Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: rrE4uKBw4Q4yhEdyiGV+K3rN+p0sZC24DNokQHjpmmU=
Subject key identifier: 2A:4D:FC:89:56:9B:B2:02:B9:27:0A:9C:E5:A7:AF:3C:77:E5:57:E6
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 019CE7EE1360B5352340653B6C8038D3E16C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 187A
Signing time: Fri 13 Mar 2026 16:01:05 +0000
Manifest this update: Fri 13 Mar 2026 16:01:05 +0000
Manifest next update: Sat 14 Mar 2026 16:01:05 +0000
Files and hashes: 1: 5CrZJSgU3umnhBpv3SBW8GVEgqE.roa (hash: 2gixcHV7KBq6bvuQpRe8OX0ebav7J2q4kd7P6HGr740=)
2: 66eo3bJdi9RGbEdDXS4tD5cqq_o.roa (hash: 5t8peN4WCQBgYdxTrPyY0DXm3aBeHyQsSo4GmYIKBxg=)
3: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: QnEzBENrQPsISviluEba5b33YKMEePFOk4Ij5BsEMV8=)
4: K_ZSiUHd1rB1pcqdi19och0DGOM.roa (hash: 8mJ7F1VxOqtPJAA3HEixFXJNyvdHfHViy/fRZXdsxig=)
5: QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa (hash: umOLljeZUfmplY2DajwQdgANFJvFzfTBHi6UK1dXAg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 16:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:ee:13:60:b5:35:23:40:65:3b:6c:80:38:d3:e1:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Mar 13 16:01:05 2026 GMT
Not After : Mar 14 16:01:05 2026 GMT
Subject: CN=2a4dfc89569bb202b9270a9ce5a7af3c77e557e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:40:22:67:17:68:cf:7a:2a:9d:55:ff:96:
28:ee:1d:31:78:e9:ae:75:67:7f:64:bb:47:09:e4:
52:80:c5:5a:9f:3c:19:65:a9:05:2f:05:66:43:c3:
2b:07:e9:08:f4:87:3d:d2:8f:ae:7d:03:42:8a:86:
f7:a1:20:69:4e:43:66:89:02:2d:aa:b7:7c:b2:34:
6d:33:ff:87:23:fc:5d:c9:81:e3:cf:ca:d5:3d:13:
62:df:23:54:fa:46:c0:37:d4:ac:c7:b0:19:eb:ae:
22:b8:b9:36:d5:2e:d5:c9:ea:3b:83:ab:9f:e7:6b:
cd:8f:1d:6f:2f:8c:58:5c:b6:ec:88:47:75:f8:46:
ea:d5:43:d0:82:a7:d0:94:ea:ef:72:e9:cd:56:67:
87:bf:61:83:18:0f:c6:da:88:2f:6f:ce:b2:7c:56:
a7:db:3c:f3:dc:d0:f1:e5:8d:93:43:51:98:1d:24:
89:f4:b6:91:82:c7:b7:4c:db:0d:da:a4:ad:b5:28:
2b:30:21:98:ff:e2:57:6e:6a:f2:9f:08:99:71:87:
4a:75:87:c5:58:aa:ff:73:24:75:b3:04:e9:1d:03:
6c:4c:62:6f:2b:f4:76:b6:88:36:05:5e:cd:9e:aa:
78:26:2d:ce:e6:12:fd:e4:e1:d4:e2:4d:c3:70:b3:
fc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4D:FC:89:56:9B:B2:02:B9:27:0A:9C:E5:A7:AF:3C:77:E5:57:E6
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:aa:e4:88:e4:d8:05:38:b3:fb:ac:e1:a7:cd:00:cc:c8:ee:
54:5d:14:d8:e7:62:d9:1f:ad:a5:d3:a0:65:e3:a7:9d:5c:e9:
c7:20:ad:15:93:a6:ff:d3:78:1e:fe:10:c4:aa:04:0e:26:6b:
3d:b6:13:2a:12:aa:d6:22:45:b2:61:18:35:39:1d:07:55:1e:
e0:47:d2:18:ee:ef:0a:91:27:ab:c4:de:03:30:4e:72:1e:75:
7d:1c:c5:b5:3a:0f:b8:c5:be:ef:4a:1e:fa:b1:df:f3:81:cf:
30:24:81:00:d3:76:a2:52:f7:1f:21:d9:3e:40:47:6f:03:c6:
57:df:30:c2:ac:4b:7e:cf:d9:a6:ab:60:29:d6:b6:d7:b1:eb:
fd:f8:92:8b:b1:5f:ca:2d:76:34:a8:24:46:42:54:df:40:04:
c6:1d:9f:b0:a6:bd:28:eb:96:f9:f0:99:c7:16:3f:c9:e3:ab:
fc:ab:6f:7d:52:97:89:d2:cc:ed:ee:dc:a4:ce:2b:8b:4f:0d:
af:40:79:26:78:d0:bb:80:d0:e1:b7:33:d4:60:45:4c:82:61:
d2:c2:4a:30:1e:b7:02:28:43:ca:b1:e5:c1:27:67:73:2b:0f:
b1:95:92:61:90:68:c9:25:fd:da:7d:2c:0e:2f:37:f0:80:0f:
c0:a0:ec:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 21:31:33 2026 by rpki-client