Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: QsVHHhm/9lKsFzFFyhcIVIx46F3j0ZA6UkiL31hUYTQ=
Subject key identifier: AA:E9:D0:4D:FA:82:6A:4D:2E:75:20:B1:A7:0B:E5:DF:49:9C:77:74
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019D2628AD2173C9FE4307D6194421EEB89C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 1885
Signing time: Wed 25 Mar 2026 18:01:32 +0000
Manifest this update: Wed 25 Mar 2026 18:01:32 +0000
Manifest next update: Thu 26 Mar 2026 18:01:32 +0000
Files and hashes: 1: 3ZbP8D4oyhCe4u5mlugxkhUP_G4.roa (hash: mYQ4ggMgVLrFbz01ZBuOhgHTwYfwTmz0/Kv0k+37TBo=)
2: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: 39UVxaYqxw2BJD2Na0q0+boAQIOEh+ZyIpYKuJkG8uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:ad:21:73:c9:fe:43:07:d6:19:44:21:ee:b8:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Mar 25 18:01:32 2026 GMT
Not After : Mar 26 18:01:32 2026 GMT
Subject: CN=aae9d04dfa826a4d2e7520b1a70be5df499c7774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:33:e3:33:03:51:12:3b:d6:b2:32:e4:4b:
b9:2a:0d:26:44:3b:65:10:2b:c8:ba:19:01:bb:13:
36:20:7c:c3:cb:94:6f:91:c3:f0:34:bb:24:cd:9c:
76:9f:24:20:41:8f:e7:50:bd:89:dd:f8:8f:b9:e6:
19:92:79:68:e7:2d:bf:11:ea:7a:c2:48:c1:e0:da:
ea:78:3c:6c:72:e3:02:d6:e5:58:40:77:2e:d6:7d:
ef:29:96:e0:a4:78:27:57:25:73:56:1a:37:17:15:
6a:fc:9e:ba:77:14:d1:c4:7b:59:18:f7:28:b4:fa:
20:ff:68:c3:39:69:6c:e0:f0:24:c5:20:03:67:50:
f4:76:32:8d:bb:79:55:3e:fb:6c:6c:65:a5:d2:6b:
dc:dd:05:96:71:ec:3f:12:49:79:02:4c:90:06:22:
43:10:e5:c4:eb:b8:71:9b:5d:07:ca:41:f8:19:a1:
50:c4:a4:63:52:22:6d:7b:aa:f9:73:aa:b1:db:af:
e2:fc:6a:f8:a5:2b:08:63:24:dc:7b:34:ed:12:cc:
71:44:da:23:95:e3:3b:89:d4:c3:5c:5c:94:98:c4:
d7:ad:e0:4c:5b:a9:66:f9:57:e4:90:92:e8:d4:e0:
e1:9f:2a:fe:85:a0:bc:a7:63:61:e6:7a:ec:68:72:
3b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E9:D0:4D:FA:82:6A:4D:2E:75:20:B1:A7:0B:E5:DF:49:9C:77:74
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:31:09:04:ca:0d:ae:be:a6:b9:c9:8b:f9:04:07:2a:5d:e7:
91:4d:32:0a:03:96:52:07:35:a3:e3:26:0c:0d:dc:f3:f7:22:
83:20:1f:78:5f:c1:ec:68:fb:2e:05:aa:fc:37:69:c4:e6:5c:
a5:a6:b4:57:a7:18:82:dc:e1:5d:f7:19:75:d3:6d:3b:1c:6c:
0d:44:2f:5f:74:57:43:ae:30:ba:ff:d3:8d:91:49:63:21:5a:
6d:ca:7c:12:d4:64:8b:ad:16:a0:5e:79:8b:e4:d4:64:f8:61:
b8:c7:44:44:87:5c:e9:6f:28:69:be:a7:11:44:bc:1a:42:89:
6c:7d:41:4a:9e:f8:c3:53:6a:bf:31:8f:1c:b9:ed:11:8b:6a:
a4:4a:15:a8:11:f0:f6:d0:0c:ef:0d:36:2d:1b:a3:8d:d0:43:
6d:9c:68:3b:21:19:6e:69:3d:c4:40:14:a8:71:41:00:db:7b:
4f:36:19:c3:9d:c2:ea:26:98:e0:35:ba:85:c7:0a:1b:33:03:
bc:f7:e9:b1:f9:20:ce:87:a3:0b:d0:ab:63:ba:70:6d:df:37:
17:07:3f:3e:1c:99:70:a6:ee:4e:fc:8a:2c:59:df:49:e6:31:
16:65:8c:f9:e4:58:f5:ae:2d:2c:28:e8:e3:d4:09:1a:de:cd:
e9:05:8a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:09 2026 by rpki-client