Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
File: 8khYdchHDmqs3JR0IQXzDFl6wrs.mft (raw, json)
Hash identifier: dgOV3PCsn2CnmMQSA1J/a8P5cpQVmYWWigNg8yJG4kI=
Subject key identifier: 9C:AE:A8:53:F6:D8:33:FF:94:20:FE:A9:2B:0A:60:4D:85:4D:F0:09
Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Certificate serial: 019E307329B28D4633A277B152DEEB5215CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
Manifest number: 1009
Signing time: Sat 16 May 2026 11:01:53 +0000
Manifest this update: Sat 16 May 2026 11:01:53 +0000
Manifest next update: Sun 17 May 2026 11:01:53 +0000
Files and hashes: 1: 8khYdchHDmqs3JR0IQXzDFl6wrs.crl (hash: MScqOmvaUPlcV/rVbT5nJpUlEhwPyd9ZmxhTgC/smtc=)
2: foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa (hash: 1DlyQW+RNTimUxXGNa+g3AQuv/uMpZoTB33IBxZu3oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:73:29:b2:8d:46:33:a2:77:b1:52:de:eb:52:15:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Validity
Not Before: May 16 11:01:53 2026 GMT
Not After : May 17 11:01:53 2026 GMT
Subject: CN=9caea853f6d833ff9420fea92b0a604d854df009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:99:aa:bb:df:27:ef:37:0e:06:dd:11:23:1f:
e5:9c:df:f4:a4:ce:2c:10:e4:ac:74:34:5f:df:6e:
9c:60:e7:40:8d:53:e1:d7:23:47:47:c5:02:45:3d:
0f:25:74:b2:02:f2:a8:88:4f:f9:ef:96:3b:eb:d8:
15:67:70:88:9f:7c:26:24:fc:7a:a0:b3:d5:d2:00:
27:76:5a:01:62:10:78:f0:33:e3:d3:d6:1c:fe:d8:
50:60:ef:4f:24:02:6f:0e:a7:8a:69:35:00:03:7e:
60:17:70:cd:74:51:03:82:98:64:3a:7c:72:e0:d9:
9a:54:05:ef:37:7c:0d:27:85:71:de:98:34:37:99:
44:95:28:ab:d5:31:68:a9:68:ed:84:23:68:1e:25:
32:76:57:82:a8:34:b3:5b:2e:27:51:b3:b1:ca:9a:
b4:3b:c5:d0:0e:fa:02:ad:e1:5a:39:f5:ad:ac:19:
41:a5:80:20:da:4d:eb:32:48:5f:33:d6:e5:30:a5:
0e:86:95:ed:b5:71:ca:a1:86:0a:58:44:e9:1f:db:
95:65:6b:54:b6:7e:33:23:c0:61:88:4f:eb:42:15:
61:d4:c3:e9:2f:26:27:24:af:48:56:42:e6:80:c3:
3e:3f:76:40:d1:7f:cd:aa:ab:18:c3:5f:e8:c4:57:
59:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AE:A8:53:F6:D8:33:FF:94:20:FE:A9:2B:0A:60:4D:85:4D:F0:09
X509v3 Authority Key Identifier:
keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:ae:76:c5:84:a7:99:f5:86:58:b3:78:ec:82:de:23:8f:29:
26:8d:56:d6:1c:fe:6b:33:ad:e4:a7:94:ba:a5:5d:30:11:71:
8d:84:35:b8:3a:19:81:94:0c:88:cb:3c:59:cb:cd:4f:77:14:
02:6d:ac:91:c5:ea:df:06:29:f4:19:28:84:c4:51:5c:ff:7b:
6d:11:60:db:a7:cb:69:01:20:8a:3a:57:a6:70:bb:d9:a2:b5:
4d:4c:c3:28:bb:a7:18:b9:ee:39:ed:de:d3:92:60:67:01:03:
38:01:e2:56:f5:4b:71:45:81:f0:a6:77:dd:28:a3:10:d3:d6:
81:d8:a4:21:94:d1:70:33:37:a8:89:e8:9d:74:0a:8f:2b:dc:
c2:e9:01:83:c1:6e:1d:28:af:5a:07:e6:c8:c6:94:41:64:0d:
e1:7f:b2:31:cf:30:60:3c:a7:4e:d4:86:01:e1:33:a3:0b:10:
09:bf:43:e2:b6:85:71:6c:bd:a7:71:94:8a:80:f5:50:86:f0:
e6:a1:8c:b5:0c:2b:ff:65:02:d1:c6:bc:a8:87:03:bf:e3:5c:
f9:37:34:19:f9:8a:30:0d:e0:cc:13:4a:a4:91:3d:ca:fa:4b:
c7:88:c3:95:74:a1:de:a5:3b:b9:2b:e9:e8:97:74:07:c8:d4:
ee:0c:ce:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wcymyjUYzonexUt7rUhXKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNDg1ODc1Yzg0NzBlNmFhY2RjOTQ3NDIxMDVmMzBjNTk3
YWMyYmIwHhcNMjYwNTE2MTEwMTUzWhcNMjYwNTE3MTEwMTUzWjAzMTEwLwYDVQQD
Eyg5Y2FlYTg1M2Y2ZDgzM2ZmOTQyMGZlYTkyYjBhNjA0ZDg1NGRmMDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pmqu98n7zcOBt0RIx/lnN/0pM4s
EOSsdDRf326cYOdAjVPh1yNHR8UCRT0PJXSyAvKoiE/575Y769gVZ3CIn3wmJPx6
oLPV0gAndloBYhB48DPj09Yc/thQYO9PJAJvDqeKaTUAA35gF3DNdFEDgphkOnxy
4NmaVAXvN3wNJ4Vx3pg0N5lElSir1TFoqWjthCNoHiUydleCqDSzWy4nUbOxypq0
O8XQDvoCreFaOfWtrBlBpYAg2k3rMkhfM9blMKUOhpXttXHKoYYKWETpH9uVZWtU
tn4zI8BhiE/rQhVh1MPpLyYnJK9IVkLmgMM+P3ZA0X/NqqsYw1/oxFdZDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJyuqFP22DP/lCD+qSsKYE2FTfAJMB8GA1UdIwQY
MBaAFPJIWHXIRw5qrNyUdCEF8wxZesK7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS81YTNmMGItODZmNS00MDZlLTkxZDUt
OGZkNGMwMjQ0ODhlLzEvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS81YTNmMGItODZmNS00MDZlLTkxZDUtOGZkNGMwMjQ0ODhl
LzEvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANq52xYSn
mfWGWLN47ILeI48pJo1W1hz+azOt5KeUuqVdMBFxjYQ1uDoZgZQMiMs8WcvNT3cU
Am2skcXq3wYp9BkohMRRXP97bRFg26fLaQEgijpXpnC72aK1TUzDKLunGLnuOe3e
05JgZwEDOAHiVvVLcUWB8KZ33SijENPWgdikIZTRcDM3qInonXQKjyvcwukBg8Fu
HSivWgfmyMaUQWQN4X+yMc8wYDynTtSGAeEzowsQCb9D4raFcWy9p3GUioD1UIbw
5qGMtQwr/2UC0ca8qIcDv+Nc+Tc0GfmKMA3gzBNKpJE9yvpLx4jDlXSh3qU7uSvp
6Jd0B8jU7gzO7w==
-----END CERTIFICATE-----
Generated at Sat May 16 15:38:21 2026 by rpki-client