Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
File: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft (raw, json)
Hash identifier: DFk30tL7sT5CuDxKuWNHFzN8AgBzOaj0qzgS1/afL4Y=
Subject key identifier: 9F:46:98:B1:8E:CF:32:EC:B2:D0:7C:8E:3C:5B:33:81:DE:B1:BD:EC
Authority key identifier: D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8
Certificate issuer: /CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8
Certificate serial: 019E1D22FD41EF6C3EB3ADD774CCF9866719
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
Manifest number: 02B1
Signing time: Tue 12 May 2026 17:01:32 +0000
Manifest this update: Tue 12 May 2026 17:01:32 +0000
Manifest next update: Wed 13 May 2026 17:01:32 +0000
Files and hashes: 1: 1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl (hash: DNHI/SEhoQpPZApFs0GrWTlKbLhF+weh83Ivycc4wyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:fd:41:ef:6c:3e:b3:ad:d7:74:cc:f9:86:67:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48f0c2b2ad19f8c06b4e12491d6129864471ca8
Validity
Not Before: May 12 17:01:32 2026 GMT
Not After : May 13 17:01:32 2026 GMT
Subject: CN=9f4698b18ecf32ecb2d07c8e3c5b3381deb1bdec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2d:e1:6b:1e:e2:1c:85:c0:46:e7:e5:67:a5:
ff:36:36:82:b4:7f:01:9f:c9:9a:55:83:6c:c1:92:
af:29:64:9d:0d:46:61:2c:2f:04:00:a3:15:35:1d:
99:a8:ac:78:b3:aa:8f:88:b6:1a:cf:4d:0d:1e:d7:
51:8e:05:fd:45:28:fd:b3:cf:1a:6c:ed:48:3e:5a:
00:7d:06:ac:a4:54:5d:88:5e:33:71:f1:e4:e6:49:
b8:26:49:49:4d:64:19:5b:9c:7d:a7:c1:a0:5e:5e:
ca:2d:cd:4f:13:d1:ef:0a:7a:20:c1:8e:56:18:4a:
40:e2:13:35:1d:d2:1e:24:4d:4e:3f:3b:f7:a6:67:
0b:16:69:18:8e:92:d0:e0:11:cf:6e:15:53:20:1f:
42:a9:18:bb:f2:58:b1:99:69:d7:33:1c:eb:e6:c7:
98:75:17:19:a2:a2:2f:db:a1:8e:69:23:1f:1a:e2:
dd:45:e5:30:6c:4d:48:b9:49:a9:9a:00:0d:42:d7:
f5:54:df:18:75:d7:5f:ec:e8:60:d4:f9:09:1f:ac:
ba:49:9b:c8:3e:0b:01:0d:27:2b:45:31:be:9f:e6:
98:c3:90:e4:74:5c:f8:04:ac:2e:f5:9a:40:b0:d4:
60:7e:d4:ad:a0:b2:15:84:3a:c3:db:1c:b5:d9:b1:
19:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:46:98:B1:8E:CF:32:EC:B2:D0:7C:8E:3C:5B:33:81:DE:B1:BD:EC
X509v3 Authority Key Identifier:
keyid:D4:8F:0C:2B:2A:D1:9F:8C:06:B4:E1:24:91:D6:12:98:64:47:1C:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1I8MKyrRn4wGtOEkkdYSmGRHHKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/305eda-f8ba-4691-8960-93619674a42e/1/1I8MKyrRn4wGtOEkkdYSmGRHHKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:6d:11:c5:91:f7:10:4a:2f:36:5e:65:96:c7:94:ee:6f:59:
3b:51:97:5a:64:45:05:6e:c9:7b:9b:84:9c:fe:0b:cc:2d:ca:
ef:95:fd:2a:37:9a:4c:7b:d2:88:8d:80:bd:81:83:84:c4:36:
a6:68:be:d7:c6:28:1e:02:0f:9a:bd:56:5f:a5:da:e0:02:8d:
cd:9b:ac:d5:5f:54:c9:39:a0:b7:c6:49:0c:75:cd:0a:93:3f:
ec:88:c6:cd:a4:03:71:18:e8:e1:a6:9c:da:c8:8c:5a:91:84:
10:68:44:59:00:e7:0d:c4:b2:2c:f0:0c:1a:ce:97:1a:38:b0:
6e:d4:13:ac:d0:de:97:87:68:8d:2c:41:9a:14:d0:a8:3d:7c:
28:06:c6:d0:56:83:55:7d:82:eb:51:e3:b0:f3:aa:64:ba:f5:
10:aa:38:ff:c3:64:b8:ee:6d:eb:65:67:30:8b:fe:f0:70:f2:
b5:b8:86:4a:1a:7f:ea:a2:b2:12:b0:d1:76:48:b7:bd:40:ac:
26:4f:e4:ad:50:9e:9c:c7:32:68:d8:a2:bf:39:3a:f8:bd:75:
75:42:66:30:82:97:ab:55:b5:95:50:48:7e:a1:1a:92:c8:6e:
51:78:b0:f9:4e:f4:b7:f7:e7:fe:7a:8b:ac:69:9a:b0:79:f1:
4f:44:fa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:33:27 2026 by rpki-client