Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
File: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft (raw, json)
Hash identifier: 8OUaP4adxZ42ww8VdbW0SoTVmF2YCD5wLeAHX08hVdU=
Subject key identifier: D5:77:36:39:34:CE:80:91:C2:17:A3:57:C6:59:BC:04:3B:AD:EC:D7
Authority key identifier: F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0
Certificate issuer: /CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0
Certificate serial: 019D2AE06E87CCBBFFD842BD96527515FB85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 16:00:44 +0000
Manifest this update: Thu 26 Mar 2026 16:00:44 +0000
Manifest next update: Fri 27 Mar 2026 16:00:44 +0000
Files and hashes: 1: 8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl (hash: co7Uas1m+x1vjuvVfsRZqElusZDTp50pjsG+nVsEONA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e0:6e:87:cc:bb:ff:d8:42:bd:96:52:75:15:fb:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f261fa1fe6dc09fa54d1af59c2e100cd1412c7f0
Validity
Not Before: Mar 26 16:00:44 2026 GMT
Not After : Mar 27 16:00:44 2026 GMT
Subject: CN=d577363934ce8091c217a357c659bc043badecd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7a:45:90:05:d9:b4:d8:03:44:c9:65:f9:32:
ff:95:57:8e:b7:00:6a:66:b4:1c:a2:a2:86:06:55:
9a:cb:b5:13:13:69:3e:d7:17:b3:2c:aa:5f:eb:11:
30:e9:98:12:4a:2a:21:31:49:8e:f9:72:15:5b:b4:
bb:54:0f:c2:04:5c:69:49:d7:b8:e5:0c:af:dd:0c:
e9:a3:a6:a7:68:7b:35:ac:6a:c6:d9:60:6a:e9:11:
79:3a:a0:d4:32:6f:6a:8c:e1:56:2c:f7:ff:05:ca:
41:4d:73:92:19:86:be:90:8f:95:55:45:0c:d4:21:
30:48:9d:73:db:ee:33:44:58:f4:7d:4c:7f:0e:0a:
fe:3b:63:7b:d7:ce:80:58:9d:39:12:b3:89:3b:7f:
5a:1c:d4:b5:59:12:6b:10:cb:09:2e:2c:cb:15:4e:
2e:a6:d3:76:5d:d9:ca:d8:83:43:94:29:53:04:3d:
6d:2a:46:16:4b:e8:b6:f6:91:5f:61:40:26:95:86:
dd:e7:60:9e:d0:0e:cd:af:b4:0c:9b:33:33:40:3f:
a6:8f:5d:4a:68:53:03:92:cb:86:df:72:c1:b3:76:
dc:6d:a9:f3:e0:37:89:0b:14:7b:12:19:79:07:b6:
93:19:73:e2:97:92:27:ae:10:34:23:ed:66:94:91:
22:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:77:36:39:34:CE:80:91:C2:17:A3:57:C6:59:BC:04:3B:AD:EC:D7
X509v3 Authority Key Identifier:
keyid:F2:61:FA:1F:E6:DC:09:FA:54:D1:AF:59:C2:E1:00:CD:14:12:C7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e0e4f-746c-4908-855d-e77e0e21b16a/1/8mH6H-bcCfpU0a9ZwuEAzRQSx_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:eb:1b:16:a3:1e:7d:fc:20:58:20:3c:35:fa:4a:3a:16:eb:
ea:6c:a4:46:7a:8e:54:1a:16:bf:40:85:20:8b:dd:9a:0c:6b:
fa:7e:31:75:28:f1:aa:44:3a:bc:4b:bd:7d:02:a8:2a:0e:61:
e4:e3:3d:d5:52:85:2a:9b:3c:83:bd:2b:d5:a3:40:ab:5f:dc:
15:5c:60:f2:d2:e2:7b:d9:3f:07:b0:ed:90:db:f8:d9:90:3a:
9b:63:7a:88:d3:71:ea:1f:79:aa:5d:97:72:a1:33:49:4d:e0:
3e:e1:dd:ef:7a:e6:79:84:6d:c8:36:11:17:12:19:5d:6b:17:
b3:c9:89:4d:10:c3:e5:b8:88:5a:3f:62:0a:45:24:90:54:d7:
7c:15:b0:97:9a:d9:f6:86:a3:b7:a7:13:b1:0b:ca:f0:8d:34:
92:37:db:72:56:d7:28:ab:dc:06:01:2e:e8:28:01:23:3b:4b:
65:86:cc:eb:75:17:7f:1a:e9:9b:6d:f5:84:5a:5e:21:af:41:
f6:5b:3c:9b:01:7e:c0:de:3a:e2:6a:0a:0c:4d:56:1c:97:33:
e6:a6:fc:f4:cb:c2:ce:a8:82:1a:00:c5:c3:82:2f:26:0c:a3:
12:f0:35:0a:8a:f7:3d:7e:63:f5:be:00:f5:df:12:f0:43:63:
1d:8c:73:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:34:25 2026 by rpki-client