Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
File: 8nptTTKDKDFyXEjbUYokAPGpJL0.mft (raw, json)
Hash identifier: IVaZGRW46EMbHszZpTzm+e0tjPCLxwz9/5JJ8pIrLtk=
Subject key identifier: CE:3F:2B:33:3B:EA:BE:99:BA:FA:C2:9F:3C:A6:D8:95:22:BE:80:9C
Authority key identifier: F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
Certificate issuer: /CN=f27a6d4d32832831725c48db518a2400f1a924bd
Certificate serial: 019F1942FA90B04D1E781AD10CD143858B5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
Manifest number: 189A
Signing time: Tue 30 Jun 2026 16:00:47 +0000
Manifest this update: Tue 30 Jun 2026 16:00:47 +0000
Manifest next update: Wed 01 Jul 2026 16:00:47 +0000
Files and hashes: 1: 8nptTTKDKDFyXEjbUYokAPGpJL0.crl (hash: Oarvzp92gdQVsedMZVQYXUTTWbacvkZIJT47Grrn0LA=)
2: lWqEQF0aFyTLgW-NFz8-Hzv0C6U.roa (hash: ht7qKNgmNwlg0mr9NDGMiwl5H8f2BO9IP2v8m07eRCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:42:fa:90:b0:4d:1e:78:1a:d1:0c:d1:43:85:8b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27a6d4d32832831725c48db518a2400f1a924bd
Validity
Not Before: Jun 30 16:00:47 2026 GMT
Not After : Jul 1 16:00:47 2026 GMT
Subject: CN=ce3f2b333beabe99bafac29f3ca6d89522be809c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:02:f6:9e:b9:da:ef:dc:14:59:e9:bf:74:63:
5c:22:9e:b2:5a:3a:9e:6b:9f:54:6b:4d:e9:c2:1f:
b5:53:ce:1d:8e:01:21:d3:2e:00:a9:4f:ad:50:28:
82:47:86:1a:db:69:16:40:be:06:57:07:23:bc:51:
b3:e8:b0:dc:06:b0:b7:c1:ee:c8:c2:e3:a3:7d:59:
4a:3b:5e:e7:de:b9:05:fd:8b:7c:7c:ee:f1:7e:d4:
e3:be:cb:09:d3:0d:68:fb:e2:54:a2:10:d6:6f:42:
55:21:68:d9:6a:fa:9f:d3:05:68:64:24:2c:9e:8b:
6a:b3:69:ba:9b:b8:b9:6e:d5:5a:86:d9:b1:f4:79:
64:8a:0a:18:89:68:98:3c:75:a0:e5:ca:ce:a3:00:
e5:f1:8f:64:90:4b:83:9a:a7:33:ae:0a:2b:ff:14:
d3:0b:b2:d0:05:b9:de:c8:19:a9:60:6b:ab:7d:c1:
f0:d9:33:35:02:58:40:c5:5c:2a:45:86:fb:64:b8:
7f:15:3c:67:87:61:ca:92:78:ed:85:86:64:43:b1:
3e:3b:c7:d5:4e:f7:e0:42:79:4a:57:80:c8:60:55:
c7:09:7d:9f:91:d3:52:c2:4b:3c:4b:f2:f3:d1:bb:
f8:b4:b7:89:33:2d:f5:34:e2:a2:6d:0e:10:de:05:
f7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3F:2B:33:3B:EA:BE:99:BA:FA:C2:9F:3C:A6:D8:95:22:BE:80:9C
X509v3 Authority Key Identifier:
keyid:F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:f1:e8:e7:db:43:95:89:e4:32:fd:b3:0b:1b:e8:f3:77:4f:
a2:2b:88:11:f0:5c:b5:85:08:50:94:b5:64:37:19:f8:05:f6:
45:c4:55:da:67:49:58:14:04:88:56:fa:3d:68:dd:61:0f:3f:
da:95:da:b3:12:ff:99:2a:70:ec:af:44:24:22:8c:75:6f:ec:
c4:98:f1:4c:70:c6:57:34:62:fa:c7:79:d8:95:3b:82:71:11:
60:fc:26:e5:84:1a:a6:4c:05:39:b5:0b:c4:b8:dd:86:fa:a8:
63:2e:69:55:bc:d9:f2:43:86:47:bb:ba:7c:63:de:24:af:a7:
7e:11:9f:ef:59:a8:e3:30:f4:0b:0e:c3:1c:ac:55:ba:e8:c1:
6c:97:eb:e7:5c:5a:2d:16:51:03:65:58:0e:7f:8f:ff:3d:c2:
43:09:00:47:21:2a:4e:e6:70:5c:74:e9:b2:94:aa:fd:45:fa:
02:66:6e:ff:a3:34:b5:ed:ff:4c:54:fa:04:4e:fe:61:3d:00:
16:59:7e:a9:77:85:f2:a9:e3:34:2f:13:26:e0:ec:16:06:01:
eb:1b:9a:67:cf:bf:b9:f9:53:ea:70:f2:f8:64:9a:bf:79:9a:
6b:22:7a:d7:f7:2c:eb:b2:a7:73:cb:7b:ef:d8:16:83:6b:a2:
9f:cf:93:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:16:07 2026 by rpki-client