Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
File: 8iL76FrkCNN3shfU66eziyS69d0.mft (raw, json)
Hash identifier: fBXFAlSlIGpIrrCl4ArbhU7nlJbZV+WHA2ayZm0LPK8=
Subject key identifier: 69:7D:1B:33:23:A5:F8:83:28:37:E9:D1:3F:1B:32:DC:A2:7B:36:0B
Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
Certificate issuer: /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Certificate serial: 019E1E3593433419FCCA40108AD1F8E6CE9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
Manifest number: 0FB6
Signing time: Tue 12 May 2026 22:01:27 +0000
Manifest this update: Tue 12 May 2026 22:01:27 +0000
Manifest next update: Wed 13 May 2026 22:01:27 +0000
Files and hashes: 1: 8iL76FrkCNN3shfU66eziyS69d0.crl (hash: fVEpV7CZ0BRH1dYdf+2FpaFe9raXR7n7XHbtY6C1JKQ=)
2: RAC2EIsVMHG6hRns7HbMn17gGls.roa (hash: FF3H1038Rgf//9+NtLOprCe/ZirTllG7HflUAk9dINQ=)
3: nxP6oV7FFuyKT5VZI8Lr0S_v3YA.roa (hash: iN63qFqYR+Oirh/aAc/OhTjdpHDfVt7KEG3Iws+eD0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:93:43:34:19:fc:ca:40:10:8a:d1:f8:e6:ce:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Validity
Not Before: May 12 22:01:27 2026 GMT
Not After : May 13 22:01:27 2026 GMT
Subject: CN=697d1b3323a5f8832837e9d13f1b32dca27b360b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:94:58:0f:0a:44:ad:b9:4b:56:a0:f2:c9:7f:
c8:20:86:3b:01:09:6a:cf:65:08:28:27:2f:18:46:
c2:10:b8:3f:7e:de:03:b5:5a:ab:1c:10:4e:29:f6:
f7:31:a5:2a:ec:8d:13:02:28:a2:5c:f4:1e:56:bf:
f7:f1:3c:99:55:70:b7:09:83:8f:60:75:da:25:a3:
9d:53:17:b3:e6:d7:a6:fa:a2:d3:8b:58:21:03:1d:
15:89:f4:67:ca:9b:94:cd:98:8b:3d:42:dd:6a:be:
ad:07:04:bc:44:3f:34:9e:94:81:ea:a8:a3:54:b7:
ef:fb:d7:ed:d3:8d:19:94:f3:48:c5:d6:aa:1a:56:
58:af:71:cf:d0:5f:22:42:2f:3a:a0:37:64:94:87:
da:8e:08:f4:f0:1b:e9:13:23:2f:70:a3:ce:3d:1f:
a2:24:47:6b:92:27:a7:3f:84:6a:a3:9d:0f:2f:a0:
07:1e:82:c5:92:57:c4:0e:8a:6b:e6:8d:c7:41:a9:
7f:83:43:e5:89:45:41:30:e4:35:52:e0:7a:27:a6:
56:34:ce:23:43:f9:4b:01:60:80:9f:77:82:39:f2:
c6:6d:51:51:cb:f2:87:4e:ff:02:0b:5a:f3:f9:b4:
38:1b:ac:67:c9:6e:2b:17:9b:cc:7d:7a:2a:ca:7e:
4a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7D:1B:33:23:A5:F8:83:28:37:E9:D1:3F:1B:32:DC:A2:7B:36:0B
X509v3 Authority Key Identifier:
keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d4:65:5c:0d:91:0c:b2:17:63:f4:f3:b7:bc:11:a2:c4:42:
3b:3b:62:f3:ab:28:f7:60:17:3b:d3:38:b6:b2:98:ac:f0:a6:
e4:1d:d4:ac:0e:0e:ca:6e:72:c2:df:f7:03:b8:81:1f:f9:c8:
11:4e:69:32:22:8a:46:af:dd:37:d8:e9:1a:03:21:94:6b:72:
d4:90:75:91:2d:06:59:e8:9b:8d:91:d2:11:65:60:8e:64:c8:
10:1d:ed:0c:fc:94:25:d4:06:2c:c2:33:b3:5e:4e:61:69:ad:
fa:ae:d2:32:72:83:25:df:aa:45:8d:dc:05:91:7d:ae:d5:9c:
63:1d:8d:db:eb:1a:32:93:9b:5f:dc:bd:94:c0:a7:52:3b:d3:
95:5b:a6:eb:5a:ea:d9:c0:49:b8:d7:29:18:2a:49:e3:6f:d5:
25:a8:0a:f4:23:45:7a:62:e4:53:be:c5:8d:c9:eb:ab:ee:63:
1a:d2:6d:ef:d4:bc:bc:1e:03:fa:d2:88:08:e5:97:38:b8:f7:
28:2f:b3:62:a9:6b:18:83:60:83:b7:19:10:d7:1e:47:cf:6e:
b9:82:c7:e0:39:0f:ec:57:01:ad:a8:ad:ee:d8:27:d2:ba:63:
15:1c:1c:d5:a2:5c:ed:98:6f:44:2c:81:77:2d:44:ce:bb:8c:
c2:d3:d4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:04:34 2026 by rpki-client