Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
File: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft (raw, json)
Hash identifier: bTBmRoMVtrwjpmjppp2cBT2T5YPn5df6NC0WHZLbKdU=
Subject key identifier: 42:3C:08:8E:A1:32:28:93:3A:81:F9:36:26:45:4F:65:37:9F:7A:5E
Authority key identifier: F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C
Certificate issuer: /CN=f0a9005423147453909366c6b4d09c31958acc1c
Certificate serial: 019D28BBBF7D5CE35F37469AC2D255DAEE5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
Manifest number: 0221
Signing time: Thu 26 Mar 2026 06:01:26 +0000
Manifest this update: Thu 26 Mar 2026 06:01:26 +0000
Manifest next update: Fri 27 Mar 2026 06:01:26 +0000
Files and hashes: 1: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl (hash: 0eYjSa8TfkWRI4NKv5mRcRvbx4NOG/834wY1w2hWk9w=)
2: XcFf7Up-3gxNLfYQhK3orqJHx2g.roa (hash: QLiEavcgMLadSiCowCkkaoXoMEv3eEuB33IWa6r1pTA=)
3: dHpkVz1qG-AF-2ObL_WKlgFCa5A.roa (hash: pDto/Hqi4osJfNZa1fOxjtdmxoHJy3MfMIgMhgvqHY8=)
4: i2pSpEnVtokJriFjoKmVIGfuRJo.roa (hash: D+Hmz9bjiSh22qk0mMxyTTXET+bcUl31CAB7ub4kHU4=)
5: w3Ce4TCDal1nhbZgs86uVw-EDHA.roa (hash: Y1YtZuc0ZO1egV90xVGx2//JBR2jEYUzSnwVAWKeAz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:bf:7d:5c:e3:5f:37:46:9a:c2:d2:55:da:ee:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a9005423147453909366c6b4d09c31958acc1c
Validity
Not Before: Mar 26 06:01:26 2026 GMT
Not After : Mar 27 06:01:26 2026 GMT
Subject: CN=423c088ea13228933a81f93626454f65379f7a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:94:5c:15:c5:a6:da:a0:e5:73:f3:f6:d7:68:
95:3a:fd:6f:2c:5c:51:08:24:ce:7d:26:19:f6:62:
ab:e6:0b:5c:7e:5f:8c:bc:50:c8:e7:37:93:ed:99:
aa:6e:5a:56:50:0a:cd:2a:9f:27:1a:98:46:e2:9c:
c4:71:c7:42:13:c7:f8:ca:cf:e3:ec:22:e5:30:90:
77:98:01:0d:32:58:83:7f:eb:19:74:21:3a:57:ff:
43:58:a5:28:42:dc:be:c5:ed:43:70:40:03:ab:d6:
bf:e1:87:d8:57:2b:b8:ce:75:ea:af:49:1d:5f:00:
34:e1:51:6e:16:82:63:a9:de:c9:a6:1b:5a:26:00:
19:89:f0:5c:17:43:7b:54:04:6d:32:45:22:62:7d:
dc:12:56:59:39:84:e0:11:2f:f1:dd:30:2f:5e:44:
dd:b1:58:c8:f9:a2:b6:18:8e:10:28:a3:92:e2:3f:
4d:99:f5:47:bd:c8:22:9f:1a:a0:fa:1d:0a:b8:ab:
57:64:9e:ff:03:a7:8f:48:d9:b1:90:c7:3c:ab:22:
23:f8:82:3f:f6:98:db:3f:c1:0b:b5:94:aa:eb:b9:
4b:e9:0c:b4:97:3b:69:06:19:8c:9d:37:74:72:8c:
68:0f:a5:9c:59:a2:6f:fa:75:fb:49:fb:86:20:d5:
f3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:3C:08:8E:A1:32:28:93:3A:81:F9:36:26:45:4F:65:37:9F:7A:5E
X509v3 Authority Key Identifier:
keyid:F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:df:87:c3:8a:88:81:22:7d:dc:af:dd:b1:30:a4:a7:cb:e1:
e2:ab:1d:26:fc:87:58:15:da:12:e1:8a:ef:65:43:40:7a:c0:
bd:0c:32:79:d9:a2:2a:f5:72:9c:06:af:6a:e6:ba:9a:b7:9a:
e1:67:31:9d:a1:49:8c:65:40:a1:61:59:d2:4e:29:a1:3d:6c:
ac:59:c6:c7:a6:4b:96:dd:eb:e0:69:75:5b:57:3e:60:7f:03:
42:a3:28:34:39:de:0c:26:5e:9f:2f:1b:c2:ff:51:0d:98:f0:
cc:a7:89:40:7f:e1:9a:c1:02:81:aa:21:3c:70:14:22:0d:ab:
25:6a:02:66:9e:b2:46:bc:4a:07:dc:d5:a0:0f:c9:bd:14:52:
78:f8:f8:fa:df:37:1b:76:bb:a7:92:b9:52:98:9e:5a:18:03:
d1:e1:c2:95:b7:82:54:9d:a9:ef:3a:4c:b0:bf:3c:85:a5:2c:
03:b9:07:c1:0f:dd:89:a9:6c:f3:b3:7b:0a:bd:e2:63:b9:01:
a9:0a:86:52:55:63:ef:39:e7:ff:3b:0a:c0:7f:cf:df:c0:ad:
eb:8b:51:06:d0:a8:e6:2e:48:0f:a5:de:81:5b:9c:2e:46:0b:
36:6c:d8:3c:29:0a:32:7b:d5:1f:e1:30:83:2f:dd:2c:d0:df:
32:7e:56:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:11:04 2026 by rpki-client