Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: UkcgHerNjv6ggQvyqRF1LzGrpwS53oCFEKzAR13Y3aM=
Subject key identifier: 8F:FA:73:9E:DA:E2:18:62:29:18:DF:2C:8A:91:09:80:35:76:FA:CF
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 019E1EDA903AF51E870D3F0D26FC2B0EEBEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 1268
Signing time: Wed 13 May 2026 01:01:40 +0000
Manifest this update: Wed 13 May 2026 01:01:40 +0000
Manifest next update: Thu 14 May 2026 01:01:40 +0000
Files and hashes: 1: 4dTiivW_bvCIIr9OKslRJ2ttAH0.roa (hash: nywsABEuvSZWyJVu4fBV0raW88OjCnUfbkwJDiN85oo=)
2: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: DacXA9AcGoMLI/yOvo5Ey6Kvu8lzqoYnWMpcCKD/ZL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:90:3a:f5:1e:87:0d:3f:0d:26:fc:2b:0e:eb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: May 13 01:01:40 2026 GMT
Not After : May 14 01:01:40 2026 GMT
Subject: CN=8ffa739edae218622918df2c8a9109803576facf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7c:d5:2b:2a:ad:3b:0c:41:b1:c2:86:d4:1b:
75:61:85:92:a9:f5:8a:ca:57:e1:8a:6e:ad:df:61:
28:01:8e:a3:8f:88:e7:a4:57:08:75:97:cb:a0:7c:
fc:4a:99:6b:cd:09:b6:2c:7e:3e:d5:94:1d:47:a6:
38:06:90:35:8a:e9:4e:7b:c0:0c:e6:cd:2e:51:16:
da:d5:c5:d7:21:4e:7c:48:54:8b:c3:5f:ec:df:30:
ff:b1:93:ed:40:ab:10:64:a8:01:23:79:8d:b5:8b:
f4:88:a8:f3:1d:5b:2e:71:45:10:ff:6e:4e:ea:f0:
b2:b8:54:24:5d:64:3d:a0:88:03:87:04:1c:d4:78:
90:da:e9:9e:6c:e8:4b:6c:1f:75:da:2b:92:2d:2f:
2c:72:82:f2:bb:d2:36:4e:45:a9:cc:24:31:3a:5c:
b3:8d:bd:dd:c8:63:9f:56:26:1a:bb:44:62:64:aa:
62:13:8a:f3:4a:06:36:2b:65:d0:91:c1:9d:99:6b:
e0:8c:d1:d1:16:94:9f:97:d4:fd:8b:a0:e6:59:7c:
dc:b1:b2:c4:dd:27:87:f9:a6:73:26:18:f0:4e:16:
c9:d1:a4:c3:26:21:e2:89:d2:0f:8a:76:01:de:98:
92:3d:cd:8b:e5:6b:74:82:63:04:c8:b7:15:ee:6d:
2c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:FA:73:9E:DA:E2:18:62:29:18:DF:2C:8A:91:09:80:35:76:FA:CF
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:55:ab:2f:e1:57:bb:37:94:5c:96:e4:ea:4c:e2:b5:5e:d0:
4f:6c:bb:fb:e4:d4:b2:ca:89:af:d1:b5:6f:d3:89:42:9d:72:
75:04:ea:48:dd:a3:4c:e1:5f:31:52:05:60:30:23:39:fa:c6:
60:f4:61:6e:15:a1:db:7c:07:08:b7:ff:71:20:69:38:dc:5f:
92:95:dd:cd:94:78:2c:d4:77:78:e0:5d:69:c7:56:09:2c:48:
e7:c1:76:ed:ec:6f:b6:d8:fd:6b:59:78:c4:1d:e9:68:d6:5b:
0a:7f:07:18:84:92:89:40:2d:f5:94:a9:68:84:5f:4b:b1:ef:
05:85:64:ba:74:b7:3a:f8:54:86:d0:bb:de:be:c9:f7:79:b5:
03:68:31:5e:37:30:23:b0:08:f9:09:ed:63:e1:bd:ff:46:1c:
a1:b4:8a:48:97:a5:bf:c6:3b:40:b8:c1:96:90:4d:7e:e9:e3:
13:72:64:84:f2:03:9a:e0:cf:f2:66:39:93:87:b3:3d:90:5f:
70:46:a8:0e:42:08:88:54:fd:95:94:6e:e7:43:ad:b2:8a:b0:
d6:a0:1c:b1:96:5c:25:d6:1c:42:54:47:70:8d:f7:39:4a:38:
32:35:6e:9d:f1:28:c0:1a:f3:20:50:db:c6:e0:6c:b0:e9:4a:
80:3d:06:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:22:32 2026 by rpki-client