Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
File: 8bmuyqN97cDywE9RvJY_zS5KrMw.mft (raw, json)
Hash identifier: 4DOiap9rj21G5jTYnCr52k00Y23QI3E/LoMNW74N0jA=
Subject key identifier: B3:1D:08:A8:3C:F4:F9:7A:D3:46:22:C2:24:76:C8:2E:44:B0:DC:07
Authority key identifier: F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
Certificate issuer: /CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Certificate serial: 019E20FF21A2A4105CFAC7F46A8C3793DBF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
Manifest number: 0709
Signing time: Wed 13 May 2026 11:00:51 +0000
Manifest this update: Wed 13 May 2026 11:00:51 +0000
Manifest next update: Thu 14 May 2026 11:00:51 +0000
Files and hashes: 1: 1-4VgmB7x2kPxjVo8rWB5bdGpwJg.roa (hash: tYA4HwMckxXKaEemAAzTny37cSzdXzplQtmU/0PMdkU=)
2: 8bmuyqN97cDywE9RvJY_zS5KrMw.crl (hash: SIqWlv1S3Ntpcm+/krGSgUZFuDqwoAcoZL9E7Dncszo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:21:a2:a4:10:5c:fa:c7:f4:6a:8c:37:93:db:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc
Validity
Not Before: May 13 11:00:51 2026 GMT
Not After : May 14 11:00:51 2026 GMT
Subject: CN=b31d08a83cf4f97ad34622c22476c82e44b0dc07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0a:b3:62:c5:ca:e1:cf:ea:5c:9f:e6:38:55:
b0:54:43:7d:46:8a:d0:f1:e1:dc:2c:fa:12:16:48:
fc:4c:3d:2e:39:90:ed:3a:84:a7:08:5b:ae:8c:9e:
44:a8:c8:6b:f4:7d:6b:de:9f:54:83:5b:66:ad:3f:
92:cf:75:53:d0:19:e3:56:92:5e:26:85:47:c7:af:
fc:de:8a:22:fb:7f:ac:75:bb:58:1b:a4:9a:73:90:
f8:03:d4:21:0e:d0:e7:f4:8d:2a:77:33:4d:3b:f2:
c1:6e:b3:95:6e:ac:10:f4:70:36:7d:9f:2a:28:5f:
85:8d:34:2f:1f:ea:9b:6e:c8:91:f2:3b:68:5e:6d:
d3:df:57:f4:94:52:a8:8a:1c:59:fa:42:67:0e:01:
5a:7a:3b:b1:0a:85:9a:60:3c:cb:9a:36:b0:d4:92:
26:df:2b:b6:7d:38:a3:fb:74:a0:a2:d3:aa:6b:b9:
a1:bf:a4:6c:f6:d5:9b:05:9f:e5:1a:7d:cb:f1:fc:
69:ae:f3:3e:ca:79:08:2a:d9:ed:1b:10:1f:7b:5d:
df:f5:52:35:c2:9b:21:d2:b9:b5:53:fd:3f:07:6e:
db:0a:8b:f3:00:6b:44:5e:ce:fa:30:a7:b4:49:bc:
1c:f4:af:c2:05:1a:85:c8:00:44:49:fb:d7:9f:8f:
e8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1D:08:A8:3C:F4:F9:7A:D3:46:22:C2:24:76:C8:2E:44:B0:DC:07
X509v3 Authority Key Identifier:
keyid:F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:6f:0c:02:c7:3c:d4:e5:44:2d:13:08:6a:5f:06:d5:31:42:
