Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: E4b+mW91oZRp4B1GzLD93nNgKel/xM98HYtVzh8O0/s=
Subject key identifier: 1E:00:12:4F:04:BA:94:57:DD:DF:4C:41:F4:38:B0:AE:B0:6D:31:5D
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 019D37C04B63F53D6732175FB03A3F187692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 185E
Signing time: Sun 29 Mar 2026 04:00:42 +0000
Manifest this update: Sun 29 Mar 2026 04:00:42 +0000
Manifest next update: Mon 30 Mar 2026 04:00:42 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: FoHQSVmlxPvzUkGsltn3vCPqDRCIoKx91dhun4j/ZsI=)
2: 9vmezDMgMLAYgubj0dZwQBpw7Zo.roa (hash: QLo0rxDXf9m7rqbC9zynXdEyUGpcYsQ8wFalcr82vIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:4b:63:f5:3d:67:32:17:5f:b0:3a:3f:18:76:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Mar 29 04:00:42 2026 GMT
Not After : Mar 30 04:00:42 2026 GMT
Subject: CN=1e00124f04ba9457dddf4c41f438b0aeb06d315d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:81:9a:b0:dd:78:88:c7:69:28:e7:08:cb:96:
ce:a8:77:32:ef:69:f9:53:9f:8a:ef:41:88:22:12:
9f:b0:0c:36:7a:c9:d1:f4:32:2c:cf:ae:96:af:1d:
03:11:7c:52:de:ea:c2:7d:ff:aa:aa:3a:8b:a4:81:
6d:3f:03:5d:07:a1:bc:12:ab:49:bb:22:ee:5e:5e:
73:e9:7a:fe:85:c0:b4:7f:76:6d:ff:58:f7:fe:f1:
99:23:fd:0c:23:03:a1:40:8b:5e:9c:86:b2:2e:10:
7b:00:2a:e6:f3:80:d4:71:5e:01:4f:d2:bb:b3:ae:
67:ae:04:c7:1c:4b:f9:59:c7:c5:5a:4c:8e:12:44:
25:da:7f:87:ac:6c:2c:bd:6b:9c:6e:1d:fb:6e:27:
94:cf:67:46:02:a7:21:8b:af:61:ed:ab:52:8a:be:
42:ea:4f:0d:ac:4a:3a:14:db:54:71:17:38:56:bf:
e0:ff:7e:92:c3:e9:c7:dc:c9:24:62:ce:72:04:b9:
79:05:eb:cd:31:a7:5e:3f:c8:fb:16:06:6d:e8:1e:
ce:13:25:7b:e9:44:25:8c:0c:5b:ee:05:26:d6:ea:
84:45:f8:f9:21:d0:25:49:56:f5:ac:85:aa:76:6b:
9d:99:b2:ac:b3:a4:33:ef:13:52:d8:f7:55:10:bc:
80:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:00:12:4F:04:BA:94:57:DD:DF:4C:41:F4:38:B0:AE:B0:6D:31:5D
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f8:d8:a1:b3:fa:b7:fe:cf:88:f4:6d:ee:07:d3:0b:06:23:
4a:12:5e:1a:bf:c7:4e:7d:76:03:2d:84:bf:fe:36:32:85:c7:
94:ab:e1:ce:c7:80:8f:34:6d:f0:e9:61:f9:6a:2c:0a:80:ed:
88:7d:10:11:0e:8c:80:93:4b:c0:3c:df:33:97:26:86:52:6b:
1f:e8:b9:f2:50:b7:2a:1c:3e:9a:f6:fc:ed:9a:9a:02:38:1e:
8f:08:6b:2d:3b:7f:b6:c9:37:e2:68:f9:dd:b5:de:39:a3:23:
61:25:d6:9f:7f:8e:8d:67:fc:f1:93:9a:31:d1:15:00:49:ae:
5f:67:53:c8:8d:98:63:05:04:1a:cf:82:a1:96:12:f3:68:1b:
51:6a:1d:80:88:fa:82:77:44:20:06:74:42:a1:18:9d:74:04:
99:3d:f8:c0:eb:b1:6f:90:2b:5a:69:28:ac:51:b8:48:f7:ff:
ee:e5:ae:da:55:73:3f:28:b1:86:cf:d9:7e:2b:de:61:8f:15:
1c:be:42:ac:7d:9e:9b:02:65:4a:ac:68:ca:f3:d5:52:a5:5e:
b2:db:8e:10:68:6f:e3:10:f3:d1:b7:e4:40:27:2b:dd:82:4e:
4f:37:35:bf:f6:2f:33:76:0c:22:e9:0f:03:73:3f:8b:e0:cb:
b5:87:fd:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:05 2026 by rpki-client