Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft
File: 8IcQ5uJObWm9XESv6vDunGftOgY.mft (raw, json)
Hash identifier: Pbker5sdKrRjRtkgnirw+/+d/xPjtLJ7As+cLE66G7o=
Subject key identifier: 52:2A:0E:19:6C:0F:5C:A3:A4:A8:7F:82:A6:72:05:16:40:DC:3C:1E
Authority key identifier: F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06
Certificate issuer: /CN=f08710e6e24e6d69bd5c44afeaf0ee9c67ed3a06
Certificate serial: 019D25BA00EB4C7319AE23E633A7CBF83864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 16:00:39 +0000
Manifest this update: Wed 25 Mar 2026 16:00:39 +0000
Manifest next update: Thu 26 Mar 2026 16:00:39 +0000
Files and hashes: 1: 8IcQ5uJObWm9XESv6vDunGftOgY.crl (hash: 48jrm7QWt2zFcVXed43nmZjF6CTjgqdZfOw097PL5bg=)
2: XXKVsIY0HbIJymCv56HgZpurwFA.roa (hash: Sk/E2nAzU4UxwMsd952VhcruaPuVHKtKy3ii+1Myr2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:00:eb:4c:73:19:ae:23:e6:33:a7:cb:f8:38:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f08710e6e24e6d69bd5c44afeaf0ee9c67ed3a06
Validity
Not Before: Mar 25 16:00:39 2026 GMT
Not After : Mar 26 16:00:39 2026 GMT
Subject: CN=522a0e196c0f5ca3a4a87f82a672051640dc3c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:58:cb:00:e0:a5:67:da:5a:db:26:f0:56:dc:
52:78:d8:91:63:72:e4:7e:0f:4d:41:9c:85:d3:12:
87:79:f5:70:41:d8:09:d6:ea:66:f4:26:11:1b:83:
81:18:5e:40:57:ab:f4:fa:9e:1e:29:20:27:ed:d3:
83:7f:2a:a3:5e:b5:58:8d:65:3a:d5:9c:74:62:7b:
b6:3f:8b:bf:29:18:56:a5:f6:e2:2c:a2:38:67:16:
bb:b5:b1:04:6e:06:fa:73:f1:44:55:ee:45:57:c5:
0e:71:73:e3:e2:74:a7:35:7e:f3:d5:be:55:66:a8:
b2:b2:e8:e6:22:e0:ce:16:21:61:b4:cd:0d:a9:74:
ba:b1:47:7d:dd:a2:eb:e2:42:ba:62:34:8f:9e:90:
18:55:69:d8:e5:b3:1c:5f:8f:25:ee:3e:c9:74:c9:
0b:47:d0:f1:7a:36:35:e6:17:99:d6:be:9f:d1:01:
cc:a6:21:92:34:02:e3:82:fa:c0:9e:35:06:f6:33:
fd:4e:a7:af:1f:d4:1d:67:68:27:ba:3d:37:47:5e:
b8:7c:d0:cc:35:ea:73:23:3c:56:11:5c:cc:0a:05:
44:76:11:3e:5e:9d:5e:59:50:ee:f1:f1:0c:87:be:
a5:34:a5:b5:fd:b7:73:d7:b1:a3:28:3b:37:a2:c8:
88:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2A:0E:19:6C:0F:5C:A3:A4:A8:7F:82:A6:72:05:16:40:DC:3C:1E
X509v3 Authority Key Identifier:
keyid:F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:07:6a:f7:c3:4a:23:06:10:7b:15:c9:f5:ce:2a:e1:3c:cf:
1c:f3:44:00:53:20:47:2a:19:b6:96:85:71:3e:a4:f8:ae:77:
