Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/0a0c19-023c-40f5-a772-ebd69d7734f0/1/8AI84rpaHU_QpeIn3nTLxB0rucg.mft
File: 8AI84rpaHU_QpeIn3nTLxB0rucg.mft (raw, json)
Hash identifier: sBVg2mFLgI6CteuHt0Wa/R0cztoKlF9y1ql2zgsJlvw=
Subject key identifier: 2F:45:15:66:3B:BD:6E:1A:1F:43:D7:51:86:18:F9:08:DB:2B:E4:E3
Authority key identifier: F0:02:3C:E2:BA:5A:1D:4F:D0:A5:E2:27:DE:74:CB:C4:1D:2B:B9:C8
Certificate issuer: /CN=f0023ce2ba5a1d4fd0a5e227de74cbc41d2bb9c8
Certificate serial: 019E1D91000E1559E4C3C6BC7242859F9038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8AI84rpaHU_QpeIn3nTLxB0rucg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/0a0c19-023c-40f5-a772-ebd69d7734f0/1/8AI84rpaHU_QpeIn3nTLxB0rucg.mft
Manifest number: 1651
Signing time: Tue 12 May 2026 19:01:42 +0000
Manifest this update: Tue 12 May 2026 19:01:42 +0000
Manifest next update: Wed 13 May 2026 19:01:42 +0000
Files and hashes: 1: 8AI84rpaHU_QpeIn3nTLxB0rucg.crl (hash: /QX+M6AvIvIDM9EJkVNG6KnTKCmeS1jwNtIysg8X5ng=)
2: w2Ta-rPPbmIQNKq-ipxVWX-8dg4.roa (hash: gcIiCCsS3PcYcJA4aDFua+5XE66yaXHV16D0VY59VUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/0a0c19-023c-40f5-a772-ebd69d7734f0/1/8AI84rpaHU_QpeIn3nTLxB0rucg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/0a0c19-023c-40f5-a772-ebd69d7734f0/1/8AI84rpaHU_QpeIn3nTLxB0rucg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8AI84rpaHU_QpeIn3nTLxB0rucg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:00:0e:15:59:e4:c3:c6:bc:72:42:85:9f:90:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0023ce2ba5a1d4fd0a5e227de74cbc41d2bb9c8
Validity
Not Before: May 12 19:01:42 2026 GMT
Not After : May 13 19:01:42 2026 GMT
Subject: CN=2f4515663bbd6e1a1f43d7518618f908db2be4e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:1f:ef:18:07:81:db:22:9a:57:8d:f2:67:96:
4b:cb:c7:d9:4b:73:63:f2:73:01:38:2a:b9:54:40:
4f:da:c2:64:bf:0d:b9:79:95:33:24:a7:17:a3:c1:
50:2f:c3:70:13:98:87:52:b9:2e:9d:c4:e6:c3:21:
92:f7:79:66:4b:3b:92:25:81:d1:0e:1c:14:4c:09:
4e:7d:6a:c0:82:50:87:b6:47:f3:7d:c9:39:a5:23:
c0:d8:a0:66:96:6f:a0:01:b0:fd:7a:d5:65:37:01:
31:f6:5a:f2:35:fa:93:3d:5a:76:19:8c:55:0e:a8:
43:5a:d3:38:81:95:c2:4a:d9:06:3e:83:ec:1f:04:
d8:60:5c:4a:34:88:a0:8e:a5:6a:b4:bf:cb:8e:1b:
db:21:c4:57:b2:44:5d:6d:15:e5:18:9b:46:7a:2b:
51:25:d7:05:36:da:11:13:61:7a:39:ee:0e:c5:35:
58:43:f7:13:52:c4:16:4a:c8:6b:44:10:24:66:05:
ab:b6:b2:00:e3:f3:60:42:fb:f0:54:92:b3:b0:d7:
96:62:09:6a:21:ee:00:ec:92:71:bf:96:0f:86:5b:
9b:b0:dc:95:32:8c:47:b9:f7:01:ba:da:ac:1a:7d:
03:5e:64:2f:d1:28:22:9a:79:55:44:03:a5:48:b1:
fe:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:45:15:66:3B:BD:6E:1A:1F:43:D7:51:86:18:F9:08:DB:2B:E4:E3
X509v3 Authority Key Identifier:
keyid:F0:02:3C:E2:BA:5A:1D:4F:D0:A5:E2:27:DE:74:CB:C4:1D:2B:B9:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8AI84rpaHU_QpeIn3nTLxB0rucg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/0a0c19-023c-40f5-a772-ebd69d7734f0/1/8AI84rpaHU_QpeIn3nTLxB0rucg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/0a0c19-023c-40f5-a772-ebd69d7734f0/1/8AI84rpaHU_QpeIn3nTLxB0rucg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:c5:ed:32:dc:38:82:56:46:32:ee:c3:b9:16:b1:15:35:ef:
03:76:c5:50:b3:d8:67:3c:8a:23:10:79:2d:6b:bf:9e:5c:49:
9f:57:c1:a3:f2:ec:29:d7:1a:74:46:22:4f:ee:64:71:e9:16:
c4:68:ea:18:48:6e:66:6e:33:55:83:4f:3e:fb:e5:2a:a5:75:
59:55:03:f4:f7:29:f0:8d:c9:d5:2c:e5:bb:ec:a8:6d:c4:2d:
5b:8a:46:4b:7a:90:85:1e:07:f9:2e:4f:71:5e:3d:f2:56:5f:
73:29:01:bc:83:4b:70:d6:16:09:60:37:bd:3f:05:f7:d3:2c:
ef:85:04:8a:d2:3f:64:8f:8a:6e:1e:e7:7b:74:68:3d:5a:c4:
53:19:58:cb:d4:5d:84:f9:52:90:21:f1:a7:d5:8e:f3:8c:76:
ab:d9:c9:7c:c0:f3:1e:90:e3:e7:e1:45:eb:65:58:55:44:59:
24:b3:60:73:9e:5a:2a:78:4f:54:e4:81:16:c9:fa:80:a4:a2:
a2:54:96:dc:9a:4c:1e:c3:e8:80:d5:65:74:f0:da:f7:8e:bf:
1e:67:7d:dd:61:70:35:12:55:37:5a:ed:1e:c8:0d:e1:64:d2:
6d:38:fd:46:6d:bc:89:cf:bf:6e:bf:23:97:ae:cb:ac:12:35:
83:e9:f1:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:56:40 2026 by rpki-client