Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
File: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft (raw, json)
Hash identifier: MiKruy9dGUq1F52InKcQgA590xSw73CRPFqnRn8lA08=
Subject key identifier: BE:10:C8:77:51:32:00:A4:C8:17:C0:8F:82:66:BE:59:81:B7:32:FD
Authority key identifier: F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C
Certificate issuer: /CN=f0a9005423147453909366c6b4d09c31958acc1c
Certificate serial: 019D26CCD6C30AA351AA076C9DC880866166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
Manifest number: 0220
Signing time: Wed 25 Mar 2026 21:00:51 +0000
Manifest this update: Wed 25 Mar 2026 21:00:51 +0000
Manifest next update: Thu 26 Mar 2026 21:00:51 +0000
Files and hashes: 1: 8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl (hash: jUknjUHQMVqNj6C9rG2LtkEX4OXGL6bWtJkUS8Geo/k=)
2: XcFf7Up-3gxNLfYQhK3orqJHx2g.roa (hash: QLiEavcgMLadSiCowCkkaoXoMEv3eEuB33IWa6r1pTA=)
3: dHpkVz1qG-AF-2ObL_WKlgFCa5A.roa (hash: pDto/Hqi4osJfNZa1fOxjtdmxoHJy3MfMIgMhgvqHY8=)
4: i2pSpEnVtokJriFjoKmVIGfuRJo.roa (hash: D+Hmz9bjiSh22qk0mMxyTTXET+bcUl31CAB7ub4kHU4=)
5: w3Ce4TCDal1nhbZgs86uVw-EDHA.roa (hash: Y1YtZuc0ZO1egV90xVGx2//JBR2jEYUzSnwVAWKeAz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:d6:c3:0a:a3:51:aa:07:6c:9d:c8:80:86:61:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a9005423147453909366c6b4d09c31958acc1c
Validity
Not Before: Mar 25 21:00:51 2026 GMT
Not After : Mar 26 21:00:51 2026 GMT
Subject: CN=be10c877513200a4c817c08f8266be5981b732fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:84:4a:5f:aa:7b:8a:2f:ff:fd:68:55:9a:e7:
db:6a:af:5b:09:c5:eb:60:e9:80:0e:bf:8d:37:3a:
19:66:68:9b:8e:b6:32:b0:40:a0:fa:76:d7:ea:5b:
ee:54:dd:44:77:b2:01:87:f7:4d:b7:2f:fc:a8:9b:
49:6f:ea:bf:79:2e:1b:d7:73:7f:60:bd:be:85:34:
60:4a:1b:28:b1:39:1d:f0:c8:1e:4f:82:b4:33:a0:
42:bf:67:9c:82:e9:ab:c2:13:f3:b6:cf:90:4e:ff:
85:14:18:c8:f5:c9:75:58:07:e5:05:20:29:0b:d2:
ff:12:2f:05:ae:88:3d:f9:c2:aa:91:f5:80:1b:c5:
4a:13:aa:43:89:6c:50:bf:6c:89:aa:61:2a:ea:d0:
c6:f9:00:bd:4e:82:2e:bd:17:87:4a:2f:f0:82:6b:
e7:d5:d6:b9:bd:25:ec:fb:5f:ea:eb:b9:da:f7:23:
0d:9d:22:47:df:76:9e:a3:4d:55:fb:f1:6d:bb:6a:
ca:0d:1e:9d:e6:65:4f:56:cf:4a:1f:29:cf:36:8b:
7b:8f:3e:1d:70:5e:af:97:a5:a4:74:14:1f:ba:11:
7a:94:b7:b7:72:53:24:26:c0:c8:18:7c:7d:e1:df:
9a:b9:a5:52:d3:25:33:57:b4:41:28:c0:63:f3:31:
ee:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:10:C8:77:51:32:00:A4:C8:17:C0:8F:82:66:BE:59:81:B7:32:FD
X509v3 Authority Key Identifier:
keyid:F0:A9:00:54:23:14:74:53:90:93:66:C6:B4:D0:9C:31:95:8A:CC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KkAVCMUdFOQk2bGtNCcMZWKzBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/157af6-cce2-4e6d-bc23-30d79f9aa877/1/8KkAVCMUdFOQk2bGtNCcMZWKzBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:57:7f:7d:06:6a:1e:59:f8:42:a5:bb:34:16:b6:b7:78:43:
bf:9e:d3:8c:fb:8f:ee:d3:4b:2a:f5:18:77:1c:0c:ee:ee:88:
45:86:dc:f4:3e:f6:f5:c9:9b:49:9b:dc:51:b6:69:1f:ec:c1:
36:2a:c1:ff:96:ee:1d:dc:98:2a:3c:95:36:9c:22:45:5d:cd:
54:5b:32:ef:e6:7d:33:6f:c0:21:5a:cc:30:05:de:b3:a9:ea:
1c:5a:bb:3b:53:eb:a1:8f:ed:5a:4d:5c:bb:0f:00:d7:14:60:
96:26:70:d8:a9:00:a8:7e:04:f7:c4:79:14:80:40:1e:9e:0e:
10:32:2b:35:b1:55:94:ff:ea:7c:40:95:5f:88:0c:f0:db:c6:
e1:d2:08:29:68:dd:e5:1c:3a:16:2f:37:2a:74:64:87:0a:8f:
fe:57:4d:94:9f:d9:a7:9d:18:e5:57:73:16:43:36:9e:69:9e:
a6:16:07:09:ba:a6:0b:7b:c4:74:2c:36:4b:c1:97:c1:7f:5d:
49:4e:ec:93:90:fe:8f:cf:6c:0e:bf:83:68:b0:51:0d:6d:da:
b2:6e:65:60:ae:9a:29:46:9f:47:30:af:25:ed:5d:a2:b7:a3:
38:c2:a3:b5:ac:4b:19:9b:e5:91:17:22:fc:f2:da:28:f7:7d:
04:33:38:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:51:33 2026 by rpki-client