45:f7:de:ac:96:e7:c3:16:ea:87:68:ca:5c:46:b5:fe:3e:31:
37:6d:cc:bf:64:94:12:7c:b1:25:8b:94:ea:ae:53:78:b4:23:
bc:41:ae:40:fe:ba:ca:bb:5f:aa:19:e9:79:57:cb:d9:78:7a:
d3:f3:40:f8:7f:15:1a:b1:1f:ba:9f:23:77:88:bd:34:70:65:
f0:0e:6c:06:7c:6f:ed:c9:c7:92:27:f7:96:04:e0:86:ff:5d:
1b:ee:a7:5d:8f:63:69:b4:8c:99:b3:74:06:33:e3:10:2b:9c:
53:12:25:5d:d9:d3:5d:93:83:81:f0:47:c4:aa:c4:44:9a:f5:
bd:11:71:4d:89:7c:52:a8:bc:07:b6:fa:b5:e9:74:b1:89:4e:
d5:f2:69:4f:a6:ce:93:e7:da:bf:5b:dd:78:70:87:cd:b4:09:
0b:63:d3:e7:63:f1:76:26:e1:da:85:e0:de:94:4d:6f:f7:e1:
66:fd:88:df:d3:b5:5f:6a:df:fe:c2:6d:14:85:f9:17:73:dc:
0d:bd:43:4c:32:f3:29:16:9c:fc:7d:e1:01:7b:d9:e7:8c:61:
d8:f1:53:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0lugDrTHMZriPmM6fL+DhkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwODcxMGU2ZTI0ZTZkNjliZDVjNDRhZmVhZjBlZTljNjdl
ZDNhMDYwHhcNMjYwMzI1MTYwMDM5WhcNMjYwMzI2MTYwMDM5WjAzMTEwLwYDVQQD
Eyg1MjJhMGUxOTZjMGY1Y2EzYTRhODdmODJhNjcyMDUxNjQwZGMzYzFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1jLAOClZ9pa2ybwVtxSeNiRY3Lk
fg9NQZyF0xKHefVwQdgJ1upm9CYRG4OBGF5AV6v0+p4eKSAn7dODfyqjXrVYjWU6
1Zx0Ynu2P4u/KRhWpfbiLKI4Zxa7tbEEbgb6c/FEVe5FV8UOcXPj4nSnNX7z1b5V
ZqiysujmIuDOFiFhtM0NqXS6sUd93aLr4kK6YjSPnpAYVWnY5bMcX48l7j7JdMkL
R9DxejY15heZ1r6f0QHMpiGSNALjgvrAnjUG9jP9TqevH9QdZ2gnuj03R164fNDM
NepzIzxWEVzMCgVEdhE+Xp1eWVDu8fEMh76lNKW1/bdz17GjKDs3osiIRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFIqDhlsD1yjpKh/gqZyBRZA3DweMB8GA1UdIwQY
MBaAFPCHEObiTm1pvVxEr+rw7pxn7ToGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEljUTV1Sk9iV205WEVTdjZ2RHVuR2Z0T2dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi83YmJhZDQtZTE1YS00YmZkLWFiMzIt
NzZlODY1ZTJjNGJkLzEvOEljUTV1Sk9iV205WEVTdjZ2RHVuR2Z0T2dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi83YmJhZDQtZTE1YS00YmZkLWFiMzItNzZlODY1ZTJjNGJk
LzEvOEljUTV1Sk9iV205WEVTdjZ2RHVuR2Z0T2dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvwdq98NK
IwYQexXJ9c4q4TzPHPNEAFMgRyoZtpaFcT6k+K53RfferJbnwxbqh2jKXEa1/j4x
N23Mv2SUEnyxJYuU6q5TeLQjvEGuQP66yrtfqhnpeVfL2Xh60/NA+H8VGrEfup8j
d4i9NHBl8A5sBnxv7cnHkif3lgTghv9dG+6nXY9jabSMmbN0BjPjECucUxIlXdnT
XZODgfBHxKrERJr1vRFxTYl8Uqi8B7b6tel0sYlO1fJpT6bOk+fav1vdeHCHzbQJ
C2PT52Pxdibh2oXg3pRNb/fhZv2I39O1X2rf/sJtFIX5F3PcDb1DTDLzKRac/H3h
AXvZ54xh2PFT6A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:01:07 2026 by rpki-client