Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
File: 8nptTTKDKDFyXEjbUYokAPGpJL0.mft (raw, json)
Hash identifier: gaHkOC99wU7iODwLcsiSm+RwuXHexwkPQI7NxWFQVf8=
Subject key identifier: 48:89:FB:F2:27:B9:F3:EB:78:9A:98:47:BC:51:8E:1E:47:E5:6F:D0
Authority key identifier: F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
Certificate issuer: /CN=f27a6d4d32832831725c48db518a2400f1a924bd
Certificate serial: 019E2F96BA78C65ACBABC39B064C0F367667
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
Manifest number: 1821
Signing time: Sat 16 May 2026 07:01:07 +0000
Manifest this update: Sat 16 May 2026 07:01:07 +0000
Manifest next update: Sun 17 May 2026 07:01:07 +0000
Files and hashes: 1: 8nptTTKDKDFyXEjbUYokAPGpJL0.crl (hash: vkrwYZju1zeb138oNEIksvSJ3VM6YUM1JNs9WKV19HI=)
2: lWqEQF0aFyTLgW-NFz8-Hzv0C6U.roa (hash: ht7qKNgmNwlg0mr9NDGMiwl5H8f2BO9IP2v8m07eRCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:ba:78:c6:5a:cb:ab:c3:9b:06:4c:0f:36:76:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f27a6d4d32832831725c48db518a2400f1a924bd
Validity
Not Before: May 16 07:01:07 2026 GMT
Not After : May 17 07:01:07 2026 GMT
Subject: CN=4889fbf227b9f3eb789a9847bc518e1e47e56fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d8:39:0e:22:a9:02:4a:20:32:8a:f7:32:6e:
87:69:35:92:e9:47:2e:b9:7d:d3:98:76:a8:a5:61:
3e:9f:65:92:2f:39:05:fc:c8:96:35:98:09:d6:a2:
55:2a:8f:8e:ec:93:a4:e2:42:97:e3:95:a8:67:d4:
39:27:09:5f:3d:a3:10:17:41:e3:d4:ef:f0:d9:7a:
4c:99:1a:11:d8:16:2f:4a:0d:dd:6c:05:04:91:47:
38:18:51:79:4b:b7:f3:4b:e3:67:89:47:89:80:57:
81:10:fd:6a:02:ee:89:53:5c:37:54:38:38:dd:9b:
33:50:21:20:68:e4:15:97:dc:d0:20:b8:c7:a0:7c:
65:6d:9e:15:dc:f0:69:b9:2d:fb:19:c4:f9:4f:76:
6e:34:ea:e2:70:4f:e9:9d:8c:01:4c:bb:84:b5:8c:
ed:29:dc:6c:f0:87:a0:19:a1:da:4d:94:2c:47:8f:
78:92:97:b2:66:e5:1b:de:c8:31:9c:85:75:f7:5d:
b0:b5:9f:d6:55:56:cc:36:1b:36:93:81:c8:cf:4e:
56:c9:d9:81:3d:a1:bb:57:d3:39:93:ca:52:c3:20:
0d:5f:ea:6a:d0:f9:e9:fd:87:73:3b:05:c4:ec:13:
d8:e3:ea:b1:39:3a:4c:e5:02:36:8a:d1:f9:ed:4f:
11:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:89:FB:F2:27:B9:F3:EB:78:9A:98:47:BC:51:8E:1E:47:E5:6F:D0
X509v3 Authority Key Identifier:
keyid:F2:7A:6D:4D:32:83:28:31:72:5C:48:DB:51:8A:24:00:F1:A9:24:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nptTTKDKDFyXEjbUYokAPGpJL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/28f8ec-e577-4752-8685-1573ef6271eb/1/8nptTTKDKDFyXEjbUYokAPGpJL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:a2:94:4b:4f:30:42:83:88:9f:36:71:16:9e:0f:d1:85:e7:
