Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft
File: 861SH4OIdIPIybDG895f1e1Whck.mft (raw, json)
Hash identifier: NxNNJY2D1fVK1lq0qDc9SW1ufGUGciGVYKbJf2w0MbM=
Subject key identifier: E8:3F:ED:48:CC:3A:C1:D9:AB:B6:D4:EE:E8:DB:21:A4:DE:E5:E9:DE
Authority key identifier: F3:AD:52:1F:83:88:74:83:C8:C9:B0:C6:F3:DE:5F:D5:ED:56:85:C9
Certificate issuer: /CN=f3ad521f83887483c8c9b0c6f3de5fd5ed5685c9
Certificate serial: 019E1C47186827E05AC2FA15E54087603E1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/861SH4OIdIPIybDG895f1e1Whck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft
Manifest number: 0E8F
Signing time: Tue 12 May 2026 13:01:21 +0000
Manifest this update: Tue 12 May 2026 13:01:21 +0000
Manifest next update: Wed 13 May 2026 13:01:21 +0000
Files and hashes: 1: 861SH4OIdIPIybDG895f1e1Whck.crl (hash: VyajtEKRR7oly/TUhOx6ksPKximCElEzL5RkIesIXFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft
rsync://rpki.ripe.net/repository/DEFAULT/861SH4OIdIPIybDG895f1e1Whck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:18:68:27:e0:5a:c2:fa:15:e5:40:87:60:3e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3ad521f83887483c8c9b0c6f3de5fd5ed5685c9
Validity
Not Before: May 12 13:01:21 2026 GMT
Not After : May 13 13:01:21 2026 GMT
Subject: CN=e83fed48cc3ac1d9abb6d4eee8db21a4dee5e9de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:72:41:24:2c:b1:87:44:79:e4:f7:5d:ba:12:
a4:c5:d8:81:52:63:3d:00:47:e8:53:ff:67:5f:c5:
94:0e:ed:ed:e6:63:8f:b4:cf:a8:17:f4:7a:82:22:
99:69:82:04:1a:0e:0a:ce:d2:81:96:24:74:69:51:
28:4d:96:01:50:54:15:48:ca:45:7d:fc:0e:67:07:
5d:2c:d3:9e:d5:cf:b4:b7:10:6a:74:14:c2:ab:a7:
3b:4a:87:37:59:ad:67:30:00:f1:9b:90:8d:d4:e5:
d4:2c:db:5c:32:c0:26:97:0c:ea:07:f8:8a:c0:26:
64:4e:cf:c9:d7:7b:b3:1c:d8:82:3a:2b:7f:84:b0:
3e:b5:f9:78:c3:41:f7:44:de:fb:8c:a9:e7:ca:fe:
b0:8c:4a:88:e3:b5:b1:f5:dc:18:a8:8e:df:62:75:
fc:1c:32:82:20:c8:b4:d1:2b:13:3e:ea:84:43:0b:
78:24:c7:d6:59:e8:a8:1c:05:b0:0f:7e:a8:27:e1:
71:ee:ff:49:e8:36:0b:8f:cc:94:14:38:a6:68:1e:
4b:45:e6:01:93:0d:44:11:e4:05:11:ac:d6:41:44:
12:a0:7d:52:74:30:2e:ce:5e:6a:98:bd:fb:26:00:
46:b3:31:3a:b8:ff:44:6d:b3:48:d1:fb:01:0a:e3:
81:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3F:ED:48:CC:3A:C1:D9:AB:B6:D4:EE:E8:DB:21:A4:DE:E5:E9:DE
X509v3 Authority Key Identifier:
keyid:F3:AD:52:1F:83:88:74:83:C8:C9:B0:C6:F3:DE:5F:D5:ED:56:85:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/861SH4OIdIPIybDG895f1e1Whck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:95:a9:bc:c9:66:ca:49:84:8f:a0:b1:cd:22:66:04:29:c8:
79:5f:c5:3d:5e:1c:a6:a6:17:82:15:95:05:fb:3e:fe:4e:13:
94:8b:c0:4f:26:02:aa:41:d8:ae:ae:a7:d7:b7:28:66:4e:a8:
0d:5e:4b:5d:c4:3c:33:14:7b:c5:78:19:01:a2:63:b2:5c:5c:
9f:07:ea:f9:36:14:cc:62:a1:03:a5:0f:9e:ea:8a:0d:fa:a2:
30:cb:2c:f2:06:02:d1:5d:b9:b2:17:d0:cd:f5:8c:26:04:c3:
69:58:f2:68:92:2e:3a:a3:3a:23:cd:f6:e3:42:fb:a2:d1:e9:
e7:5e:9d:02:66:dd:5f:05:7d:b7:08:6b:67:1d:5d:7b:4a:40:
88:6f:02:32:b4:0b:20:2e:8a:76:cf:40:49:0a:68:f2:46:dc:
5a:96:76:ef:9c:7e:9d:ef:2a:bc:42:8d:d4:4a:f0:ac:c3:80:
1a:92:a9:eb:81:e5:76:2d:84:33:09:84:70:b7:51:2b:fb:39:
70:4b:f3:02:67:fd:db:12:72:ec:b9:7e:3e:cf:27:5c:02:fc:
dd:e8:14:5b:25:90:67:85:21:ad:a0:ef:b4:16:71:c6:58:a5:
28:3c:12:2e:98:83:22:3f:56:c2:d4:f3:6e:61:08:c4:68:ec:
f9:2f:d0:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:08:31 2026 by rpki-client