Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: 2HJuZWUtGs1+DJzumkC43hS46GqvCGGLjlaXzGTFXBE=
Subject key identifier: 5F:E3:93:2B:9C:8C:84:4C:B0:B1:5C:A9:7D:D9:E4:D7:F0:83:6A:D9
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 019D39AE7949A466A5E75D233EF3D53DC530
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 0514
Signing time: Sun 29 Mar 2026 13:00:28 +0000
Manifest this update: Sun 29 Mar 2026 13:00:28 +0000
Manifest next update: Mon 30 Mar 2026 13:00:28 +0000
Files and hashes: 1: hMYGnZ8V3zn1wswDkH9uB5kQnbc.roa (hash: TZ/1y+suo43ZgqAyUHnWJ81Rah/utALvEr+b4U8z1+g=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: ucIaEffDnuj3st/9sSeM8Hct81GIYdJ0x5C1Apyj8xc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:79:49:a4:66:a5:e7:5d:23:3e:f3:d5:3d:c5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Mar 29 13:00:28 2026 GMT
Not After : Mar 30 13:00:28 2026 GMT
Subject: CN=5fe3932b9c8c844cb0b15ca97dd9e4d7f0836ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:37:f1:37:08:d7:4d:7e:16:41:86:31:8f:33:
c4:e5:5a:b7:ad:d2:f7:d5:54:a4:9b:52:cf:d2:1f:
9f:bb:a0:d9:45:f4:1b:30:ef:20:c9:c1:5f:ba:a2:
35:fc:6b:c2:69:31:92:5a:fe:3e:0c:86:8c:5c:44:
ca:2b:72:ea:b9:c2:79:df:55:e5:5f:a1:33:9f:e5:
3f:45:ec:4c:83:08:5a:e3:e6:85:34:b9:a6:90:e9:
b0:58:f5:9a:97:80:72:d1:47:65:5b:77:2f:2a:d1:
20:16:20:e2:79:57:c4:cd:9d:c6:f3:a6:bc:b8:17:
1f:9e:2a:e4:8a:4d:3c:cf:a8:16:b6:39:ae:fb:5e:
11:3f:c6:ad:59:2c:45:55:11:fa:8f:2e:fe:a6:3d:
53:7d:e5:41:12:69:c1:85:02:20:78:5c:7f:42:7b:
fe:f8:f2:b6:36:40:fa:10:8c:1d:f3:50:bf:b7:1f:
23:fc:3c:7b:3f:ed:1d:18:cc:63:d7:7b:e0:ff:14:
af:dc:66:06:3b:ec:f7:f6:7b:cd:2d:bb:ff:0d:08:
ae:45:23:95:0b:42:5a:58:d5:dd:93:fc:54:6a:c4:
e1:a0:e5:fd:1a:e6:d9:4e:ba:37:11:55:51:01:8e:
4c:05:4a:ed:2f:f9:d4:71:4f:b1:53:6f:ff:bd:ba:
77:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E3:93:2B:9C:8C:84:4C:B0:B1:5C:A9:7D:D9:E4:D7:F0:83:6A:D9
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:a6:68:c2:b6:98:59:cf:9d:f2:33:25:a7:d6:c0:18:a5:68:
20:8e:28:d5:5e:3a:69:48:c6:40:8a:1a:07:23:9d:7a:1d:8f:
40:ac:e9:86:b0:bf:a6:87:76:b3:08:3e:f7:38:18:4d:0c:4a:
72:fd:c5:25:26:30:57:47:ea:9c:99:fa:d4:6b:91:fe:a5:f6:
cc:4d:74:f5:2d:48:06:ab:1a:f0:58:dc:9e:03:34:36:43:8a:
a8:2d:79:b4:30:a8:c9:ad:fb:ee:72:ea:f7:ce:26:db:9d:0f:
b9:d8:54:19:4d:e0:16:e0:9a:f8:b2:6c:95:17:1b:83:5f:27:
bd:fa:4a:e8:28:6c:37:b1:98:48:f9:ed:f0:80:53:d6:1d:c8:
4d:4d:aa:27:7d:09:bb:65:8f:6a:95:b9:26:9c:65:c0:28:fb:
0b:05:12:67:e1:80:32:4a:5c:0d:07:72:db:82:05:ad:2c:0a:
a2:75:78:11:cd:12:f7:13:48:c0:74:ae:c7:1e:1d:cb:d1:bd:
b7:46:5e:5c:a8:b6:ef:1a:c2:e9:7f:63:ec:ef:16:75:6a:aa:
ba:81:bd:f6:88:9d:79:c4:7e:a0:79:bb:ec:14:60:51:2a:dc:
77:cb:75:75:38:e9:04:2b:93:07:ce:23:d1:a1:8f:dc:46:28:
d1:2d:09:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:46 2026 by rpki-client