Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: p85e0ExpGn0rN65E1bxvwE8ycx8t67ajc8VUNjEp5tw=
Subject key identifier: 52:43:22:2F:A8:DE:A1:CE:26:35:4B:52:F8:86:E2:81:68:1D:FF:E5
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 019F178B9E0820E2E0DDB30651F99A37DFD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 098D
Signing time: Tue 30 Jun 2026 08:00:53 +0000
Manifest this update: Tue 30 Jun 2026 08:00:53 +0000
Manifest next update: Wed 01 Jul 2026 08:00:53 +0000
Files and hashes: 1: 2GTvWzpclUq6kJYm-wsP_GwJPLY.roa (hash: fYmZ9Cu3/ER+umCuIKfV6emnqQD55csuls9mkFBGOE4=)
2: 5oF3V0rjeL1pJ5lHiFSxxXlRiqk.roa (hash: MY4vTmIm6iMkCfXRGy7HULVmNJlJMi1dSNNh0tuV34c=)
3: 69uCRF0gJPayfWhDtOPkNyE4RrA.roa (hash: zk+4O7C/kwm21uLUwHJKUDfYHP0XyuVnc9Gjvk0nfWs=)
4: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: x5cFwHM2IH79DMSeWH8FCBzgp0dTBoONlMLk97z9/lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:9e:08:20:e2:e0:dd:b3:06:51:f9:9a:37:df:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Jun 30 08:00:53 2026 GMT
Not After : Jul 1 08:00:53 2026 GMT
Subject: CN=5243222fa8dea1ce26354b52f886e281681dffe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:93:cd:6d:a7:35:e4:01:a2:fe:32:9d:5f:15:
40:ea:f0:e2:00:c8:ce:52:fa:ac:13:19:60:7d:06:
d0:be:b3:4f:9c:91:c2:d3:24:9f:27:77:e6:42:97:
3a:2b:22:84:ca:52:9c:85:5e:10:59:2e:59:34:3e:
17:2f:bb:84:14:d1:a2:03:8d:6f:f3:0e:24:06:64:
a6:be:0b:af:44:7d:f9:8c:3b:2a:be:ef:6b:40:03:
35:06:1f:e5:a4:91:29:80:8a:ac:a2:52:8c:9d:6c:
85:1d:81:48:9a:c8:a3:38:22:bb:81:b5:77:15:eb:
79:ec:bd:28:77:20:49:b5:47:45:fe:58:d1:ba:8c:
d1:62:0b:5d:67:23:65:f4:3e:d4:b6:4f:f1:cf:c5:
aa:d9:24:51:5f:d0:0a:db:fc:59:d0:7c:8d:42:f5:
2e:2a:be:97:98:07:7e:a5:db:4a:e1:62:12:98:6f:
78:97:da:3f:0e:b1:8c:55:5e:6f:06:51:40:88:da:
66:fd:2f:45:82:31:fa:4d:65:7b:9e:40:b1:14:a2:
9e:b5:ec:41:df:52:b3:8c:e2:80:30:0d:5d:72:2f:
0c:af:05:39:a3:db:1c:37:fc:d3:1e:62:bd:74:50:
46:54:e9:a2:97:ea:fa:03:45:db:39:81:e8:fa:cc:
37:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:43:22:2F:A8:DE:A1:CE:26:35:4B:52:F8:86:E2:81:68:1D:FF:E5
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:fd:a1:90:a2:2b:19:77:fa:10:e6:61:00:3e:02:08:61:b9:
b2:27:8d:68:c0:8a:d0:2a:e7:cc:04:2b:6c:fb:6f:f1:55:aa:
e0:03:13:ae:51:f4:fd:f2:2e:c1:33:a1:70:47:6b:67:3d:e1:
77:37:c5:c0:98:97:11:58:c7:ae:01:ce:da:e4:e9:a4:14:c1:
94:8d:44:12:ba:06:36:9b:0b:24:ff:c5:49:07:86:c9:3f:19:
b8:89:ed:f3:bb:34:05:31:d2:a9:dc:c2:8f:32:ed:37:ea:58:
0f:a2:95:07:ee:d5:03:83:8e:24:2a:49:47:3a:01:b5:df:99:
1e:72:1d:aa:5a:74:96:13:fb:46:6b:30:9e:7c:b5:27:00:c1:
ce:31:03:5b:54:ae:2e:10:b3:67:c7:92:2c:be:ee:be:ab:25:
03:9d:1b:2a:b8:b9:7e:02:8e:4b:71:de:13:f0:57:16:91:dc:
96:cb:c6:4f:bf:f8:15:de:2e:20:f0:5c:12:23:25:bc:7d:c6:
b2:cf:07:f3:a6:32:a7:b0:81:6f:e6:b2:a7:da:26:c4:72:18:
a2:f5:a1:73:75:ba:0c:32:ee:98:22:b3:d4:dc:ce:20:aa:9c:
d8:54:77:e7:c8:5c:88:1d:0e:00:bb:70:24:7e:b1:da:a1:2c:
8a:3b:a3:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:57 2026 by rpki-client