Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
File: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft (raw, json)
Hash identifier: QZoHkvuMwB9NMsSBIg8jEZVfzx7cEH5DEkaGJVaUd30=
Subject key identifier: AB:95:30:9B:B7:16:94:38:15:D5:17:06:C4:2D:F9:7A:5E:8E:69:57
Authority key identifier: F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
Certificate issuer: /CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Certificate serial: 019E2F96BE0EB89DE166D8E961393ADB5C73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
Manifest number: 15AF
Signing time: Sat 16 May 2026 07:01:08 +0000
Manifest this update: Sat 16 May 2026 07:01:08 +0000
Manifest next update: Sun 17 May 2026 07:01:08 +0000
Files and hashes: 1: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl (hash: 1y+Gt4wDaSlwfvoy1reWLhY88nbLMxIMlZTSS1wVHn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:be:0e:b8:9d:e1:66:d8:e9:61:39:3a:db:5c:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Validity
Not Before: May 16 07:01:08 2026 GMT
Not After : May 17 07:01:08 2026 GMT
Subject: CN=ab95309bb716943815d51706c42df97a5e8e6957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7f:76:b4:8a:c3:b2:b2:62:19:3d:41:91:3a:
ca:1e:81:b4:60:98:d5:e1:27:51:49:fe:a5:db:76:
93:ec:31:c0:c7:7e:df:af:71:52:45:bf:af:4f:a1:
33:9d:54:62:4a:f4:37:a8:2e:c2:25:1f:24:e3:be:
73:b6:a8:ba:36:9c:d6:6f:fe:c7:66:cc:d6:65:67:
ea:c6:81:6c:9e:ce:92:fd:6d:8b:8d:33:98:87:5f:
65:33:59:74:bd:5c:6e:0f:dd:0c:3d:14:d9:ab:cb:
a2:b3:4e:fb:17:a1:9c:a5:eb:1d:e4:74:36:1f:b1:
44:b7:ab:77:26:e3:fa:95:95:3c:22:d3:a7:fa:2b:
8d:95:19:1d:2f:b4:ee:b0:35:a6:2e:02:88:49:e7:
0b:b2:2d:0f:74:42:d0:1f:97:0e:f9:76:52:5b:c8:
c1:a2:d0:68:e8:26:b0:a4:7e:bc:51:a7:86:ea:2c:
0d:1e:8b:47:9a:36:b0:42:53:46:ce:48:58:ab:a2:
04:0e:85:85:0d:02:d6:4c:7e:46:19:42:5e:91:8a:
09:55:4d:ed:7a:dc:ff:10:f3:5f:57:6f:31:7c:73:
4a:bc:3f:6e:f6:9e:b2:1b:87:14:a0:fa:3d:04:9b:
0c:76:7c:db:2c:3e:07:5d:72:3e:58:da:4c:be:33:
79:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:95:30:9B:B7:16:94:38:15:D5:17:06:C4:2D:F9:7A:5E:8E:69:57
X509v3 Authority Key Identifier:
keyid:F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ab:6a:3a:17:31:50:7d:cf:ab:d0:ad:0a:97:65:19:6b:a3:
95:47:21:cb:3e:b3:ba:95:49:7f:ba:48:eb:34:82:b6:4b:2e:
2f:7c:ef:3c:f5:6d:93:3b:5f:12:11:bf:76:b5:15:eb:7e:73:
e1:90:93:ef:fd:be:6e:6d:1a:cc:38:ce:7d:53:77:05:ff:3c:
f6:50:1c:75:3a:19:d7:89:9c:4b:e9:51:14:af:e3:2d:5c:4b:
86:0b:be:d8:23:78:1e:56:2e:31:12:b5:d5:85:5c:f2:87:31:
19:54:62:e4:24:8d:0e:83:cb:d6:49:d6:ef:e5:2c:c0:6a:06:
89:0c:18:73:5c:a4:6d:d8:b6:07:59:f7:56:2c:19:33:5f:d6:
60:0a:7d:38:71:cc:d1:7f:5f:a9:9d:51:5a:9d:bf:e0:fc:0b:
84:1e:11:7b:85:1a:df:36:83:e9:6a:73:5a:7e:e7:e6:e3:85:
c5:ea:28:ed:28:98:2d:3d:01:99:ed:6e:b5:8f:26:ec:87:df:
3d:41:ca:9e:9c:81:90:d9:60:9a:95:39:e3:72:0c:ef:76:c9:
9d:39:c0:8a:76:0e:db:c9:f7:ed:63:87:5a:42:08:4b:a7:c6:
13:40:5b:c6:25:b2:80:dc:f4:bb:a3:a4:0b:a6:39:2c:88:42:
58:70:15:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:47 2026 by rpki-client