Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: dVh1eMzrhZBpZ6dRb92NNl6ixKuoeG1jXho45dpTgLc=
Subject key identifier: 96:69:C7:7D:2E:CF:66:95:FC:F6:D3:6B:A3:C2:4D:09:96:91:E9:91
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 019E1EA38F1C36E78CB4773173538D3AC8CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 15FF
Signing time: Wed 13 May 2026 00:01:35 +0000
Manifest this update: Wed 13 May 2026 00:01:35 +0000
Manifest next update: Thu 14 May 2026 00:01:35 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: 9z+vVrksEzzWbRXYldaIK4VxdxKHvkAjvSc1RZy546s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:8f:1c:36:e7:8c:b4:77:31:73:53:8d:3a:c8:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: May 13 00:01:35 2026 GMT
Not After : May 14 00:01:35 2026 GMT
Subject: CN=9669c77d2ecf6695fcf6d36ba3c24d099691e991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:a6:5d:fa:be:32:54:f5:c1:7c:56:76:5e:
61:d1:6c:e6:cd:64:f8:3d:b6:28:80:a2:66:67:a8:
c6:1b:db:de:f2:c3:ae:33:3f:d6:c2:75:f8:3b:2a:
12:99:f4:a6:cd:42:f3:22:1a:f2:17:29:9b:f8:e2:
da:15:a5:1e:0b:15:c4:b1:2d:18:95:e9:cf:55:fa:
2e:6e:a2:5f:b3:6e:2a:09:b0:01:50:27:e8:d4:f0:
91:5a:e6:12:8a:ec:78:e7:9c:f5:63:5b:eb:31:b8:
9e:7b:98:cc:54:73:c0:31:42:25:da:56:96:d2:26:
f9:38:1d:1d:e3:5a:85:e9:e1:06:2d:06:57:e6:0f:
95:e6:a6:4a:a4:07:bd:19:e3:21:e7:80:53:3b:52:
06:9a:25:e7:55:3f:78:17:c5:90:bd:f6:2c:96:00:
0a:cc:52:e5:5c:5c:65:56:64:63:ca:76:5a:36:44:
2f:18:47:d1:56:12:81:0a:55:6e:31:4f:96:40:59:
cc:ce:ef:60:c8:a7:c5:6d:03:53:06:56:f5:c1:6e:
11:ca:28:36:a3:a0:b6:96:1a:c2:a8:b5:d9:d6:dd:
47:fb:5f:26:42:21:c6:88:c1:8e:62:c8:6d:a2:21:
42:fa:2e:5f:c0:37:9c:1b:3d:27:16:98:40:c0:28:
90:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:69:C7:7D:2E:CF:66:95:FC:F6:D3:6B:A3:C2:4D:09:96:91:E9:91
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:93:7d:ad:c0:74:45:4f:c6:be:5e:35:fd:c1:61:27:51:4f:
6a:8e:f2:7a:67:5d:e7:22:f9:bc:e8:3d:1e:bc:c9:56:d0:47:
cc:23:07:40:b1:aa:40:8d:9c:14:00:75:04:4a:65:b7:b6:98:
bc:e4:a2:19:5f:26:1b:0a:58:0a:50:cd:e0:8e:fa:96:75:6d:
91:01:8f:2d:59:e6:22:eb:88:ca:df:93:02:6c:22:d8:bd:3b:
56:ec:96:01:d9:f6:26:89:67:c7:2d:e1:06:76:ed:ac:79:b3:
47:01:7e:c4:60:a5:9e:63:60:5f:68:95:44:dc:3e:19:91:19:
ea:75:b4:90:ab:6f:05:62:29:c3:f6:5c:3f:ca:98:7f:7c:8d:
02:7c:67:0a:b9:1d:f9:54:15:bb:30:e0:47:de:f4:e3:6e:73:
c9:f9:34:72:45:a4:59:e0:fd:20:9a:e6:34:89:5f:15:54:61:
ab:12:f7:fb:6c:49:4e:09:0f:ca:18:a7:a5:c1:5a:b7:1d:d8:
e7:0d:64:c2:7e:a3:01:75:82:ca:fe:4e:be:b6:99:fb:46:ab:
5c:30:14:ce:0c:de:f9:ac:9c:06:e5:ac:04:8b:a3:04:e1:12:
3d:19:8e:a0:23:9c:c4:8c:f8:cc:3f:ab:62:7b:a7:44:e4:45:
9d:c5:14:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:24:54 2026 by rpki-client