Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
File: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft (raw, json)
Hash identifier: nPRn0KAbgWZYz8GI7bb9jGLwb5Uu5BuWRV09h5Uxs0o=
Subject key identifier: 83:3D:D0:1D:D9:CA:51:FA:A6:47:C7:26:60:BC:5D:22:81:93:1F:D9
Authority key identifier: F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
Certificate issuer: /CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Certificate serial: 019D38661D13D5FA3A7F508891D61992616E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
Manifest number: 152F
Signing time: Sun 29 Mar 2026 07:01:49 +0000
Manifest this update: Sun 29 Mar 2026 07:01:49 +0000
Manifest next update: Mon 30 Mar 2026 07:01:49 +0000
Files and hashes: 1: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl (hash: XEr/1Yh6ZMs1MHMXF2riko0j2BaviX4A5gFW6nVsMdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:1d:13:d5:fa:3a:7f:50:88:91:d6:19:92:61:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Validity
Not Before: Mar 29 07:01:49 2026 GMT
Not After : Mar 30 07:01:49 2026 GMT
Subject: CN=833dd01dd9ca51faa647c72660bc5d2281931fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:47:52:61:bb:d5:cf:56:b9:4b:1b:27:84:
72:9d:dc:83:a5:43:e6:e1:47:e6:b2:15:7d:f9:e0:
56:20:7b:a7:84:96:59:45:fb:b6:63:ec:67:02:a2:
cd:f0:7a:53:4c:1f:5b:e7:80:5b:78:33:20:5d:a9:
2d:9b:63:0c:af:52:0a:b3:cf:87:e9:fb:ae:eb:4f:
fe:b3:2b:1c:59:dc:6e:02:79:e9:12:0a:40:82:c1:
34:d5:6a:68:98:ca:69:3a:b6:f6:1a:d3:56:63:cd:
d2:8d:35:8c:2a:17:80:e3:63:ad:d0:34:6e:fc:8b:
ae:bb:e3:80:eb:8a:bf:0f:c1:79:c3:a6:50:f9:e3:
9b:37:7d:6d:cc:76:7d:ed:40:b4:ad:84:c6:fc:19:
0a:9e:f9:61:79:81:97:b5:0e:3c:2e:cb:9d:9b:05:
e9:58:e9:45:25:d0:f9:8a:5a:30:09:cb:f7:53:3a:
fc:04:6b:07:62:85:bd:98:47:42:77:b1:3c:b7:44:
55:4a:fb:06:7e:60:fc:31:75:7b:77:25:98:21:fb:
91:e0:e0:55:6d:e8:aa:b8:bf:92:7b:fa:75:8c:a0:
f1:2f:b9:ac:8d:a3:f2:12:66:c2:82:01:92:75:2c:
b4:87:09:ba:9f:b6:aa:66:1b:a8:2e:0e:52:06:30:
09:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3D:D0:1D:D9:CA:51:FA:A6:47:C7:26:60:BC:5D:22:81:93:1F:D9
X509v3 Authority Key Identifier:
keyid:F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:3d:db:27:b5:48:12:14:61:dd:8a:99:8c:f5:3b:04:90:77:
75:60:ec:a2:37:6e:7e:dd:1a:25:81:ae:a7:d1:fd:8a:e6:0c:
47:ad:0d:ea:2a:34:c3:f1:04:bd:09:49:3b:52:4f:7f:d6:76:
58:65:93:ec:78:9a:61:7e:11:75:88:d8:d1:30:8b:9f:bf:a6:
10:81:25:69:68:76:99:c0:7a:44:fc:dd:b0:ac:ef:73:33:25:
76:f8:cb:5e:8e:b4:5a:43:82:ec:2b:3d:3c:3c:a3:63:5e:d8:
14:17:51:5a:87:ab:0b:3a:32:7a:62:d7:cd:6b:d4:5c:7f:b2:
7c:7f:6e:b9:a6:13:1c:7f:bf:8b:60:06:b5:b6:53:d3:0c:7a:
05:b9:d8:5b:e1:32:70:2d:bb:05:dc:b5:f0:77:1f:aa:2e:34:
c9:66:d1:aa:75:5e:d1:a2:29:c2:04:e4:3c:97:f2:24:bc:6a:
52:fb:b4:9e:61:d5:c6:be:83:df:13:54:8c:a2:41:9c:9d:2c:
a8:32:e9:6b:e0:d2:c2:2d:51:d7:c5:62:53:86:64:b5:b0:dc:
c3:ef:55:59:22:67:77:9f:6a:2b:78:b5:01:78:43:a0:cf:c6:
ab:5c:f5:c7:e2:0b:9a:ec:8f:3a:4f:1c:37:cf:cf:f0:6b:8b:
dd:28:5d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:00 2026 by rpki-client