Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
File: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft (raw, json)
Hash identifier: JsEkxnMtvP7LwHag0vx6ekit3ST7KnF6B0rUrdRBDNs=
Subject key identifier: BC:E5:BB:E2:3C:2A:5E:F5:E6:0B:CE:36:1B:58:02:F7:EF:44:B6:AC
Authority key identifier: EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
Certificate issuer: /CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Certificate serial: 019E2FCDF1A7956EAE12FA869B180EAE94A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
Manifest number: 121C
Signing time: Sat 16 May 2026 08:01:26 +0000
Manifest this update: Sat 16 May 2026 08:01:26 +0000
Manifest next update: Sun 17 May 2026 08:01:26 +0000
Files and hashes: 1: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl (hash: x6wdySnNr7BorLIc0gjSb7kLJOJYCRWrbmC8WyfJq/0=)
2: srgFShOceYZc8BEx-4KRd7_dBNs.roa (hash: s6LZiMCYlJdzG+ZeLeEfHIvrSApv9TQoNoxc3N5VXmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 08:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:cd:f1:a7:95:6e:ae:12:fa:86:9b:18:0e:ae:94:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Validity
Not Before: May 16 08:01:26 2026 GMT
Not After : May 17 08:01:26 2026 GMT
Subject: CN=bce5bbe23c2a5ef5e60bce361b5802f7ef44b6ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:83:7e:a5:23:89:31:cf:9c:1a:8d:cd:80:
83:65:47:f0:78:9f:26:2d:ba:4b:ac:67:35:bc:ea:
6d:fb:2a:4f:b9:b4:06:13:e7:37:9e:f8:d2:06:45:
ab:71:84:a4:64:7c:e7:8e:cf:cd:e6:f0:60:f0:39:
20:ab:d8:23:44:45:5a:68:86:bd:c3:50:49:44:71:
86:26:4f:02:2a:ca:78:29:63:81:41:57:6e:16:46:
ea:ed:c1:68:f5:53:d2:78:cd:b3:71:c6:d9:c7:15:
4d:3f:c6:e6:c3:e9:06:9a:d3:0d:7a:16:09:06:c3:
8f:51:9d:89:6e:d9:c5:47:70:ad:39:e2:72:06:16:
b5:a8:3d:7b:3f:f2:de:bc:49:d3:d2:c1:00:8a:81:
fe:81:95:74:c2:ee:c0:67:38:7f:8c:e6:4e:2c:71:
0b:3b:97:9b:3d:55:04:18:8a:e0:94:03:68:d1:a3:
4a:c0:23:ad:99:8f:d2:5c:c1:66:29:98:18:c9:bb:
19:21:c6:81:37:75:db:d0:aa:0f:16:be:56:62:77:
32:50:37:7f:6f:a1:4a:59:62:13:27:f7:aa:ce:b4:
db:48:94:06:59:25:60:21:e5:9d:ec:35:79:a5:bd:
a1:bd:70:e0:c9:12:fb:69:b9:95:a5:46:73:ba:67:
0c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E5:BB:E2:3C:2A:5E:F5:E6:0B:CE:36:1B:58:02:F7:EF:44:B6:AC
X509v3 Authority Key Identifier:
keyid:EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:e8:02:62:ef:76:b9:35:31:91:20:03:c6:66:30:fb:1b:a2:
e3:08:ad:cf:e9:bb:90:f3:fe:3b:83:da:b0:63:87:82:a5:17:
de:07:98:61:dc:a4:d4:bc:e4:b9:45:51:96:e4:79:4d:0e:18:
99:ed:3f:aa:70:c8:b1:ad:ac:5d:1a:54:07:0b:1c:e6:8b:f8:
16:f0:02:b4:6e:59:74:1a:c2:16:93:01:d2:04:ed:c5:65:b7:
13:73:f4:f6:f9:a2:86:18:ff:b8:31:36:83:a9:65:26:d8:23:
3c:33:42:ea:a1:46:18:0d:6b:c7:74:41:72:3c:be:e0:e6:20:
80:fd:c1:54:74:1c:b4:7d:1e:ba:a1:0a:38:53:ab:fc:53:9e:
e7:50:f5:c5:e3:6a:04:25:fb:80:2f:0b:18:ac:7c:82:5b:db:
b8:40:76:39:4d:be:7c:51:15:b0:fe:18:93:8e:ef:43:ee:33:
2f:20:d0:93:59:92:a0:f2:49:9e:69:b4:99:92:e6:d1:4c:46:
f3:cd:62:ba:ff:26:23:a0:fc:29:38:36:8b:2c:b3:df:3e:78:
6a:0e:13:81:25:24:f3:76:c6:6b:58:bb:95:4a:7d:e5:66:1c:
86:c3:95:56:a6:62:9b:7f:cd:6e:c8:3d:bc:9d:96:6b:cc:d2:
6c:d9:f1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:38:51 2026 by rpki-client