2a:26:24:1b:cb:fb:e6:89:94:9a:c6:14:85:b5:53:b9:9e:7a:
9b:19:8a:9e:5f:54:54:c4:9f:d5:fe:a6:ab:4f:4c:ac:77:27:
14:1f:0c:41:b8:05:ee:c4:14:85:56:05:3e:a6:9f:27:e6:4d:
f2:50:bc:8f:19:6e:43:aa:3b:f4:21:bd:94:a4:d7:2b:7a:79:
64:e7:b3:fb:97:c0:c5:7b:64:3a:03:00:0f:6e:7a:ac:b8:d7:
58:96:c7:2a:86:a5:8c:3d:fa:45:4c:2b:ea:82:d3:ae:ab:8c:
eb:19:d8:b6:4d:02:c2:fb:c0:b1:fe:68:36:0d:2e:56:5c:2b:
79:4a:e9:45:b0:4d:21:7f:85:74:3c:3e:bf:4e:2d:85:c9:79:
d3:7f:d0:0c:64:f5:36:34:2d:10:33:42:8d:c1:d5:44:98:44:
f1:ab:02:a0:1a:72:5e:a1:58:bb:3a:b0:d9:d4:b7:f5:a5:c6:
ef:b2:18:ff:10:f3:da:2f:b8:e1:64:f1:49:3d:00:53:3d:8b:
11:5e:ce:bf:42:3a:8c:ad:fc:fd:06:4c:ed:60:e9:c8:a8:b6:
df:b3:1a:5c:1c:50:fc:59:fe:3f:4a:a8:70:1b:66:3b:e5:f3:
20:b7:f9:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlrp4xlrLq8ObBkwPNnZnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyN2E2ZDRkMzI4MzI4MzE3MjVjNDhkYjUxOGEyNDAwZjFh
OTI0YmQwHhcNMjYwNTE2MDcwMTA3WhcNMjYwNTE3MDcwMTA3WjAzMTEwLwYDVQQD
Eyg0ODg5ZmJmMjI3YjlmM2ViNzg5YTk4NDdiYzUxOGUxZTQ3ZTU2ZmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9g5DiKpAkogMor3Mm6HaTWS6Ucu
uX3TmHaopWE+n2WSLzkF/MiWNZgJ1qJVKo+O7JOk4kKX45WoZ9Q5JwlfPaMQF0Hj
1O/w2XpMmRoR2BYvSg3dbAUEkUc4GFF5S7fzS+NniUeJgFeBEP1qAu6JU1w3VDg4
3ZszUCEgaOQVl9zQILjHoHxlbZ4V3PBpuS37GcT5T3ZuNOricE/pnYwBTLuEtYzt
Kdxs8IegGaHaTZQsR494kpeyZuUb3sgxnIV1912wtZ/WVVbMNhs2k4HIz05WydmB
PaG7V9M5k8pSwyANX+pq0Pnp/YdzOwXE7BPY4+qxOTpM5QI2itH57U8RIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEiJ+/InufPreJqYR7xRjh5H5W/QMB8GA1UdIwQY
MBaAFPJ6bU0ygygxclxI21GKJADxqSS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG5wdFRUS0RLREZ5WEVqYlVZb2tBUEdwSkwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8yOGY4ZWMtZTU3Ny00NzUyLTg2ODUt
MTU3M2VmNjI3MWViLzEvOG5wdFRUS0RLREZ5WEVqYlVZb2tBUEdwSkwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8yOGY4ZWMtZTU3Ny00NzUyLTg2ODUtMTU3M2VmNjI3MWVi
LzEvOG5wdFRUS0RLREZ5WEVqYlVZb2tBUEdwSkwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaaKUS08w
QoOInzZxFp4P0YXnKiYkG8v75omUmsYUhbVTuZ56mxmKnl9UVMSf1f6mq09MrHcn
FB8MQbgF7sQUhVYFPqafJ+ZN8lC8jxluQ6o79CG9lKTXK3p5ZOez+5fAxXtkOgMA
D256rLjXWJbHKoaljD36RUwr6oLTrquM6xnYtk0CwvvAsf5oNg0uVlwreUrpRbBN
IX+FdDw+v04thcl503/QDGT1NjQtEDNCjcHVRJhE8asCoBpyXqFYuzqw2dS39aXG
77IY/xDz2i+44WTxST0AUz2LEV7Ov0I6jK38/QZM7WDpyKi237MaXBxQ/Fn+P0qo
cBtmO+XzILf5dA==
-----END CERTIFICATE-----
Generated at Sat May 16 15:37:28 2026 by rpki-client