Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
File: 8khYdchHDmqs3JR0IQXzDFl6wrs.mft (raw, json)
Hash identifier: odlR9fOYx+nIWdPcRg6ESErgOCAW6EFegtfVt4fJfXo=
Subject key identifier: 5D:11:F1:82:A5:21:7B:8E:C2:89:E2:C1:CC:33:E1:8E:37:0B:82:0D
Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Certificate serial: 019F183109033B9AAEFD8D157DE0E877838A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
Manifest number: 1081
Signing time: Tue 30 Jun 2026 11:01:34 +0000
Manifest this update: Tue 30 Jun 2026 11:01:34 +0000
Manifest next update: Wed 01 Jul 2026 11:01:34 +0000
Files and hashes: 1: 8khYdchHDmqs3JR0IQXzDFl6wrs.crl (hash: W8ElnJvCTMInalglqLO+WW1Jq77mf5dRLbxkuAvMJv4=)
2: foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa (hash: 1DlyQW+RNTimUxXGNa+g3AQuv/uMpZoTB33IBxZu3oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:31:09:03:3b:9a:ae:fd:8d:15:7d:e0:e8:77:83:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Validity
Not Before: Jun 30 11:01:34 2026 GMT
Not After : Jul 1 11:01:34 2026 GMT
Subject: CN=5d11f182a5217b8ec289e2c1cc33e18e370b820d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:69:55:55:2e:c1:d9:32:b4:2c:e0:32:2f:e6:
4a:c5:8a:fa:bb:ad:5f:b7:31:4b:af:eb:ea:dd:c0:
96:cc:16:0a:5b:c0:53:e0:d8:86:d5:99:79:7f:ee:
28:fb:82:c7:9c:47:a9:4f:64:45:41:4d:2e:6a:a1:
9c:d9:38:60:d6:a2:42:74:70:c5:1f:17:c0:d2:c6:
6f:d0:6b:a0:92:8c:76:ed:7a:ee:a3:93:40:fe:1f:
00:62:11:27:37:de:99:c1:fa:32:8c:d6:c1:ff:f7:
41:d0:7e:2a:a0:42:c7:a4:d6:fe:7d:68:02:55:74:
54:d4:68:54:3d:77:ec:49:d5:62:4d:b2:cb:f6:00:
43:6d:91:3f:db:3a:5e:87:11:d7:cf:13:7b:9d:83:
d1:a3:32:d3:b7:e9:79:e7:5b:27:be:83:2e:8d:06:
ae:2e:3e:98:2f:bf:3f:37:12:28:a6:cc:e8:8f:0a:
38:cf:bb:ff:b1:4b:ec:f2:2b:03:3f:a0:8f:4d:db:
08:cf:97:a1:b6:d1:48:29:1a:1b:88:89:d0:47:44:
f5:2a:f3:b6:d9:21:77:b8:35:46:8a:1c:c5:fe:e4:
13:47:46:5b:43:dc:b9:09:2a:fa:6b:7b:d7:83:81:
b3:aa:2e:90:00:98:de:f5:09:57:a5:db:54:72:c8:
70:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:11:F1:82:A5:21:7B:8E:C2:89:E2:C1:CC:33:E1:8E:37:0B:82:0D
X509v3 Authority Key Identifier:
keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:02:a6:5e:bf:26:84:af:d0:63:7d:54:89:79:d8:98:f9:64:
2f:16:4a:81:95:44:c2:ba:fe:0e:5e:53:a0:81:ab:25:29:40:
3f:89:72:a4:0b:f0:ff:75:40:1f:13:b9:99:14:f2:10:5f:2b:
cb:93:1b:69:90:5f:cf:6e:65:84:cb:af:16:3c:68:f4:8e:65:
62:dc:00:2c:64:ff:e0:84:95:dc:60:93:65:6c:aa:0d:49:81:
4e:2c:ed:6e:69:75:76:0c:d7:f5:1a:84:70:d1:47:1e:58:a6:
04:1f:1c:99:65:96:c6:96:c9:20:57:e3:c6:0d:f1:0a:78:01:
4b:89:32:b3:b2:b2:9c:71:26:ee:fe:41:b1:4a:1b:b8:1e:aa:
83:0a:b0:c2:d9:d8:26:1a:3e:04:5c:23:4d:b1:d9:bd:37:09:
89:e5:6a:e6:59:e2:9b:9e:7a:44:5c:99:5a:71:74:06:86:9d:
8c:9f:65:ae:33:20:9c:61:8e:f5:ea:ba:5e:48:2b:63:3a:ba:
5e:a8:4b:66:8b:41:df:62:7a:6c:5f:b4:93:3a:f1:ef:dd:61:
d9:f3:73:4d:ce:1f:1d:0d:d3:75:11:f7:30:0a:80:c3:b2:08:
b5:84:9e:27:e3:b0:40:88:f5:34:30:02:ed:ce:e3:9d:34:55:
6a:56:e9:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:28 2026 by rpki-client