Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
File: 8hWid5SXEbLAHNxmnkDhcTlYVbs.mft (raw, json)
Hash identifier: 1BLMc7evLTNhkXvlXK3jkEDHIMxveaEagyv805QaR+4=
Subject key identifier: D9:1A:63:AA:47:1D:7E:AE:F8:F0:38:FB:82:8C:B9:0E:D5:E5:E9:05
Authority key identifier: F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
Certificate issuer: /CN=f215a277949711b2c01cdc669e40e171395855bb
Certificate serial: 019F17C305268F075338AF2FCCE3268C2074
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 09:01:24 +0000
Manifest this update: Tue 30 Jun 2026 09:01:24 +0000
Manifest next update: Wed 01 Jul 2026 09:01:24 +0000
Files and hashes: 1: 1-c2ltkv81E7EaN3If-RGRVyYa_4.roa (hash: qSMZzei9N2ZpotVQ68DijxfquLxjFkRKA3l/57HyNug=)
2: 8hWid5SXEbLAHNxmnkDhcTlYVbs.crl (hash: KyHgVpWQQYuJbksSFkszouRCbRCgohOqO9PP227bcZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c3:05:26:8f:07:53:38:af:2f:cc:e3:26:8c:20:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f215a277949711b2c01cdc669e40e171395855bb
Validity
Not Before: Jun 30 09:01:24 2026 GMT
Not After : Jul 1 09:01:24 2026 GMT
Subject: CN=d91a63aa471d7eaef8f038fb828cb90ed5e5e905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:c4:70:ae:f0:8b:71:96:d3:d5:96:91:41:
ba:7e:47:96:f2:42:4e:6f:4e:d4:74:ab:e4:44:e4:
e9:69:fd:ed:1b:b8:ba:d8:59:ee:74:fc:df:41:bf:
c5:c3:31:b0:fa:29:fc:5f:61:c9:96:ef:52:d8:a2:
e4:ea:78:96:c0:d1:ce:42:0b:e6:ce:a0:db:0a:77:
86:b6:e5:70:0b:8f:c8:5b:46:3a:4a:54:82:9a:e4:
74:ef:75:d9:11:52:95:b7:19:ab:eb:77:19:27:11:
8f:3a:ff:fb:f0:39:f2:64:26:57:c1:c7:ff:ed:4f:
0b:40:0e:11:79:36:8d:a4:b9:47:ff:43:4c:5d:81:
01:0d:0c:ee:f9:c8:bc:b3:5d:e3:a3:12:78:fe:ad:
5e:47:7e:de:bc:01:65:5f:0c:70:45:80:ce:c9:dd:
79:a3:54:94:08:c9:dd:25:28:c6:cb:80:2c:1d:07:
dc:fe:d1:b8:b4:8a:c0:9a:51:ae:c3:6c:42:49:1f:
5f:4e:2a:16:28:af:aa:1e:2a:59:18:d1:bf:03:f4:
52:92:2a:f0:e8:31:aa:48:aa:f1:d7:06:f4:61:dc:
5c:2a:25:27:85:ae:a2:44:fd:9f:e2:e3:ff:bb:9f:
b3:98:52:3f:a6:a8:cf:0e:3a:62:ea:21:c4:59:08:
b1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:1A:63:AA:47:1D:7E:AE:F8:F0:38:FB:82:8C:B9:0E:D5:E5:E9:05
X509v3 Authority Key Identifier:
keyid:F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:f4:00:29:cf:9a:04:e2:f7:c4:8b:df:8e:6f:84:9e:2f:ca:
35:e5:c1:e7:40:9e:2e:88:09:27:92:a6:6f:4f:d0:ad:52:1d:
d9:9b:da:65:78:1b:c9:7e:00:1d:aa:a6:90:6b:cd:68:95:f3:
de:84:3d:34:52:a7:4f:28:5d:63:8a:34:1e:bd:e1:5e:37:10:
e9:b4:d1:1b:36:92:14:f4:ad:ab:75:ed:7d:3b:94:ce:56:cb:
66:73:53:cb:6b:63:7e:48:c8:9d:e8:53:3a:10:6f:77:cc:b6:
6c:a5:5f:f0:63:31:ff:f2:b1:f9:71:9b:51:8c:f0:90:8d:bc:
9b:5a:a7:9f:58:a6:65:73:15:2c:00:60:1f:c5:be:d5:87:90:
08:a1:25:a8:d9:98:ad:b3:9f:e2:3e:a1:d7:4d:c4:02:79:41:
20:2b:d3:6e:24:76:1a:e9:85:13:28:a8:25:98:d4:02:80:b4:
42:0e:54:f9:e1:ba:fa:0b:3d:a4:8b:15:d7:1e:b8:ed:c4:e1:
15:fe:7c:57:f2:f7:95:02:e8:67:e2:36:82:f6:37:9b:9b:ef:
01:ca:5f:8d:79:d5:b5:b1:0f:70:c5:ec:11:f6:a5:1d:50:60:
13:61:11:d3:83:c1:71:f3:cd:dd:37:f2:20:79:4e:ab:f4:7a:
d5:2d:49:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:18:51 2026 by rpki-client