Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
File: 8PsNC-KW3BtxnSRA-2rZx10I4uI.mft (raw, json)
Hash identifier: 2j4rVsLSmWz/puTcSvPGZ3/2N4PsjuxXBFjsboOk9IM=
Subject key identifier: AA:BC:71:FE:B2:1A:0A:D6:EE:09:F9:71:9A:15:63:CB:0F:7C:D8:27
Authority key identifier: F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
Certificate issuer: /CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Certificate serial: 019D99990A1028DDCD76DF6D5997C6340FE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
Manifest number: 1853
Signing time: Fri 17 Apr 2026 04:00:36 +0000
Manifest this update: Fri 17 Apr 2026 04:00:36 +0000
Manifest next update: Sat 18 Apr 2026 04:00:36 +0000
Files and hashes: 1: 8PsNC-KW3BtxnSRA-2rZx10I4uI.crl (hash: Y3XpWSv1AHhtYFdbltTk8nilZPbG9Rpo73dm98WWmGw=)
2: GYXVPChjE0NPSEdDhucM44Q05y0.roa (hash: Aj116UIxTV5UX+R+IJJ14L/FveXnD0nSIlVBqSjnPM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:0a:10:28:dd:cd:76:df:6d:59:97:c6:34:0f:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Validity
Not Before: Apr 17 04:00:36 2026 GMT
Not After : Apr 18 04:00:36 2026 GMT
Subject: CN=aabc71feb21a0ad6ee09f9719a1563cb0f7cd827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f3:45:7d:ca:00:cf:e9:2f:4d:fb:37:f5:8e:
55:3b:ec:e5:26:d0:bd:55:83:dc:37:78:c3:e0:d7:
95:6c:e3:2b:a5:63:db:eb:bb:0b:d4:24:19:17:4b:
ad:94:4d:b1:1e:4b:ee:5f:23:5b:55:c2:f5:53:d8:
a3:df:b0:14:38:e8:d3:5c:d0:ea:d5:ff:2e:71:68:
ae:32:d3:ee:43:53:78:b2:11:a7:f7:29:24:2d:fd:
de:1f:3c:f5:e2:f9:de:70:08:88:85:e8:6e:68:c0:
8a:a0:f2:1c:b9:31:27:72:aa:ac:34:62:f6:46:d1:
70:73:06:84:bb:ab:89:73:9b:a0:bf:d6:8e:b5:7f:
34:2a:00:e5:a6:c3:f4:00:4f:88:7f:75:72:d3:e8:
97:43:71:7f:33:79:f2:7b:e6:8d:0f:86:12:79:33:
a3:73:1e:c8:05:06:81:72:f5:9a:e3:ba:95:4d:dd:
95:f1:ac:f4:d0:8a:ee:c4:04:26:21:be:0f:7b:85:
35:1b:b7:1f:0e:1d:64:d3:e1:f6:47:93:8a:54:0c:
8f:d7:5e:54:6f:35:7a:ec:26:89:86:ca:c9:2c:fe:
b9:e5:76:1f:67:08:2b:18:e0:67:54:f1:3e:7e:23:
9b:82:74:94:7d:67:3d:36:73:c8:b9:e1:12:0b:bc:
75:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BC:71:FE:B2:1A:0A:D6:EE:09:F9:71:9A:15:63:CB:0F:7C:D8:27
X509v3 Authority Key Identifier:
keyid:F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:32:db:e5:a0:d1:df:aa:50:2b:89:bc:dc:b5:f9:3c:4c:61:
26:34:fc:ab:fa:42:bb:32:bf:53:f9:34:d1:03:d4:fb:3d:20:
ab:78:67:ec:b6:43:a8:8e:46:9b:45:a6:f8:19:e7:a1:f3:7f:
08:77:e4:65:ba:eb:79:f4:d6:e3:f9:7a:07:48:e3:1c:5a:c1:
04:ea:33:d7:47:88:27:7d:94:92:bb:ec:a3:96:4b:3e:d7:10:
4e:3c:14:56:67:90:79:8f:20:b7:e1:06:d6:1b:f4:88:73:97:
ed:4e:7b:9f:72:09:02:e6:77:a8:f6:17:14:d1:bf:cd:40:92:
a1:51:b5:7b:d2:93:ba:c1:23:8e:b8:f2:bb:4d:78:68:02:cc:
fe:93:82:82:dd:3b:24:87:0f:bf:59:26:d2:84:cf:59:09:cc:
60:49:51:14:1c:5f:34:1f:79:a0:a7:1b:f0:5b:94:aa:a3:81:
7a:55:98:f0:11:37:73:58:86:64:c4:2b:e5:da:77:5b:4e:10:
c0:4a:16:94:bd:64:23:0e:64:e3:b9:4b:d4:94:a1:91:8b:3e:
03:e8:ae:10:5f:64:6a:1e:70:a8:ec:4f:a5:5d:2e:82:db:6f:
3a:30:57:3b:1c:ac:97:7b:33:ec:e1:0e:b3:3d:95:c1:98:fc:
a5:2e:a8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:41:47 2026 by rpki-client