Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
File: 8z9sz1fxxI8RwU_QBUBazONtA7g.mft (raw, json)
Hash identifier: IbkEVtEjZhvHGq55mJGvVldDlP5EidOM0H9wiG0WoFY=
Subject key identifier: D4:33:B3:9A:FF:9F:66:A4:4B:B9:97:10:68:16:04:3E:C3:DC:0A:F1
Authority key identifier: F3:3F:6C:CF:57:F1:C4:8F:11:C1:4F:D0:05:40:5A:CC:E3:6D:03:B8
Certificate issuer: /CN=f33f6ccf57f1c48f11c14fd005405acce36d03b8
Certificate serial: 019D9B51487E7123054F19D30399E42C50E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8z9sz1fxxI8RwU_QBUBazONtA7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 12:01:28 +0000
Manifest this update: Fri 17 Apr 2026 12:01:28 +0000
Manifest next update: Sat 18 Apr 2026 12:01:28 +0000
Files and hashes: 1: 8z9sz1fxxI8RwU_QBUBazONtA7g.crl (hash: JsCH+JyU2K5i/U6oaCuKn1wsQA8/SNRMNDqDgZkoMbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
rsync://rpki.ripe.net/repository/DEFAULT/8z9sz1fxxI8RwU_QBUBazONtA7g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:48:7e:71:23:05:4f:19:d3:03:99:e4:2c:50:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f33f6ccf57f1c48f11c14fd005405acce36d03b8
Validity
Not Before: Apr 17 12:01:28 2026 GMT
Not After : Apr 18 12:01:28 2026 GMT
Subject: CN=d433b39aff9f66a44bb997106816043ec3dc0af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:03:3e:fc:a6:96:ae:8c:54:5f:7f:49:e7:7a:
b0:77:36:9c:2f:0c:a2:cd:f9:8d:a7:1a:6d:80:0e:
e0:43:8c:e2:2b:a8:c1:19:13:c1:c2:5c:a0:67:37:
20:0a:11:7a:d7:8e:d1:4b:ff:c9:1c:49:f9:96:11:
66:5d:64:c6:d1:21:55:e6:d4:41:3e:ae:f4:3b:34:
32:08:41:f4:f0:1c:4a:9f:09:6e:c2:1c:18:11:42:
72:08:4d:94:44:70:2f:70:eb:05:4e:93:32:a1:5f:
b0:83:57:fa:80:cb:a8:ed:f7:d8:8d:b9:d2:0d:13:
d2:f2:49:e2:c2:dc:99:c6:7f:3a:06:9a:51:ab:24:
e4:71:48:b3:ac:44:98:32:ab:4c:e3:d4:96:17:d2:
d0:95:43:18:6c:4c:e1:71:bb:f8:64:74:f1:76:17:
b8:6d:82:f6:14:7c:5d:6b:2b:67:fe:3b:10:4a:31:
5e:e4:40:cc:cd:92:88:5a:fc:d4:89:48:a3:24:35:
42:30:49:34:ab:71:42:7e:96:8a:b0:73:c5:a3:52:
3d:62:18:e8:4f:c2:7f:26:12:b1:2e:ca:c9:22:4c:
59:d1:6f:bd:55:ca:c3:bc:56:e9:0e:85:28:3a:db:
5d:e8:c6:60:32:74:46:a3:26:ac:d5:7f:7b:10:57:
2f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:33:B3:9A:FF:9F:66:A4:4B:B9:97:10:68:16:04:3E:C3:DC:0A:F1
X509v3 Authority Key Identifier:
keyid:F3:3F:6C:CF:57:F1:C4:8F:11:C1:4F:D0:05:40:5A:CC:E3:6D:03:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8z9sz1fxxI8RwU_QBUBazONtA7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cdc2ec-d0ee-436a-8d11-f5d6b492394b/1/8z9sz1fxxI8RwU_QBUBazONtA7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:c2:05:3e:a2:e6:93:9d:04:20:09:40:ea:01:e5:64:23:e1:
f4:e5:0a:b1:cf:50:00:c7:b9:91:9d:c8:dd:32:b8:9c:a8:53:
9d:79:be:86:2e:c3:6a:10:23:42:77:c1:ba:e9:a1:de:e7:79:
92:17:0f:02:94:6e:1b:2a:02:14:f7:cf:da:17:8a:e2:4a:07:
07:19:ea:93:02:41:58:12:fc:19:89:01:2d:d8:d1:61:57:45:
5d:34:45:1b:f3:08:68:db:da:95:0b:3b:ab:eb:d2:e4:23:f5:
5c:37:f7:85:e1:cb:40:e1:e8:ca:ee:5d:bf:4e:c5:9b:03:aa:
a6:ce:f9:79:96:aa:9f:0d:e4:b9:dd:cb:e1:73:d6:6b:e9:fd:
13:ed:71:11:37:11:17:1d:8a:d8:27:d5:71:2b:95:f4:1f:15:
02:a7:9a:e3:5d:d2:c2:d9:26:28:30:61:2f:fe:4e:a0:dd:e2:
78:58:ff:d2:11:79:f5:07:5a:66:5a:03:9f:d3:53:c7:f9:2e:
3e:58:ce:30:33:fb:82:cc:29:f8:93:f7:da:89:97:27:59:60:
05:bf:bf:0f:26:64:6d:ca:2d:3d:d0:e4:15:1b:9f:a8:a7:9b:
dd:a6:d8:d6:36:94:8a:d1:5e:09:44:32:a3:6c:98:26:78:5a:
ee:dd:85:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:35:39 2026 by rpki-client