Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: zyrUXoXMdpIzLjSpdRVNA7w2c0pmSxC46QV7MUDU+7M=
Subject key identifier: AD:CF:D3:62:09:0D:6F:33:FF:4A:B0:F9:63:35:37:AD:C6:CA:AD:B7
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 019D25F1808D14156E211858B1264A227093
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 1881
Signing time: Wed 25 Mar 2026 17:01:17 +0000
Manifest this update: Wed 25 Mar 2026 17:01:17 +0000
Manifest next update: Thu 26 Mar 2026 17:01:17 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: 6Xcvdxc+/BKul7GyN2hsv7kHKGPYh0JPiJEScLaQavA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:80:8d:14:15:6e:21:18:58:b1:26:4a:22:70:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: Mar 25 17:01:17 2026 GMT
Not After : Mar 26 17:01:17 2026 GMT
Subject: CN=adcfd362090d6f33ff4ab0f9633537adc6caadb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1e:22:6e:a3:44:bd:6f:f1:e6:78:9f:4d:17:
0d:72:63:b6:92:cc:b0:8c:6c:ee:37:97:38:01:c0:
7a:6b:8e:d5:88:99:fa:05:5a:a5:91:66:39:08:1b:
b8:e1:b8:ef:8b:ac:e2:33:d2:e5:85:4b:9b:fe:4a:
e1:1d:f5:56:05:6a:b8:37:31:6c:ef:10:f4:3d:8e:
53:b9:32:20:32:7f:9c:e4:79:2f:21:7d:c7:1e:de:
11:72:1b:ae:30:f7:22:82:95:29:11:41:84:88:02:
60:4a:d6:8f:11:47:63:39:c8:e6:d1:c4:77:64:df:
5b:8d:f5:29:81:9d:74:f2:77:08:f1:99:7d:55:2b:
03:59:b5:ac:a0:38:2d:f3:d7:16:25:fc:91:57:28:
2a:99:a7:7a:73:c8:05:2b:36:75:8a:e8:b3:c8:8c:
df:bd:18:1d:14:65:8c:14:ee:42:90:46:d0:52:f8:
15:4f:b9:46:02:b7:37:8f:af:0e:cb:b7:17:94:88:
ad:bb:8b:c9:ff:e0:f9:34:00:6a:79:94:81:fd:05:
c3:60:a1:40:1f:b9:9f:03:c5:fe:5e:83:25:7b:4a:
8a:b6:a2:c6:0a:c8:0d:2e:ce:67:9c:7f:0e:2f:e5:
2a:66:93:4e:ce:5c:a6:11:fd:fc:b2:52:c2:34:0a:
4f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CF:D3:62:09:0D:6F:33:FF:4A:B0:F9:63:35:37:AD:C6:CA:AD:B7
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:39:7a:7d:14:42:a7:f1:02:89:a2:13:b2:b9:1c:af:f7:fd:
ae:19:83:b6:20:56:99:a7:8b:0b:21:a5:10:35:78:09:f8:65:
84:db:8b:ed:74:3d:51:ca:d7:70:6d:e0:ef:50:dc:58:c3:78:
22:fe:e7:9a:5e:5c:ac:8f:8f:5b:2e:39:fc:06:72:2f:5b:0c:
31:4c:68:9b:e6:06:bb:fc:f7:7d:26:82:d7:0b:e7:d6:a4:a6:
e1:9f:28:01:bc:4e:42:15:d8:5d:f2:2b:a3:5d:b2:e8:ed:1f:
5b:0c:92:09:3f:04:6a:93:41:2e:4a:c6:e1:5e:80:7f:0c:4f:
22:df:be:81:32:0c:e4:4a:07:91:eb:7d:10:eb:c2:35:b5:78:
3d:b1:5a:eb:40:4c:c7:f4:5e:ea:da:96:da:bb:6a:33:e0:1d:
c8:a6:ea:30:ff:ed:d3:1f:b0:1f:8a:c7:c9:aa:13:8d:c2:ec:
6f:a4:4d:0e:99:9c:75:16:ed:ee:d1:30:24:8f:df:6c:29:e3:
46:6c:8e:db:71:8f:e5:32:9e:a0:4e:66:8f:9e:cd:37:5f:65:
2d:e2:07:61:ec:c6:ba:22:87:c2:f0:67:46:03:93:49:a8:26:
28:76:3f:d4:e2:7c:c2:15:18:f6:83:07:33:d0:69:05:85:c3:
b1:96:ff:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:09 2026 by rpki-client