Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft
File: sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft (raw, json)
Hash identifier: QSL+gcpqMVek+Ys+6xWY7hI8KHf9MXjUv6qbWs1g5+I=
Subject key identifier: 8F:8D:CC:FD:06:23:ED:87:C8:0F:A3:16:44:61:E6:31:59:B2:0E:B5
Authority key identifier: B0:7F:DF:43:7C:6F:5B:C7:3C:7D:CD:55:CE:58:CD:92:E4:9D:60:2E
Certificate issuer: /CN=b07fdf437c6f5bc73c7dcd55ce58cd92e49d602e
Certificate serial: 019D2929269947079BDD97042B9F838DA4A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 08:00:55 +0000
Manifest this update: Thu 26 Mar 2026 08:00:55 +0000
Manifest next update: Fri 27 Mar 2026 08:00:55 +0000
Files and hashes: 1: sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl (hash: dFVacPyCiKhBuZ8xVy9y9eUbdNsHN4jRCbjEmyRQxxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:26:99:47:07:9b:dd:97:04:2b:9f:83:8d:a4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b07fdf437c6f5bc73c7dcd55ce58cd92e49d602e
Validity
Not Before: Mar 26 08:00:55 2026 GMT
Not After : Mar 27 08:00:55 2026 GMT
Subject: CN=8f8dccfd0623ed87c80fa3164461e63159b20eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6d:c9:1a:94:a4:3b:32:11:b1:be:ef:3d:a7:
29:96:55:5b:61:b9:b9:82:61:13:f6:e4:ec:58:4c:
71:4e:3e:36:69:37:7f:23:52:cb:33:9e:38:f1:7c:
6b:67:51:c6:04:92:6c:7e:1c:4b:79:37:c0:70:34:
5f:68:b6:36:2d:10:9f:e1:5c:8d:40:eb:1d:e0:0f:
b2:46:d6:2d:06:af:d1:93:9d:0b:22:4f:c8:86:72:
d3:23:a7:30:df:50:0c:c2:29:ac:1a:88:65:a0:6b:
c2:26:34:e3:58:23:45:72:cc:b0:e1:9c:32:46:5b:
91:90:16:0d:23:51:0c:b6:35:26:b9:b6:b8:d0:26:
f5:3d:97:01:19:c4:02:06:9e:55:7c:32:ea:34:ce:
7c:72:2b:8e:d0:39:b4:ca:82:68:99:51:0f:1b:ed:
89:1b:b5:9b:c3:8a:99:c1:97:ef:36:07:e4:a9:36:
55:c0:2c:42:21:39:95:1b:2f:64:28:bc:a6:36:15:
5c:89:44:ea:f0:bf:c6:5b:09:9b:e7:64:62:9c:59:
34:da:19:ac:32:73:59:b7:77:75:10:64:c6:ce:8d:
12:44:6e:c0:ab:ce:93:54:17:5b:f0:7a:86:9d:c5:
44:cd:b6:c4:7e:bc:bd:6d:00:38:fe:34:21:10:2c:
28:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:8D:CC:FD:06:23:ED:87:C8:0F:A3:16:44:61:E6:31:59:B2:0E:B5
X509v3 Authority Key Identifier:
keyid:B0:7F:DF:43:7C:6F:5B:C7:3C:7D:CD:55:CE:58:CD:92:E4:9D:60:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:e3:76:eb:af:06:9b:24:00:47:eb:27:63:49:f6:b8:8b:4a:
d1:38:07:07:e6:be:8b:ce:0b:1d:45:9f:50:4c:07:95:0b:8a:
50:6c:9f:ad:2d:43:1b:7b:86:1a:b1:7e:4b:6f:87:22:bc:11:
bd:2e:15:45:05:57:76:42:16:5a:20:e1:32:26:c4:7e:3f:fe:
1f:78:ee:8e:01:05:5e:4d:ce:fe:99:cc:3a:ce:c9:6e:b1:7f:
6b:89:9e:2f:02:7f:90:e2:41:1e:1b:b7:3d:fd:c9:a3:af:e9:
ed:42:7b:22:e4:8b:0a:b2:1e:27:02:07:6f:7c:99:11:a8:84:
07:c4:40:e0:dd:ee:19:cd:f8:cb:65:b3:06:c9:d8:e7:c2:65:
f5:6b:c1:76:71:83:2a:01:f3:36:06:1a:a9:64:f2:c1:4b:95:
95:4b:b1:d9:f8:36:bf:1e:88:cd:95:a2:4f:3f:52:68:25:17:
ea:e5:ba:c0:5f:80:b7:e9:0b:a3:0d:5d:da:ac:3f:49:7b:74:
b7:3e:98:2a:99:e8:e8:37:ab:30:18:ff:18:84:1b:28:5a:0d:
f5:e7:f7:50:14:8b:c3:e8:7d:c1:37:d8:45:25:ff:6d:49:91:
85:26:94:65:ce:dc:96:47:6d:f6:aa:07:ef:71:48:84:dc:96:
1e:ff:c0:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:41:50 2026 by rpki-client