:38:45:DF:F3:A8:DD:04:2B:C0:2A:46:7A:AD:8C:66
X509v3 Authority Key Identifier:
keyid:F0:7F:A9:8D:52:1D:84:C2:8D:AE:C8:A8:9F:74:88:BB:CE:80:02:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:4d:c8:7e:1e:e6:9b:f3:df:b7:e4:cb:fb:6a:18:47:4a:82:
57:2a:df:00:0d:44:8e:3f:44:1b:a3:d2:23:5e:aa:05:ad:aa:
6d:2f:de:5e:7f:4d:44:6d:23:4b:eb:8c:d3:1c:86:c6:d6:de:
83:0e:9b:04:d5:f1:0c:7d:d2:ba:64:12:4a:78:73:ae:ba:ab:
b0:0e:d9:d2:90:36:fb:0f:29:77:47:d5:85:df:52:8e:2e:e7:
7f:d2:41:d3:b3:c2:23:f6:e7:80:40:cc:2b:70:3e:17:b5:03:
97:ee:ee:24:e2:c4:9d:6a:0b:bf:da:32:61:ec:fe:53:4a:b9:
82:cc:1f:d9:21:24:65:ae:b4:4f:67:60:af:35:0d:24:84:c1:
6d:91:6a:1c:bc:60:17:ed:12:86:35:f1:06:bc:70:40:78:25:
67:86:33:c0:79:fb:f8:bd:aa:bf:ce:2c:5d:02:0a:69:fe:e1:
a8:b0:b5:8b:56:d7:7f:e6:42:24:b0:04:fa:b1:27:92:17:43:
a5:f6:3a:42:37:0d:6b:43:b6:b4:35:88:5d:b3:74:50:13:b3:
8b:54:7c:8f:89:bf:6f:7d:16:c9:92:10:18:13:1f:b3:80:cf:
c2:26:46:28:29:31:af:97:c7:1d:83:fa:3e:c1:98:0f:ea:87:
0d:d8:94:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 13:36:24 2026 by rpki-client