Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
File: 8hWid5SXEbLAHNxmnkDhcTlYVbs.mft (raw, json)
Hash identifier: 39LMl87SaWSZa9rlPj5de2GANYm9k2Tb7JTfzme4x8w=
Subject key identifier: B6:48:5F:D6:1E:00:52:C3:19:42:3D:05:AB:93:44:C3:57:B3:71:94
Authority key identifier: F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
Certificate issuer: /CN=f215a277949711b2c01cdc669e40e171395855bb
Certificate serial: 019E30051810F34288CAB2AE8D2B88511383
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 09:01:40 +0000
Manifest this update: Sat 16 May 2026 09:01:40 +0000
Manifest next update: Sun 17 May 2026 09:01:40 +0000
Files and hashes: 1: 1-c2ltkv81E7EaN3If-RGRVyYa_4.roa (hash: qSMZzei9N2ZpotVQ68DijxfquLxjFkRKA3l/57HyNug=)
2: 8hWid5SXEbLAHNxmnkDhcTlYVbs.crl (hash: uXwMSAxgFO1EA/Z1km8ZnUIooIaQYvLT3trjqHbDivE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:18:10:f3:42:88:ca:b2:ae:8d:2b:88:51:13:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f215a277949711b2c01cdc669e40e171395855bb
Validity
Not Before: May 16 09:01:40 2026 GMT
Not After : May 17 09:01:40 2026 GMT
Subject: CN=b6485fd61e0052c319423d05ab9344c357b37194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:79:3a:88:6c:6a:35:9d:48:2f:5b:29:83:4b:
0a:34:23:db:6c:89:d5:34:1c:d0:7d:a4:a9:ea:f8:
60:2a:bc:da:69:40:de:1f:c1:4f:a8:d3:98:92:b7:
00:6e:81:29:81:f6:50:07:5b:a3:30:b6:7b:7b:af:
5b:64:26:f2:c0:7c:4e:b6:7f:2c:d8:27:fc:57:15:
58:6b:a8:9f:4e:9b:3c:63:b6:9c:87:f9:1c:0e:8b:
0a:b3:8a:0e:de:c2:27:a9:c7:6c:a6:e5:ad:f6:d7:
df:f6:df:9a:40:55:fa:9e:45:59:e1:f0:2e:24:24:
dc:31:37:32:dd:98:e1:b2:1a:58:29:0c:22:ad:b0:
61:2c:4d:f3:d3:23:8f:a6:7c:d9:84:c8:49:f7:4a:
e4:99:ee:c0:49:91:7a:bf:d9:f3:51:46:28:42:3d:
88:8e:56:8b:f6:a3:c1:c3:80:c5:d2:c0:f1:c5:6f:
9a:21:d9:1f:ec:b8:df:03:12:bb:3f:a9:0d:f4:02:
68:22:5e:c6:76:49:ce:e7:be:56:27:73:37:d0:6b:
0f:f3:c5:e9:a7:21:0b:16:fc:b5:4f:44:f5:96:8a:
95:9f:12:e7:ac:9b:06:de:28:8f:85:8c:a6:0a:e9:
10:0a:3c:96:89:d1:7c:9b:19:ea:f2:bf:f2:93:29:
06:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:48:5F:D6:1E:00:52:C3:19:42:3D:05:AB:93:44:C3:57:B3:71:94
X509v3 Authority Key Identifier:
keyid:F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:22:05:af:80:04:2a:3d:21:83:55:2c:33:00:15:cb:8e:58:
fe:05:66:30:9c:10:16:af:14:4c:2d:06:50:56:1b:db:db:8d:
9d:fd:7c:0c:7e:d5:bf:98:fc:71:72:bb:d3:5d:ae:f1:19:f0:
f7:5b:9c:cd:69:f9:ac:3c:52:a1:e7:44:e6:3b:f4:69:7e:94:
9f:da:93:9f:c5:0b:ba:60:bc:e0:65:4f:bc:cb:be:02:7a:f8:
85:0a:62:72:e0:4b:ec:a2:66:51:70:66:df:ee:7b:d4:9d:2b:
f1:d6:c3:31:a3:76:2d:5b:61:01:d5:3c:82:ac:4b:3d:93:df:
ef:f7:51:3a:af:5b:d0:0b:7a:b8:b1:72:f6:ff:4c:16:a6:12:
df:85:d5:96:e1:3e:eb:39:e6:f0:1f:7a:cd:b7:31:47:a4:0e:
20:75:d8:76:2c:bc:0a:13:c1:0c:54:29:df:c4:c3:fd:b6:36:
1c:28:8c:84:c7:29:23:87:76:25:fd:a0:3e:16:b0:ae:e9:04:
d1:42:89:b6:17:d9:74:e2:6c:45:2f:9c:40:5e:3d:c7:a7:b2:
a0:f7:01:68:ae:9e:26:dc:f8:ed:27:6d:05:89:76:30:ca:c7:
4c:1c:80:95:d8:51:e2:75:f1:e3:48:53:0a:84:dc:9d:81:96:
29:2c:ea:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:24:58 2026 by rpki-client