Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
File: 8bmuyqN97cDywE9RvJY_zS5KrMw.mft (raw, json)
Hash identifier: wYH7euLsUFbXN+XigdoNzGiN/3rvA4kyISYdwQkrTs4=
Subject key identifier: F9:2C:FF:78:49:2B:DB:49:43:8C:14:7C:CE:03:1E:28:73:52:20:9F
Authority key identifier: F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
Certificate issuer: /CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Certificate serial: 019D2BBC73584B136149D058CA00B2BA95B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
Manifest number: 068A
Signing time: Thu 26 Mar 2026 20:01:03 +0000
Manifest this update: Thu 26 Mar 2026 20:01:03 +0000
Manifest next update: Fri 27 Mar 2026 20:01:03 +0000
Files and hashes: 1: 1-4VgmB7x2kPxjVo8rWB5bdGpwJg.roa (hash: tYA4HwMckxXKaEemAAzTny37cSzdXzplQtmU/0PMdkU=)
2: 8bmuyqN97cDywE9RvJY_zS5KrMw.crl (hash: /m8l4YRvnU7wKALKg3mPmMhLAt2/FsL6JZ/6FGEXrgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bc:73:58:4b:13:61:49:d0:58:ca:00:b2:ba:95:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Validity
Not Before: Mar 26 20:01:03 2026 GMT
Not After : Mar 27 20:01:03 2026 GMT
Subject: CN=f92cff78492bdb49438c147cce031e287352209f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:59:95:cd:73:64:8d:7c:ee:9e:03:a5:a3:20:
d2:62:3d:ff:88:12:48:66:8f:6f:96:69:65:f0:64:
71:d4:bc:de:54:66:04:ac:7b:07:bd:33:a9:37:d1:
4a:8a:eb:3d:c8:f6:9d:b9:c3:5b:71:70:77:67:5b:
69:dd:61:1c:bd:8e:c9:0b:4a:1f:4e:2d:6b:ab:4a:
d6:18:bd:93:8a:90:ba:09:52:21:0f:a6:0b:cc:10:
2e:7b:eb:c4:d3:0a:fe:60:81:57:6f:68:47:ba:b4:
4c:28:8f:c3:d9:6c:6d:ae:25:08:4b:58:9a:e7:76:
f5:80:88:a4:cd:26:4d:9d:b4:dc:e9:83:e2:75:23:
50:d2:11:02:56:1b:68:42:6c:63:ec:df:1b:e9:ad:
71:eb:41:cb:d3:dd:8c:08:33:b6:62:2e:3a:f8:2d:
55:06:52:2b:8d:91:20:dd:82:24:41:73:cd:c0:ad:
3c:eb:01:c7:7a:e4:5c:1c:03:b8:9f:9e:1a:ed:42:
e2:44:3d:a3:62:aa:d3:05:f9:55:ee:c1:4b:6d:f6:
08:84:80:e9:df:62:35:55:10:0c:e7:fe:52:51:33:
ea:71:15:3b:ce:bb:ea:60:d3:9e:a0:25:c2:0d:86:
b9:db:af:63:e6:6d:77:7a:b7:35:fc:6b:5e:a9:55:
a2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2C:FF:78:49:2B:DB:49:43:8C:14:7C:CE:03:1E:28:73:52:20:9F
X509v3 Authority Key Identifier:
keyid:F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:65:dc:70:6d:85:ee:77:4a:c7:57:0b:20:25:0f:a9:4d:cc:
51:1c:5f:f1:9a:e3:09:35:eb:31:b8:8d:67:bf:4f:4a:7e:fa:
35:bf:eb:f6:7d:9d:a2:73:dd:85:9b:4c:77:79:7f:0c:5d:2b:
7e:bf:2d:fc:54:82:02:98:f8:f5:3b:34:73:4a:6a:07:74:da:
6d:2d:5d:18:64:33:6a:41:80:6d:e6:e8:8a:5e:11:e4:f8:4f:
9e:15:5e:2f:57:18:cb:b1:1a:07:8e:bb:cb:24:3d:0c:bb:5c:
1e:78:8a:19:e0:27:41:c8:30:db:01:5b:0d:fd:49:3a:4a:a1:
43:e0:52:17:54:9c:ee:fb:2d:e5:ae:33:f3:04:91:c7:55:a5:
4d:3e:41:d1:dd:81:b0:76:7e:7b:68:ca:ac:aa:83:75:e5:41:
8e:a8:e5:73:04:cd:70:b3:b9:67:27:2d:c9:46:30:3f:5d:b3:
49:89:d7:e4:00:1f:8c:24:92:be:25:71:36:4b:55:15:04:03:
c4:68:e4:89:d9:2d:e4:b1:2d:db:14:c8:eb:2e:c5:b4:f0:d2:
9d:74:8a:05:67:99:e5:aa:a1:a7:72:4d:95:d4:4a:3c:b2:73:
97:80:c7:09:1a:3e:28:03:5f:2a:14:89:e3:c6:4c:9f:67:69:
ff:f3:6e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:45:16 2026 by rpki-client