Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: Gs0m8veT2PcswyKh6f2R9e//OXHsDI2ZInIaDLIrvBM=
Subject key identifier: B4:73:18:7F:E0:15:EC:8D:97:FF:3F:C4:F3:F6:B9:FC:F7:83:51:77
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 019E32CF534267EAE15D20DA8F8CC24A36F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0CA2
Signing time: Sat 16 May 2026 22:01:48 +0000
Manifest this update: Sat 16 May 2026 22:01:48 +0000
Manifest next update: Sun 17 May 2026 22:01:48 +0000
Files and hashes: 1: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: kW+3QYg7KYkUxLSQ7MhyuOiv9qjPqVJMjGg1ttiKxhE=)
2: xMgS7QD9_G9EOx5x98EDuY-9yGs.roa (hash: hMlsCv6vl96geP53LLF12LxkGDU69mGZggpEWqFm3G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:cf:53:42:67:ea:e1:5d:20:da:8f:8c:c2:4a:36:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: May 16 22:01:48 2026 GMT
Not After : May 17 22:01:48 2026 GMT
Subject: CN=b473187fe015ec8d97ff3fc4f3f6b9fcf7835177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d8:46:16:89:40:92:cf:c8:4f:60:97:7b:bf:
b1:16:7a:f4:a9:6c:57:0c:cf:09:36:0b:4e:5f:85:
b7:5e:c3:b0:be:0f:e1:08:26:99:9c:ad:85:84:5a:
18:50:92:ff:5e:2c:ca:02:3e:e7:e0:63:2e:5d:a7:
d6:ff:95:e0:eb:52:e5:bc:c9:23:3a:15:24:aa:e8:
b0:02:91:5c:6f:c0:56:c1:5e:d5:1b:bc:c0:8b:db:
32:5f:af:9a:7e:7e:ae:36:db:d2:16:3b:10:94:17:
c8:d1:e9:a9:7a:82:49:4e:f2:c3:e4:51:68:14:04:
46:f1:0c:8a:f9:8f:10:e6:f8:63:9c:93:a9:f8:c6:
21:c3:9a:26:4d:08:8d:b9:e1:0e:b3:7a:b9:d1:bf:
24:c9:91:b0:65:7c:4a:0b:b2:83:66:27:73:77:14:
e6:9c:53:45:b9:ca:a4:e3:a9:f3:58:f6:81:a1:a6:
8a:c0:2c:11:fa:b7:63:de:7c:c4:06:71:79:24:06:
8d:30:89:fb:9f:2d:be:5a:fd:34:9e:40:28:4c:f0:
a8:fa:b4:04:b6:2b:d8:76:b0:f2:f3:e6:f5:20:e7:
fb:3f:87:cf:c7:5b:69:8c:89:cd:9d:74:d4:6d:cd:
ed:aa:33:5c:37:44:f0:14:7f:86:a5:9a:4a:2e:04:
4d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:73:18:7F:E0:15:EC:8D:97:FF:3F:C4:F3:F6:B9:FC:F7:83:51:77
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:c9:e9:36:93:c1:04:e8:15:f3:ec:8b:d6:dc:0b:ca:50:b9:
df:1c:f9:81:96:40:f3:e7:f2:34:9a:8a:5a:6b:3c:cd:d9:58:
78:d7:ee:01:31:f4:6f:92:70:9a:ed:97:bc:d3:ff:0a:bd:cb:
62:53:5e:db:a2:69:7e:a9:d5:b7:21:17:54:c9:fc:4a:f9:60:
d2:ef:53:3a:50:db:09:5a:c7:f9:87:cd:c2:91:0b:0c:ad:64:
fe:dd:b4:bf:51:8f:1e:c0:a3:ce:02:99:fa:1d:98:75:86:c1:
6c:fc:89:cc:6c:0a:8d:4f:ce:a2:8c:b0:00:b6:c5:60:9d:d1:
36:e7:72:d5:aa:d1:81:63:77:95:df:cc:7e:27:ac:d1:b5:d6:
ce:0b:8a:49:f6:be:5a:90:af:0d:4d:f4:7f:aa:c4:b8:25:28:
78:ad:e0:6a:2d:3a:cd:33:65:4b:45:c0:f2:c5:d6:5a:4e:8c:
5f:ab:7b:48:09:87:49:68:bf:f6:37:ed:55:ed:b6:8a:a2:0b:
f3:e8:5c:77:1d:fb:6f:37:02:d0:bf:36:8d:f0:2e:bd:d4:8a:
4c:1c:2c:14:92:4a:60:61:e0:fe:46:93:6e:6a:03:d8:1e:9b:
e4:e9:b4:e6:ab:4a:63:c0:5e:ff:1b:cd:da:7d:40:6e:5f:55:
a5:b5:24:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 02:07:24 2026 by rpki-client