Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: EJZEld4+1V6zMjBRUwh1ajWEaL2ICgjGuYeXX0kqES4=
Subject key identifier: DD:2F:6A:7B:A6:DC:02:6C:A8:DC:AE:57:09:B9:25:8E:7C:9E:43:92
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 019E1E6C91C2773B7AC5CFB1D710310F79B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 077F
Signing time: Tue 12 May 2026 23:01:32 +0000
Manifest this update: Tue 12 May 2026 23:01:32 +0000
Manifest next update: Wed 13 May 2026 23:01:32 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: 0lwQJREk4KMZhZfIWSsZdHjp9oxWVnIRECNQd7MqYfk=)
2: nwAF_VA7b5QLJBmqxWMgeg05ev8.roa (hash: c/NjZkh9geRKVWgr/sc352gf8HkePyWjE1VddV8tbrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:91:c2:77:3b:7a:c5:cf:b1:d7:10:31:0f:79:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: May 12 23:01:32 2026 GMT
Not After : May 13 23:01:32 2026 GMT
Subject: CN=dd2f6a7ba6dc026ca8dcae5709b9258e7c9e4392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:3c:42:98:a1:6d:02:74:ee:09:51:72:8c:
33:83:62:f5:e0:7a:18:b5:b7:f8:d5:d7:26:2c:e9:
34:39:c2:ec:e5:be:1a:3f:96:eb:33:01:02:93:ba:
9c:cd:be:9c:37:f3:69:88:f1:1a:c5:78:7b:f0:33:
b4:05:42:7c:a3:ad:37:38:aa:db:07:78:76:f2:a1:
c6:dd:36:e7:34:09:9d:54:2f:a5:b9:af:a6:64:a9:
59:1d:10:55:64:7e:21:cb:de:97:7a:18:c0:69:7c:
dd:6e:a7:1e:db:f3:81:dd:9f:1c:b2:b5:db:c1:90:
c7:ce:5b:a5:b0:1f:2b:30:97:3f:c9:a2:e4:ff:b5:
45:5e:44:62:ef:2a:29:02:24:e2:67:ae:42:7c:f5:
bd:37:b2:56:8b:5c:a0:7c:9e:2d:0e:8b:e6:fb:c1:
ca:05:44:a8:12:e7:9b:b9:52:ae:94:ee:e5:64:44:
34:e2:83:87:46:0d:5a:a6:d2:82:99:92:79:65:65:
ee:37:73:0a:ff:0f:fb:15:22:dd:01:d8:74:b8:13:
a6:83:f9:e8:f4:d2:2b:92:ff:4a:b3:ff:fe:94:41:
63:3d:e1:cd:b0:f8:98:cb:ca:6b:33:3c:72:1b:9c:
47:36:6c:bb:a4:b4:0d:ce:44:44:64:2d:67:4b:29:
1a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2F:6A:7B:A6:DC:02:6C:A8:DC:AE:57:09:B9:25:8E:7C:9E:43:92
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:d0:a3:9d:0c:fb:d3:4f:94:ea:01:41:08:b0:ad:68:24:70:
ce:5f:1c:c9:71:34:3a:2d:f2:da:2e:22:8c:03:25:d1:77:ba:
45:cd:ba:af:a4:34:98:73:55:91:0d:27:56:ca:f2:5f:4b:7f:
04:3b:4f:40:25:53:8d:6b:fb:8c:00:69:42:0e:13:a1:39:80:
00:5b:22:d8:47:8b:44:1b:6e:e7:d7:87:a9:0f:76:43:cc:cc:
7a:38:8c:10:d1:59:38:75:70:66:ae:f7:db:04:ce:19:49:62:
a8:d3:50:4d:9b:b5:d8:6e:e5:c6:15:30:0c:f2:0a:c3:9a:3c:
17:89:84:20:39:44:ce:12:f8:de:70:33:62:10:73:91:0d:9e:
d2:95:b9:9a:b5:de:e6:98:0a:6e:52:11:c7:a3:0a:44:a9:a5:
99:ab:5d:38:47:7e:4f:07:5f:2f:e2:b6:1b:65:80:6c:89:69:
ae:00:e1:a9:bd:cd:64:a8:85:cd:bf:f6:23:cd:d7:0e:54:9f:
85:5e:17:d6:3e:b3:9b:30:94:15:75:d9:a0:fd:4c:db:d1:b4:
0c:ea:8e:95:f4:5c:8b:ac:6e:07:a8:67:24:3c:8d:1d:3e:b4:
b8:5a:83:a6:c0:89:c7:41:7f:de:76:fd:1f:2f:1f:2a:9a:6c:
2a:bd:f7:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:46:20 2026 by rpki-client