Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json)
Hash identifier: o3P9jXb8nkhz0IaLsAVsy4pjKrPVC8hD+/NMgSAQ3QQ=
Subject key identifier: 17:76:10:81:19:CC:A1:8C:98:F3:8A:57:84:40:32:34:BE:4F:7F:DD
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 019D27047E9BE76F237E7EA73B7B1433C2AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
Manifest number: 0524
Signing time: Wed 25 Mar 2026 22:01:38 +0000
Manifest this update: Wed 25 Mar 2026 22:01:38 +0000
Manifest next update: Thu 26 Mar 2026 22:01:38 +0000
Files and hashes: 1: YmvEy21Oo_K93uY9_6q4yH9waAs.roa (hash: Dd5U/8FlVGfaWd8sQ9wxYRvKK+HxQrbJ5WW1os00xSE=)
2: i8Wo923xVof4NEHJprVUV48831c.crl (hash: KkNNLaOW8QdVcImcG4PqlGw5sMMrzsEtDi87EgEzTek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:7e:9b:e7:6f:23:7e:7e:a7:3b:7b:14:33:c2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: Mar 25 22:01:38 2026 GMT
Not After : Mar 26 22:01:38 2026 GMT
Subject: CN=1776108119cca18c98f38a5784403234be4f7fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:52:01:3c:ef:9a:8f:a0:51:a4:0d:30:7f:c7:
19:26:61:c6:6a:b1:6b:7d:15:00:d5:a2:b2:f3:f3:
cb:d3:94:59:75:aa:d0:16:02:c1:a2:5e:81:b5:12:
1c:1e:94:06:82:4f:e4:f1:ff:76:c7:60:2c:69:4a:
64:4f:92:38:0c:30:7c:52:71:6f:0a:96:fc:ee:9a:
f4:43:4f:69:c9:24:80:d0:11:87:13:79:ac:e5:17:
9d:9d:49:ba:60:cf:47:5a:3b:8c:65:f3:47:45:8c:
fc:bb:cc:96:0e:d9:52:9d:52:74:5a:62:6f:d5:a2:
5e:90:b9:6d:50:19:08:36:2a:f0:4e:48:57:11:ea:
03:91:e4:34:b1:33:e1:d5:5e:16:00:cb:db:c7:7e:
de:64:bc:6c:c6:74:0a:3c:b4:65:12:2f:38:2e:4b:
1c:71:74:b7:e3:26:10:6d:63:a2:8e:49:8e:bc:b5:
f0:b6:86:53:43:6a:d6:7f:11:50:fa:29:a1:e9:89:
f2:cc:38:1e:54:6e:9f:e8:56:ac:db:19:e6:f1:73:
e3:3b:25:01:ad:c1:79:57:03:e1:a6:b8:1f:6c:83:
98:d9:a2:09:70:26:e6:82:4d:ad:7b:f6:e7:1b:57:
e4:7d:cd:69:45:bb:49:57:98:00:26:d4:ad:8d:3d:
1f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:76:10:81:19:CC:A1:8C:98:F3:8A:57:84:40:32:34:BE:4F:7F:DD
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:34:08:7b:ee:29:51:b1:2c:65:78:e0:83:79:15:41:d3:0b:
16:3c:5d:79:49:d9:a1:8a:56:3e:7c:a6:7c:06:e5:d9:47:f4:
cd:7c:e0:24:56:3c:cc:93:00:49:82:20:83:d0:98:61:ab:01:
d8:a9:af:63:24:1c:c2:c1:5b:17:60:73:48:8f:6a:38:65:bd:
1a:15:b1:5b:79:aa:73:0a:14:c4:18:e2:14:e3:08:d2:cb:1a:
70:a0:4d:a8:ee:ff:39:5b:14:4f:f6:9c:47:4f:55:70:23:bb:
5b:dc:77:6b:0a:9b:30:e3:21:2e:93:ba:99:98:60:20:21:dc:
99:8d:8c:17:e1:c4:3b:93:91:c1:17:db:bc:a5:85:f0:4a:a5:
57:ec:be:d1:ad:df:ce:e8:00:4f:47:e7:e8:fc:4a:0d:b4:4a:
70:6a:43:2f:a9:13:fb:55:7b:4e:ad:ec:10:de:f2:15:50:72:
e2:f1:d4:16:6c:90:00:19:2f:ca:b0:2c:a7:bb:c8:19:48:e3:
78:89:0f:72:8e:fd:3b:1b:6f:15:7a:f8:55:61:51:f1:50:26:
8f:e4:6d:f5:f4:c4:68:4e:e9:cf:6e:c0:c0:75:fe:7f:69:54:
8e:39:a5:ba:13:42:cc:ee:28:7d:d9:cf:26:d8:a5:b4:a9:ec:
b6:fe:56:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:58:52 2026 by rpki-client