Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
File: 8khYdchHDmqs3JR0IQXzDFl6wrs.mft (raw, json)
Hash identifier: ac4PGtaT0XmYHOeQq5K5FILLS3SyJqroLXihNZMWpME=
Subject key identifier: 75:41:60:B8:A7:2B:36:01:97:84:6D:A5:3B:3D:22:D3:81:17:92:23
Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Certificate serial: 019D37531BF912A022BFA44248CA40B077FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
Manifest number: 0F88
Signing time: Sun 29 Mar 2026 02:01:26 +0000
Manifest this update: Sun 29 Mar 2026 02:01:26 +0000
Manifest next update: Mon 30 Mar 2026 02:01:26 +0000
Files and hashes: 1: 8khYdchHDmqs3JR0IQXzDFl6wrs.crl (hash: aYjH8TqzjY6YHjjxX0KEiRE3MNScrCEewW8jwaMunQE=)
2: foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa (hash: 1DlyQW+RNTimUxXGNa+g3AQuv/uMpZoTB33IBxZu3oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:1b:f9:12:a0:22:bf:a4:42:48:ca:40:b0:77:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Validity
Not Before: Mar 29 02:01:26 2026 GMT
Not After : Mar 30 02:01:26 2026 GMT
Subject: CN=754160b8a72b360197846da53b3d22d381179223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:63:fd:f4:4e:7e:cc:8b:77:d2:4f:e4:1d:
ea:dc:73:00:36:98:0a:b4:73:2b:40:46:53:84:1f:
10:1c:88:35:34:a2:5b:52:a9:75:21:ee:31:c4:c2:
1d:29:16:4b:0e:58:4b:cf:29:62:cc:6a:a7:0c:2c:
0b:c1:63:71:df:4c:c6:da:8a:08:74:b3:b1:c2:3c:
37:df:3e:9c:7c:61:e1:f3:96:fa:42:7e:e3:3d:ee:
f4:f8:d6:9a:be:49:e1:c8:1e:09:f5:1b:42:eb:6f:
ab:9e:f7:f5:90:84:53:24:b8:8f:20:fa:86:be:dc:
c9:ab:89:05:82:76:47:1a:b7:c5:73:12:da:06:b9:
45:6c:a7:ee:c7:4a:ee:b5:e0:40:07:43:c8:a6:79:
b6:d3:ab:08:83:29:f1:b1:16:e7:55:08:38:41:22:
fa:e5:9d:ee:c4:9a:a3:fc:9d:35:94:1d:82:b0:f3:
cd:3d:eb:5f:f2:26:5b:94:cd:2d:90:b8:60:39:d4:
26:2d:c6:b2:62:94:7e:75:d2:ec:11:5a:99:36:c3:
2c:16:20:01:03:24:39:50:90:37:06:c7:8f:85:c1:
92:57:81:df:19:88:66:3c:f1:e5:d0:59:80:36:b3:
35:e0:91:42:9d:18:4d:fc:41:14:06:96:1e:79:c4:
31:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:41:60:B8:A7:2B:36:01:97:84:6D:A5:3B:3D:22:D3:81:17:92:23
X509v3 Authority Key Identifier:
keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:00:95:3c:9b:40:21:38:c1:d2:32:d3:1f:b6:74:bf:70:7a:
aa:e7:e2:89:67:fc:55:92:72:67:ed:8d:5c:11:cf:2e:95:2f:
5e:f5:90:8f:6d:cf:79:9e:34:c4:33:10:72:39:96:2a:87:38:
47:81:33:b1:ed:31:24:59:76:a8:f7:3c:fc:9d:ec:80:c8:82:
48:f6:10:4b:4c:a1:71:a0:1b:b1:53:c1:aa:87:b1:fc:d1:7b:
3f:49:35:6c:fd:43:95:24:5c:d9:16:9a:a9:6e:02:12:4a:2e:
96:df:ea:f2:64:b9:2a:c0:fe:60:c5:80:59:17:8f:96:b1:c4:
37:aa:c2:c7:60:f4:72:46:71:51:62:56:25:78:35:02:4b:4d:
85:e8:0e:da:c5:cc:c6:07:02:89:09:7a:48:24:fd:5e:97:28:
78:9d:03:c9:50:79:7f:41:4f:68:11:92:a9:f7:73:e2:a4:2b:
8b:7a:92:db:36:5c:83:67:82:40:ab:d9:56:78:31:9e:c2:0f:
ae:db:f7:4a:00:92:e9:f0:56:39:88:d0:c8:5e:cc:75:56:77:
4e:7f:73:08:32:b5:61:a3:b0:88:25:d6:03:03:76:e1:e2:63:
3d:02:58:6f:95:4e:fd:28:e7:62:1d:7d:a7:ca:47:b1:e4:ee:
73:79:af:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:43 2026 by rpki-client