Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/e8841f-26e3-4c63-a075-772a6b33f03e/1/8fdZtMU8ODyZC_Np45VImgPhK4M.mft
File: 8fdZtMU8ODyZC_Np45VImgPhK4M.mft (raw, json)
Hash identifier: sQsEWwD1o+jhcTymqj7jh3Su2n7rda5WNxcQj8Dc8D4=
Subject key identifier: 29:5D:98:11:FE:45:C3:D9:98:5A:9E:D3:C2:F5:02:6B:13:FD:98:FA
Authority key identifier: F1:F7:59:B4:C5:3C:38:3C:99:0B:F3:69:E3:95:48:9A:03:E1:2B:83
Certificate issuer: /CN=f1f759b4c53c383c990bf369e395489a03e12b83
Certificate serial: 019D3977832953CCE14D73CB20E2ACE0851E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fdZtMU8ODyZC_Np45VImgPhK4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/e8841f-26e3-4c63-a075-772a6b33f03e/1/8fdZtMU8ODyZC_Np45VImgPhK4M.mft
Manifest number: 25
Signing time: Sun 29 Mar 2026 12:00:26 +0000
Manifest this update: Sun 29 Mar 2026 12:00:26 +0000
Manifest next update: Mon 30 Mar 2026 12:00:26 +0000
Files and hashes: 1: 8fdZtMU8ODyZC_Np45VImgPhK4M.crl (hash: rbkz1Y/tFgRVx+NIy2td80Qt0NW8m49w/W//n0W6kaU=)
2: VpIgiDeEMf7nW9wrj8KGAz8K1aA.roa (hash: umvesd0+PZ7bymZU641FAmXWDwmpl+q6A+dAgZEThlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/e8841f-26e3-4c63-a075-772a6b33f03e/1/8fdZtMU8ODyZC_Np45VImgPhK4M.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/e8841f-26e3-4c63-a075-772a6b33f03e/1/8fdZtMU8ODyZC_Np45VImgPhK4M.mft
rsync://rpki.ripe.net/repository/DEFAULT/8fdZtMU8ODyZC_Np45VImgPhK4M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:83:29:53:cc:e1:4d:73:cb:20:e2:ac:e0:85:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f759b4c53c383c990bf369e395489a03e12b83
Validity
Not Before: Mar 29 12:00:26 2026 GMT
Not After : Mar 30 12:00:26 2026 GMT
Subject: CN=295d9811fe45c3d9985a9ed3c2f5026b13fd98fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:39:57:19:1a:0e:88:46:3e:31:72:2b:43:a7:
9d:56:c8:ad:40:d4:dd:44:0d:61:46:9d:95:ad:b0:
eb:a4:d5:b2:72:ad:de:e2:05:0e:06:4e:99:74:69:
c9:6f:54:08:55:4a:c2:31:66:ac:07:45:d2:4f:ae:
06:b3:a8:31:0e:71:f5:0e:7f:e1:86:3a:f4:1e:18:
74:0c:24:31:73:16:21:15:b1:79:58:91:f5:c1:0a:
3c:9b:22:0b:8f:26:e2:d9:3a:19:0e:51:93:a1:5e:
37:01:0d:f7:a5:b6:24:5c:33:0a:d0:15:6c:6f:e6:
6d:cf:ce:0a:68:9c:24:11:00:4e:d1:e9:cc:09:23:
ff:1f:de:01:52:0c:b4:9a:f2:d8:a2:ee:54:2d:0a:
d7:b3:e5:65:13:22:ef:0e:1f:ae:d2:d0:8b:cd:77:
80:d4:62:f8:cb:ca:dd:79:8b:ed:d2:b4:c4:f9:d0:
40:54:7e:81:fa:e1:78:c7:49:6f:fc:38:87:c5:2a:
93:2e:22:b1:1c:74:6b:ec:fe:73:56:aa:44:05:19:
16:e6:2d:3b:a1:92:1d:6a:42:33:ec:e7:06:7c:6f:
8f:02:91:6b:47:15:96:22:ac:6e:b5:0a:73:9b:62:
ab:0a:c0:a6:2c:76:fc:df:1b:a3:00:6c:ef:a5:2d:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:5D:98:11:FE:45:C3:D9:98:5A:9E:D3:C2:F5:02:6B:13:FD:98:FA
X509v3 Authority Key Identifier:
keyid:F1:F7:59:B4:C5:3C:38:3C:99:0B:F3:69:E3:95:48:9A:03:E1:2B:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fdZtMU8ODyZC_Np45VImgPhK4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e8841f-26e3-4c63-a075-772a6b33f03e/1/8fdZtMU8ODyZC_Np45VImgPhK4M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e8841f-26e3-4c63-a075-772a6b33f03e/1/8fdZtMU8ODyZC_Np45VImgPhK4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:33:91:07:99:61:6f:b1:f3:50:ac:a1:bf:8a:5e:d6:cc:f2:
c8:5a:7c:95:1d:b9:a3:16:bf:e0:7d:aa:0a:da:a2:47:49:2b:
fb:b0:00:36:95:2d:f5:1e:8d:a6:59:1b:c7:32:40:69:8e:1a:
a5:cf:4b:ac:8e:bc:7c:4b:ba:aa:e9:55:ca:88:ef:4c:6b:05:
dc:19:35:d1:be:12:70:3c:38:0c:bb:67:48:d9:00:e7:b0:7a:
a1:13:60:0f:c9:66:f8:d0:a8:2d:ac:dc:c8:59:f0:44:e7:0b:
15:5f:be:05:43:d0:fd:f6:d9:8e:fa:2d:70:f7:9f:98:ae:f9:
0a:71:96:db:94:d2:7f:b2:d0:6d:4a:d9:95:55:ef:1c:7f:f2:
27:4c:f1:53:9c:bc:44:38:85:66:03:9a:40:d8:3d:ae:71:94:
b9:ef:07:a1:5c:84:c0:c6:e5:a5:7d:13:3a:f8:06:23:36:69:
31:6e:4f:5c:cb:0c:6e:a9:98:bb:6c:91:cd:79:41:b1:da:f5:
af:29:92:00:fe:cd:2e:f3:61:db:58:eb:9b:c9:9f:60:28:5c:
d9:cd:7d:df:73:8e:0b:9b:00:4f:21:1c:2e:65:08:c5:2f:26:
dc:b1:9f:77:80:97:3c:b9:e6:60:d4:5f:2c:4e:84:98:f6:66:
ba:8e:9e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:29 2026 by rpki-client