Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: 0fhLRaM6hT1AFZLTN4iPyrZUz6t/ShonW4pvNfECNrk=
Subject key identifier: 51:EA:EA:24:E3:E4:FD:82:FB:55:5F:29:3D:2D:17:5A:8B:8D:3C:70
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 019E1D904A1A37B3088110D2F0CE612601BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 18D5
Signing time: Tue 12 May 2026 19:00:55 +0000
Manifest this update: Tue 12 May 2026 19:00:55 +0000
Manifest next update: Wed 13 May 2026 19:00:55 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: /h2tJVwZPGy4can6rQrJZVBzXBcpgytsEABd6uRYbw0=)
2: 9vmezDMgMLAYgubj0dZwQBpw7Zo.roa (hash: QLo0rxDXf9m7rqbC9zynXdEyUGpcYsQ8wFalcr82vIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:4a:1a:37:b3:08:81:10:d2:f0:ce:61:26:01:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: May 12 19:00:55 2026 GMT
Not After : May 13 19:00:55 2026 GMT
Subject: CN=51eaea24e3e4fd82fb555f293d2d175a8b8d3c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5d:63:95:d7:9d:68:53:55:74:24:f2:c9:a9:
db:90:70:0f:2d:a6:f3:5e:07:f7:44:16:1e:93:5c:
55:1f:79:b2:4f:33:fb:d0:88:9a:bb:a4:0f:ec:a1:
ed:7b:ce:96:7a:8d:50:43:e5:16:ac:34:57:32:c6:
43:ae:37:5f:7c:cb:04:54:83:a8:49:bc:0a:ee:51:
15:64:8c:4b:24:ca:18:6a:4e:7f:9d:c3:86:61:d1:
fc:b1:5a:50:3b:38:41:bb:0c:f0:ad:66:3f:d7:fd:
83:ca:88:f8:ac:36:7d:67:ca:80:69:1d:cf:1d:ed:
f6:b9:76:06:fc:e2:2d:94:e6:c1:e5:2a:70:1c:63:
8a:07:1e:83:1d:18:ab:6d:7e:1e:21:ae:ef:ad:6a:
54:29:5f:e3:77:c6:ea:64:8b:78:9a:d7:4c:19:3c:
5f:65:07:d0:fb:e5:88:ae:ec:6d:d4:6c:16:93:ca:
7f:87:71:71:10:89:03:cd:26:ed:0e:97:9b:90:7c:
d9:85:8d:79:f0:08:6c:a1:07:e7:f7:5d:6e:bc:a5:
b6:52:84:d4:f1:a2:76:3d:fc:d2:17:26:4e:26:62:
6c:dc:fd:e5:a5:72:b5:01:d8:b3:bb:5e:94:44:b2:
9f:f1:15:da:22:41:a9:c2:0f:d0:be:4d:cb:84:70:
ab:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EA:EA:24:E3:E4:FD:82:FB:55:5F:29:3D:2D:17:5A:8B:8D:3C:70
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:d1:76:78:bc:2c:fe:0e:1c:54:ee:cc:67:7c:ab:1d:0f:b2:
f4:f9:e5:44:71:05:c1:c0:e5:30:59:a1:e9:74:3b:20:5a:18:
56:cf:32:90:d9:f8:f1:cc:af:d5:4e:53:58:91:10:ed:c1:89:
8c:d2:21:e5:d6:7d:be:f0:a9:c2:f0:1c:c9:07:8c:50:f7:f9:
af:1a:47:8d:05:ce:d9:78:74:01:6b:b9:9e:ba:46:d0:6e:73:
42:b9:47:df:72:50:22:39:3c:75:47:2e:d4:c5:34:d8:17:aa:
ac:d6:3b:15:08:b4:5b:bc:c7:a9:cd:4d:b4:5a:8d:25:3a:5e:
47:8a:24:f6:4c:50:32:9a:ae:b7:a4:1f:98:55:e5:f9:4c:99:
43:ad:81:a9:e4:63:cd:b7:8e:51:b2:30:af:96:10:a0:e2:45:
41:a8:57:4c:06:ef:76:70:13:3e:a6:36:5b:e0:f4:98:76:26:
1d:9b:74:4c:3f:eb:b7:06:7b:e3:b3:c1:ec:91:b5:65:55:1e:
a4:29:cc:3f:be:53:7d:fd:60:3f:d8:76:7f:2f:f2:ef:5f:8c:
0b:0c:ef:6f:37:8a:4a:b3:b1:14:e9:c2:5a:c5:56:8a:05:88:
39:79:e5:df:8d:59:0c:a4:bb:20:bc:f7:fd:0e:53:50:bd:1d:
75:d7:63:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:20:45 2026 by rpki-client