Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
File: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json)
Hash identifier: 84OQ8Dd5NVLIp4UD75GjKSyIdbYdlRyFaqw16TxDA5w=
Subject key identifier: 2A:10:5B:11:74:16:87:A1:A9:68:A4:56:D5:F6:8E:66:F2:EE:6A:98
Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
Certificate issuer: /CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Certificate serial: 019D28F1F87271B88B22683DC8760A6D3020
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 07:00:39 +0000
Manifest this update: Thu 26 Mar 2026 07:00:39 +0000
Manifest next update: Fri 27 Mar 2026 07:00:39 +0000
Files and hashes: 1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: O/DkOctVN9uTqR1QMeDFrpEupjKMlffG2Vh+/nHp/uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f1:f8:72:71:b8:8b:22:68:3d:c8:76:0a:6d:30:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Validity
Not Before: Mar 26 07:00:39 2026 GMT
Not After : Mar 27 07:00:39 2026 GMT
Subject: CN=2a105b11741687a1a968a456d5f68e66f2ee6a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:37:35:11:bd:a8:c9:96:e9:56:72:92:06:a5:
16:7c:a4:48:68:27:f7:dd:c3:8e:74:fe:80:06:36:
77:b2:9f:2e:6e:08:de:04:49:fc:6b:d2:a5:58:15:
12:fb:fc:aa:81:ea:82:65:6a:6e:32:3e:f5:72:c7:
7f:a4:86:b6:86:c0:a1:45:9d:d6:c3:63:17:7b:d8:
63:00:84:88:f4:85:55:61:aa:a3:e4:ed:3d:20:4a:
25:80:5a:e6:5e:43:16:b9:56:36:3d:25:8f:a0:59:
df:af:05:a0:80:65:03:19:44:b4:c6:ea:4e:dd:b0:
79:f9:aa:23:aa:59:98:4d:5a:8d:70:4d:5c:c1:f6:
1f:66:94:9d:39:8f:3d:9d:28:64:74:a7:80:fc:d7:
b9:26:66:12:29:2f:5f:55:0b:a5:f6:b8:d8:1d:ec:
53:75:d8:7b:8c:2b:25:78:8c:d4:aa:e2:af:3a:2d:
97:cb:88:80:a0:c3:8e:e7:90:f5:41:c7:7a:ca:d1:
c1:fc:64:dc:ea:44:22:58:46:9e:9d:07:69:bf:34:
6d:b0:fa:2c:91:df:45:fb:67:08:47:85:0e:3e:81:
da:7c:13:af:2f:59:f6:28:7b:4a:ad:8f:0f:8f:e6:
6a:f9:e2:3b:10:4e:8a:50:7c:b4:13:34:38:5b:a4:
7f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:10:5B:11:74:16:87:A1:A9:68:A4:56:D5:F6:8E:66:F2:EE:6A:98
X509v3 Authority Key Identifier:
keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:7f:29:b8:f5:ca:07:9c:a7:b7:02:7d:4b:64:dd:43:95:b8:
23:55:f8:93:3a:8a:e5:a9:21:68:7b:8e:93:cf:ad:fc:0f:45:
51:e7:35:5a:81:b1:d4:4a:27:72:a6:b7:8d:80:35:72:45:7c:
f8:95:78:57:1c:07:9f:d1:0a:dc:be:5e:43:7c:6a:15:4d:c0:
ac:21:c0:54:37:4f:a3:a0:37:37:0e:c0:57:e6:b4:07:48:49:
8a:9f:ba:bf:59:52:19:c7:eb:82:c9:a2:6b:e4:8e:eb:0d:f6:
99:4f:47:c8:37:27:cd:47:6c:1b:f8:01:bd:a1:ee:e6:05:e8:
0f:54:e0:ac:c7:f8:ab:ec:06:30:7c:37:32:7e:6c:6a:cc:39:
25:e8:88:81:ba:5c:0b:69:2d:a3:79:eb:53:30:49:c7:6a:44:
31:d0:ea:25:90:b8:21:1b:ed:30:6e:4f:6f:01:e5:d0:a1:69:
f6:da:82:92:59:a0:51:46:2d:e0:58:ce:09:b5:79:08:9f:d5:
a8:4c:1b:3e:4e:20:aa:2b:fc:21:92:68:ed:82:7f:ca:3f:4c:
60:cf:e8:b3:79:2c:7b:ea:de:1e:d3:99:35:1f:59:7a:ab:2e:
f9:6c:ce:af:76:5b:be:90:bb:b3:77:6e:a1:79:94:91:84:c6:
e2:72:5a:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8fhycbiLImg9yHYKbTAgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhZWZiY2ZhN2YwNTlmZjEwNzI3ZWE2MTllNTkxMzlkYTM3
NDE4ZWYwHhcNMjYwMzI2MDcwMDM5WhcNMjYwMzI3MDcwMDM5WjAzMTEwLwYDVQQD
EygyYTEwNWIxMTc0MTY4N2ExYTk2OGE0NTZkNWY2OGU2NmYyZWU2YTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jc1Eb2oyZbpVnKSBqUWfKRIaCf3
3cOOdP6ABjZ3sp8ubgjeBEn8a9KlWBUS+/yqgeqCZWpuMj71csd/pIa2hsChRZ3W
w2MXe9hjAISI9IVVYaqj5O09IEolgFrmXkMWuVY2PSWPoFnfrwWggGUDGUS0xupO
3bB5+aojqlmYTVqNcE1cwfYfZpSdOY89nShkdKeA/Ne5JmYSKS9fVQul9rjYHexT
ddh7jCsleIzUquKvOi2Xy4iAoMOO55D1Qcd6ytHB/GTc6kQiWEaenQdpvzRtsPos
kd9F+2cIR4UOPoHafBOvL1n2KHtKrY8Pj+Zq+eI7EE6KUHy0EzQ4W6R/AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCoQWxF0FoehqWikVtX2jmby7mqYMB8GA1UdIwQY
MBaAFErvvPp/BZ/xByfqYZ5ZE52jdBjvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy82M2NmZjMtYzllYi00MjExLWI5MmUt
NDVmNTZiNDJjNmFjLzEvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy82M2NmZjMtYzllYi00MjExLWI5MmUtNDVmNTZiNDJjNmFj
LzEvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgH8puPXK
B5yntwJ9S2TdQ5W4I1X4kzqK5akhaHuOk8+t/A9FUec1WoGx1Eoncqa3jYA1ckV8
+JV4VxwHn9EK3L5eQ3xqFU3ArCHAVDdPo6A3Nw7AV+a0B0hJip+6v1lSGcfrgsmi
a+SO6w32mU9HyDcnzUdsG/gBvaHu5gXoD1TgrMf4q+wGMHw3Mn5sasw5JeiIgbpc
C2kto3nrUzBJx2pEMdDqJZC4IRvtMG5PbwHl0KFp9tqCklmgUUYt4FjOCbV5CJ/V
qEwbPk4gqiv8IZJo7YJ/yj9MYM/os3kse+reHtOZNR9Zeqsu+WzOr3ZbvpC7s3du
oXmUkYTG4nJa/g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 15:01:58 2026 by rpki-client