Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
File: 8PsNC-KW3BtxnSRA-2rZx10I4uI.mft (raw, json)
Hash identifier: XxMQ7d/O4UrUemu27KKzOOZcbZywpb1nvxazxNBJoxI=
Subject key identifier: D4:03:53:CF:DF:86:55:04:3E:65:F4:9E:AD:36:DB:BE:03:84:10:03
Authority key identifier: F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
Certificate issuer: /CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Certificate serial: 019CAA21B204E033A2D2F991446DCA9031A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
Manifest number: 17D7
Signing time: Sun 01 Mar 2026 16:01:00 +0000
Manifest this update: Sun 01 Mar 2026 16:01:00 +0000
Manifest next update: Mon 02 Mar 2026 16:01:00 +0000
Files and hashes: 1: 8PsNC-KW3BtxnSRA-2rZx10I4uI.crl (hash: X8Tb5fzWRHtVJkt2NG4DxWioI9YydJ1fz+XaUqmLBwI=)
2: GYXVPChjE0NPSEdDhucM44Q05y0.roa (hash: Aj116UIxTV5UX+R+IJJ14L/FveXnD0nSIlVBqSjnPM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:b2:04:e0:33:a2:d2:f9:91:44:6d:ca:90:31:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Validity
Not Before: Mar 1 16:01:00 2026 GMT
Not After : Mar 2 16:01:00 2026 GMT
Subject: CN=d40353cfdf8655043e65f49ead36dbbe03841003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fd:fb:75:79:ba:44:db:d0:86:9b:03:ae:0a:
1a:9d:05:c2:40:b0:27:e3:a4:50:fb:87:c6:61:af:
44:ca:45:cd:89:21:e0:66:50:27:d3:70:43:30:ef:
b4:9f:c8:04:a4:61:d2:c6:aa:cd:6f:d6:af:5d:84:
87:8d:58:92:66:95:18:90:9c:06:45:f2:65:ed:64:
8e:ef:89:52:90:3f:a8:ce:12:73:11:80:cf:cf:ed:
ee:8a:4c:4b:b7:91:3e:db:cc:83:a4:58:f0:64:79:
67:27:d9:7c:f6:c7:41:31:31:aa:3d:95:c3:5b:a1:
ba:fa:41:1a:ef:2a:47:94:91:18:30:a1:d9:e7:be:
03:9b:3e:e4:54:47:86:12:d4:1a:8d:58:b9:bc:c4:
cc:f3:0d:cb:45:c4:af:b3:e6:3e:10:fd:9c:36:2f:
79:5f:83:2c:fb:0d:3a:c6:c1:b4:41:b3:7e:17:31:
70:2d:ca:8a:56:fd:9f:0b:18:1f:24:d1:8f:15:dd:
37:8b:f5:3e:96:d8:df:36:51:8d:d6:7f:d8:ac:ed:
3b:cb:fb:3f:9e:99:21:f3:f2:e6:53:f8:20:5f:7a:
e8:84:fb:a5:dd:2b:4b:da:ae:7e:60:c9:50:ad:92:
a2:b1:9b:2e:6e:40:bf:f5:15:d4:bb:30:be:e5:49:
f6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:03:53:CF:DF:86:55:04:3E:65:F4:9E:AD:36:DB:BE:03:84:10:03
X509v3 Authority Key Identifier:
keyid:F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:57:f7:c5:3c:fd:a0:58:68:e9:e0:3e:1b:5a:81:55:a0:d1:
a0:be:9b:7c:25:df:fb:e6:d9:40:ea:3d:2d:b8:22:0d:2e:2a:
b0:64:8a:4f:fb:7f:3e:3c:dc:dd:bc:20:7b:2c:9c:53:91:04:
f0:94:43:c4:94:50:c9:d8:42:25:dd:14:21:30:85:56:e6:0b:
65:11:c0:80:0f:73:e4:54:ce:5c:ab:ec:8c:a8:38:98:47:a1:
aa:4f:50:a3:01:13:38:1c:0f:7f:81:9a:64:8e:5d:38:82:da:
ba:47:91:f5:b9:36:33:ce:5b:8a:1e:91:09:d1:44:17:5d:dd:
f7:66:65:38:d3:35:ef:3f:c3:3e:51:fd:94:16:2d:32:60:41:
f6:b0:2f:e6:6e:f1:5b:3a:07:cb:c9:aa:9d:c3:c1:11:6a:60:
3f:a3:57:c2:77:0d:de:3e:ed:d2:8e:a5:64:d1:58:6a:42:bf:
eb:2a:c1:24:06:db:65:43:ac:1a:d1:12:8f:ca:e8:04:cb:21:
32:ce:82:fa:d9:89:7b:93:83:52:21:9b:f9:7c:e5:43:f4:f4:
2c:fa:ae:2f:b0:37:1f:5d:6b:55:be:3d:74:01:e2:e1:50:90:
4d:89:e5:13:3d:fb:dd:14:e9:f2:6e:17:01:96:b8:82:32:66:
f4:e2:ca:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:36:23 2026 by rpki-client