fd:7b:4b:9c:00:3e:cf:33:40:d2:ef:41:e8:88:26:0f:99:27:
e6:f3:83:d4:74:4b:ce:87:11:e6:56:b2:6e:cc:5c:d0:ba:e6:
69:f9:f4:b3:42:41:a1:84:61:ca:0f:d2:f0:cb:f2:d4:22:25:
91:92:8b:e2:21:63:0f:1e:0a:d0:32:de:eb:f4:cf:c5:4c:cc:
36:be:cf:48:f8:0e:e3:7e:e5:01:3d:e8:f2:25:61:91:b0:38:
64:fc:35:a9:de:05:8d:b1:6c:e5:47:66:87:ad:09:ef:50:30:
dc:44:d9:67:6a:90:03:f5:e0:64:ae:2e:4e:e2:3a:2d:ab:f7:
0e:7e:60:a4:8b:42:6b:32:70:ec:57:05:7e:e0:6d:b9:13:44:
64:0b:30:93:c8:15:ad:a9:c8:4b:03:db:ae:a7:10:f8:4f:42:
46:4a:3b:ee:da:19:3e:f7:9d:41:7c:75:b5:b8:34:c3:12:fd:
65:0d:f2:88:1a:40:c9:da:ca:bf:31:11:e8:a0:74:b7:f4:b2:
cf:78:c8:82:af:8b:39:c3:4c:92:33:2a:ca:1f:97:2e:b7:97:
ad:b5:3a:6e:0a:30:ec:44:cc:3c:71:7c:1b:40:e7:8c:ac:08:
25:f5:7f:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4g/yGipBBc+sf0aow3k9vyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxYjlhZWNhYTM3ZGVkYzBmMmMwNGY1MWJjOTYzZmNkMmU0
YWFjY2MwHhcNMjYwNTEzMTEwMDUxWhcNMjYwNTE0MTEwMDUxWjAzMTEwLwYDVQQD
EyhiMzFkMDhhODNjZjRmOTdhZDM0NjIyYzIyNDc2YzgyZTQ0YjBkYzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAqzYsXK4c/qXJ/mOFWwVEN9RorQ
8eHcLPoSFkj8TD0uOZDtOoSnCFuujJ5EqMhr9H1r3p9Ug1tmrT+Sz3VT0BnjVpJe
JoVHx6/83ooi+3+sdbtYG6Sac5D4A9QhDtDn9I0qdzNNO/LBbrOVbqwQ9HA2fZ8q
KF+FjTQvH+qbbsiR8jtoXm3T31f0lFKoihxZ+kJnDgFaejuxCoWaYDzLmjaw1JIm
3yu2fTij+3SgotOqa7mhv6Rs9tWbBZ/lGn3L8fxprvM+ynkIKtntGxAfe13f9VI1
wpsh0rm1U/0/B27bCovzAGtEXs76MKe0Sbwc9K/CBRqFyABESfvXn4/omwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLMdCKg89Pl600YiwiR2yC5EsNwHMB8GA1UdIwQY
MBaAFPG5rsqjfe3A8sBPUbyWP80uSqzMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80YmQ3MGMtMDk0YS00M2QwLWFkZGEt
MDRmYmQ2ODE4OTZhLzEvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC80YmQ3MGMtMDk0YS00M2QwLWFkZGEtMDRmYmQ2ODE4OTZh
LzEvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK28MAsc8
1OVELRMIal8G1TFC/XtLnAA+zzNA0u9B6IgmD5kn5vOD1HRLzocR5laybsxc0Lrm
afn0s0JBoYRhyg/S8Mvy1CIlkZKL4iFjDx4K0DLe6/TPxUzMNr7PSPgO437lAT3o
8iVhkbA4ZPw1qd4FjbFs5Udmh60J71Aw3ETZZ2qQA/XgZK4uTuI6Lav3Dn5gpItC
azJw7FcFfuBtuRNEZAswk8gVranISwPbrqcQ+E9CRko77toZPvedQXx1tbg0wxL9
ZQ3yiBpAydrKvzER6KB0t/Syz3jIgq+LOcNMkjMqyh+XLreXrbU6bgow7ETMPHF8
G0DnjKwIJfV/Qw==
-----END CERTIFICATE-----
Generated at Wed May 13 15:48:53 2026 by rpki-client