Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
File: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft (raw, json)
Hash identifier: kr0687ryv5q+AL9zRpX+75vRk+QXI7/s1Dl/PjNkjSI=
Subject key identifier: 15:62:77:F6:98:2F:AA:A3:B5:34:EE:33:FF:14:9F:F6:85:CF:0C:7A
Authority key identifier: F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
Certificate issuer: /CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Certificate serial: 019F1943F5D41B430DFD807B29E43E8C6176
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
Manifest number: 1628
Signing time: Tue 30 Jun 2026 16:01:51 +0000
Manifest this update: Tue 30 Jun 2026 16:01:51 +0000
Manifest next update: Wed 01 Jul 2026 16:01:51 +0000
Files and hashes: 1: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl (hash: s/tAdNYLKlxOzHSDjtIOjtB2DE2uabnyfaP+i4Sjp9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:f5:d4:1b:43:0d:fd:80:7b:29:e4:3e:8c:61:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b381e00d61621acc45cf18a3e70597d5b9186
Validity
Not Before: Jun 30 16:01:51 2026 GMT
Not After : Jul 1 16:01:51 2026 GMT
Subject: CN=156277f6982faaa3b534ee33ff149ff685cf0c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:00:13:fe:f6:0f:2d:ec:cb:ae:63:39:d3:c1:
6d:71:32:28:10:61:02:2c:f0:ea:21:48:5d:1d:a0:
f9:5c:bb:61:27:72:c6:ab:b2:f1:62:12:42:a7:2e:
df:94:f9:39:92:44:64:d6:09:ee:62:76:88:10:ac:
ae:e5:dc:c0:0a:8d:26:c5:ba:dc:a0:e7:07:cd:56:
7c:d4:18:13:47:ea:e2:93:37:82:96:1b:f0:59:e3:
49:88:bc:23:e2:94:20:0c:8d:03:37:f5:2f:e7:62:
81:15:23:aa:7a:70:dc:52:56:ba:6f:91:4c:bb:b6:
d0:3e:aa:e2:11:ad:8b:69:68:4b:ad:e8:b7:05:00:
1b:26:1b:19:09:49:4e:99:f9:d6:0b:19:40:50:d8:
93:40:34:fc:fa:30:eb:eb:3b:b3:9b:50:05:9b:ea:
3c:8e:9a:d7:50:fa:a2:06:09:01:fc:33:1b:38:10:
bc:2d:a2:d3:eb:bb:6d:83:a2:72:3f:b4:6c:ed:8a:
8f:05:fa:04:55:70:d9:6b:3a:04:71:36:5f:7f:06:
59:16:60:8c:be:56:fc:52:0f:43:c3:25:0e:29:98:
eb:ba:74:54:a7:2b:8c:08:3d:62:6e:81:6f:0b:84:
c9:25:b7:9f:71:74:88:3c:c2:f8:b1:35:3e:e0:6c:
2f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:62:77:F6:98:2F:AA:A3:B5:34:EE:33:FF:14:9F:F6:85:CF:0C:7A
X509v3 Authority Key Identifier:
keyid:F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:94:19:e4:f9:3c:90:de:85:5d:a1:3b:23:c9:c2:36:ee:5a:
f0:53:8f:1b:ec:27:09:66:52:13:29:14:fa:e6:bb:c0:77:48:
5c:c2:d1:db:66:5d:5d:38:54:f1:e3:43:52:dd:5d:2e:b5:e7:
8d:0e:71:cf:b7:50:6e:4d:a6:4d:82:ef:ca:ef:2b:20:29:ad:
fe:63:a7:38:e5:11:5d:51:73:91:53:33:a2:7b:6d:64:8c:9a:
f9:f0:1b:7f:40:7e:fa:1c:32:66:37:46:fa:33:ff:96:01:9d:
25:ef:3b:8b:8f:37:c3:9f:95:92:90:ac:77:28:23:d3:17:10:
d9:0c:7e:f1:af:a7:89:0c:21:76:76:11:22:65:8d:e3:de:42:
5b:fd:81:17:85:4e:92:b9:ed:68:17:5a:ea:3f:f1:3c:f6:e8:
76:f6:f1:01:fd:48:b1:aa:88:d9:31:6f:cb:bd:47:b1:4e:cf:
0b:73:db:e5:32:80:b7:44:84:83:5a:37:5a:57:46:95:2f:59:
c0:95:a0:e1:07:4f:f6:c4:2d:99:a9:dd:5b:85:b8:30:6b:b5:
1d:bd:b2:da:c9:95:7c:68:4c:d6:36:6b:0b:39:16:6e:0b:77:
31:12:2a:aa:28:ce:9e:93:d3:52:6d:ad:39:59:38:9d:31:2f:
2c:2c:27:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:56 2026 by rpki-client