Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
File: 8nptTTKDKDFyXEjbUYokAPGpJL0.mft (raw, json)
Hash identifier: QWFF7sZcsq1MIrJJebc36UeSReRiv1pxMciy7BRZN8U=
Subject key identifier: DC:D0:B5:C5:46:61:B6:B0:3B:6E:A9:77:9E:BA:FE:40:99:21:93:03
Authority key identifier: F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
Certificate issuer: /CN=f27a6d4d32832831725c48db518a2400f1a924bd
Certificate serial: 019D3488DE13E13C49767DFE1348CCDE0B5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
Manifest number: 179F
Signing time: Sat 28 Mar 2026 13:01:17 +0000
Manifest this update: Sat 28 Mar 2026 13:01:17 +0000
Manifest next update: Sun 29 Mar 2026 13:01:17 +0000
Files and hashes: 1: 8nptTTKDKDFyXEjbUYokAPGpJL0.crl (hash: gO7pZMQLjsbIzJUJ2qI/N+vQZZA2oXEE5QdK5ipthEU=)
2: lWqEQF0aFyTLgW-NFz8-Hzv0C6U.roa (hash: ht7qKNgmNwlg0mr9NDGMiwl5H8f2BO9IP2v8m07eRCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:88:de:13:e1:3c:49:76:7d:fe:13:48:cc:de:0b:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27a6d4d32832831725c48db518a2400f1a924bd
Validity
Not Before: Mar 28 13:01:17 2026 GMT
Not After : Mar 29 13:01:17 2026 GMT
Subject: CN=dcd0b5c54661b6b03b6ea9779ebafe4099219303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7a:fb:a1:0b:68:46:16:ed:8f:c0:6b:f6:ef:
75:be:3d:88:b9:1b:f1:47:c8:08:1f:cb:03:a6:e8:
e1:cf:b2:8b:c8:83:35:bc:ad:76:64:42:04:ce:d6:
5d:8c:66:da:ec:47:96:78:e2:96:bb:be:9a:10:c4:
d8:ce:9d:1e:f3:74:c2:e1:2f:f5:10:c3:ec:c0:eb:
ca:b6:94:a1:06:0b:4a:03:f3:d3:f1:88:9b:ad:c0:
d0:cf:14:86:fa:b0:74:9d:53:38:b7:68:69:4e:e9:
6a:57:3f:0c:f8:c1:49:2f:06:f7:24:14:7b:c4:9f:
e1:b0:fc:31:0c:15:4f:05:c5:f0:e5:0d:31:ea:56:
d3:ff:34:8c:e9:a7:b7:48:87:10:b0:1b:e5:fa:c4:
5b:fe:0e:bf:da:36:92:5f:7f:bf:23:d1:22:27:fe:
35:f3:de:cf:ec:4f:ae:66:6f:24:c7:52:96:05:35:
2b:f7:da:80:e8:58:e7:35:e7:5a:b1:b2:b9:ff:ff:
5a:f5:d1:80:0f:50:22:49:82:95:64:ee:d8:74:20:
18:25:1f:b6:5d:c9:b5:2b:37:f0:ed:06:9a:2c:2d:
ba:33:81:76:ba:ea:79:64:49:a0:8d:b3:84:f1:09:
0f:92:f7:f4:6e:11:35:01:f3:75:08:73:45:85:d0:
4b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D0:B5:C5:46:61:B6:B0:3B:6E:A9:77:9E:BA:FE:40:99:21:93:03
X509v3 Authority Key Identifier:
keyid:F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:fa:4b:d2:4b:df:07:c8:8f:bf:ab:0f:26:ce:95:cd:22:f2:
81:e3:73:50:9b:19:49:52:94:01:be:18:cb:4a:2e:79:d6:d9:
3f:3b:44:72:6f:e8:0a:62:75:e4:4f:4a:06:9d:20:a5:0a:4c:
34:3b:dd:17:3b:a5:6d:c1:26:fc:cb:bd:7b:a2:69:5f:9f:7a:
08:0f:37:f2:4e:3c:bd:16:fa:36:00:81:ad:ee:d9:32:28:a9:
b5:6a:72:96:52:7c:1f:e9:5c:78:54:d4:3a:bd:3b:b9:30:47:
65:f8:73:02:83:22:ec:54:5d:f6:ba:69:2e:aa:a9:bc:dc:45:
67:11:a4:48:f3:53:43:7f:9e:d2:7c:ed:47:3a:aa:f4:d4:b8:
76:a2:87:ce:ec:d5:3c:3a:72:20:03:4d:f8:c7:eb:0e:e6:55:
99:3f:76:5d:1a:0f:d2:e8:b4:0a:ea:39:ac:74:23:92:d6:4b:
a4:34:b9:58:aa:f6:86:b6:51:d2:be:32:ed:1b:58:12:3f:42:
e3:62:db:ca:ed:1f:62:8f:24:ce:d6:05:61:59:10:c2:cc:ee:
43:7a:9e:7a:99:50:51:d8:f5:e8:44:95:70:56:84:ec:cf:8c:
d0:73:82:ed:fb:65:f7:8d:a4:1e:a0:45:3a:07:60:a2:fb:42:
e8:ad:6f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 19:48:28 2026 by rpki-client