Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: S02GwaR7Af+bTI0EX2SNfHh2K975hiNpPhCeESZgWug=
Subject key identifier: 92:D5:2D:EF:32:F9:58:51:99:5D:B1:F8:D1:37:7A:B7:E1:EF:F0:47
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019E1D597BC99463CEA31D1A55E72F0D3488
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 18:01:04 +0000
Manifest this update: Tue 12 May 2026 18:01:04 +0000
Manifest next update: Wed 13 May 2026 18:01:04 +0000
Files and hashes: 1: 3ZbP8D4oyhCe4u5mlugxkhUP_G4.roa (hash: mYQ4ggMgVLrFbz01ZBuOhgHTwYfwTmz0/Kv0k+37TBo=)
2: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: 6pLTUpVgvGLNIhXRk4WSX5sQ1RuOi9XiGxZsmg6p94g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:7b:c9:94:63:ce:a3:1d:1a:55:e7:2f:0d:34:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: May 12 18:01:04 2026 GMT
Not After : May 13 18:01:04 2026 GMT
Subject: CN=92d52def32f95851995db1f8d1377ab7e1eff047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ec:72:70:6c:fc:a3:27:d4:20:0f:d1:ca:b4:
05:6d:12:8c:28:38:5a:da:ba:8b:7b:d7:50:5a:16:
61:12:7e:fe:da:6d:90:48:f4:00:3a:b0:15:0b:20:
41:64:7e:5a:07:8f:fb:8a:a0:9e:14:1d:ed:63:a8:
5b:70:2e:bb:2a:98:13:4f:e8:3f:21:40:2f:3f:da:
5a:23:ce:16:ef:68:e4:6e:9e:c0:86:0d:26:39:48:
0f:d7:67:cc:38:21:05:9e:28:71:ca:d0:67:f6:b8:
94:1e:83:f7:b9:bb:b3:b6:13:ab:4a:f6:4e:d1:21:
8d:8c:22:18:0f:3c:f0:88:08:b2:5b:7e:7a:38:46:
9c:0b:cc:cd:06:af:40:ee:2f:ff:9e:4e:e7:46:70:
59:75:3b:99:c3:76:26:ce:d5:19:4d:2d:f9:a5:ee:
be:8e:35:06:44:e5:e3:92:6c:a3:6c:a5:0b:6a:d4:
30:d7:c7:7a:d5:6e:30:6d:6d:2b:94:4c:9c:c1:e8:
1d:d4:b9:f6:f4:a3:2b:61:b2:06:0f:74:41:4f:7c:
ee:f3:df:63:17:d5:aa:67:9d:b3:b6:7d:d5:8d:dc:
a1:57:e0:bf:fc:96:bf:48:86:9e:b2:ec:3d:a7:c5:
5a:6b:c8:5f:db:69:d8:44:30:d0:88:66:f3:79:df:
37:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D5:2D:EF:32:F9:58:51:99:5D:B1:F8:D1:37:7A:B7:E1:EF:F0:47
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:72:dd:b1:2b:88:d6:6e:c2:15:f5:77:c2:67:d8:ad:43:b2:
03:fe:30:92:d4:5c:d9:34:cb:50:d4:4a:c7:10:33:bf:ee:8a:
99:86:08:9d:fd:6a:b1:83:f9:22:1c:c6:8a:b9:fb:89:98:0c:
e8:64:08:c6:d2:44:1c:59:67:56:62:6f:10:4a:63:d3:1c:f8:
f3:14:e2:5c:24:d6:ea:e4:51:45:e5:86:31:07:02:04:35:65:
74:16:5e:2a:aa:8a:57:32:f3:1e:a7:03:05:09:29:c6:4e:f4:
57:ad:ec:c0:54:42:3f:ca:59:a9:90:ca:a6:da:67:9c:ea:72:
9a:32:2a:2e:f0:1e:95:8e:e8:ce:2b:0a:1e:74:7a:48:05:e6:
56:10:a7:2d:f2:a1:09:d7:50:fe:23:65:5d:5b:8b:8f:84:6d:
43:29:62:80:9e:0f:ea:17:2b:49:57:b2:df:fc:ec:d6:38:d1:
10:0e:02:83:a8:68:64:d9:42:e3:cc:60:07:a7:bf:45:bb:21:
f8:34:6e:c6:4f:b2:5b:b7:00:ec:86:a2:6a:f7:46:53:61:9b:
5e:c7:31:91:8b:dc:04:02:a5:50:34:52:4e:4e:a0:79:a5:56:
da:dc:be:70:4c:ce:a1:6f:ab:e5:36:49:c7:ef:7d:6e:07:eb:
8b:5c:f3:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:44:03 2026 by rpki-client