Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
File: 8QMX8k1xpRbXUEO-kPWr4_ocklk.mft (raw, json)
Hash identifier: Qq2ZYabrXPo8ULspLAXtHRq7QmzaoBQFKrP07to0hcM=
Subject key identifier: 87:31:D7:42:A3:79:BC:47:2A:24:B6:EF:86:EF:26:CD:18:CA:C0:4D
Authority key identifier: F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
Certificate issuer: /CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Certificate serial: 019D9962A9EFD3C77E7FBECA18706BD06348
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
Manifest number: 1475
Signing time: Fri 17 Apr 2026 03:01:13 +0000
Manifest this update: Fri 17 Apr 2026 03:01:13 +0000
Manifest next update: Sat 18 Apr 2026 03:01:13 +0000
Files and hashes: 1: 8QMX8k1xpRbXUEO-kPWr4_ocklk.crl (hash: sboWILP+U4JE4nwc7+LJC+eLvurKn9cr0lmW2Y1xdy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:a9:ef:d3:c7:7e:7f:be:ca:18:70:6b:d0:63:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Validity
Not Before: Apr 17 03:01:13 2026 GMT
Not After : Apr 18 03:01:13 2026 GMT
Subject: CN=8731d742a379bc472a24b6ef86ef26cd18cac04d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7c:0c:d6:b6:6f:59:f7:8f:f2:3f:ad:d0:33:
a5:b5:1e:e0:70:58:ff:61:7a:f6:7a:f8:cb:87:6c:
b3:1a:9a:9e:32:55:aa:ac:ce:1f:e0:44:32:01:2d:
c3:f8:79:2a:51:f7:78:6c:2c:9f:03:f9:a6:89:3c:
7c:ea:c5:2d:59:f9:af:9d:4f:b6:33:2d:d3:82:e6:
e4:a9:30:b6:5c:1c:67:81:2e:db:44:f5:d2:eb:83:
29:90:af:57:08:93:39:c9:eb:cf:70:f1:e8:82:14:
c5:c5:52:a7:6b:b2:9a:87:fa:d3:59:9a:c8:1a:0d:
9d:4b:7b:d5:21:1c:c9:d7:6c:9c:18:6a:ba:10:00:
75:1a:ed:f4:a0:e4:63:ec:50:55:dd:48:ca:e9:28:
09:ec:10:42:3b:89:5c:9f:4e:ca:4b:12:3f:63:0e:
ec:73:ab:7d:91:3a:6c:3a:ae:d1:2c:55:1e:b6:06:
bd:03:f6:71:39:17:21:a7:90:ae:60:a4:f4:b7:ed:
bd:9a:59:44:f6:75:4b:e7:77:af:e3:6e:c0:b0:08:
9c:91:d7:3a:e2:9c:44:ea:5f:bb:53:61:a6:67:72:
53:46:a5:95:ee:64:e8:41:bb:f9:c3:4c:1f:6e:77:
5f:81:32:b6:ad:a9:60:bb:94:f4:65:82:a0:bc:33:
72:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:31:D7:42:A3:79:BC:47:2A:24:B6:EF:86:EF:26:CD:18:CA:C0:4D
X509v3 Authority Key Identifier:
keyid:F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:6e:31:16:3e:d0:2c:3c:26:99:31:da:55:39:a4:11:08:06:
22:6d:9e:d9:86:4a:bb:04:ad:40:fb:7a:25:25:0b:27:18:74:
f2:87:60:a2:32:6a:45:22:13:fb:52:d5:9b:f5:36:8b:34:c8:
bf:84:4e:3a:7b:16:74:49:fe:ae:79:19:b6:a4:ac:88:54:84:
08:9a:ed:91:80:c1:ca:4b:70:2d:43:ed:93:81:9c:c1:2f:1a:
c4:b2:4b:86:86:b9:26:37:93:fb:3e:59:cb:ba:2a:9a:07:44:
c5:b8:1d:5a:de:59:da:b0:e3:c2:ee:be:7e:52:2e:2d:9f:9a:
21:df:36:65:23:6f:dd:5f:c7:ce:f1:bd:7d:e5:44:d8:af:91:
d8:e2:cf:83:8c:e2:40:b5:43:b4:da:0c:ce:70:cf:24:6f:b6:
f9:f9:78:52:e9:6a:6e:8e:a6:df:a9:f2:da:67:28:3b:3d:ad:
21:cd:b2:98:40:07:54:9d:a4:09:92:44:3b:e7:a8:d3:9d:de:
8d:28:f0:6a:15:ad:0d:8a:60:4a:dc:ae:0a:71:ed:28:3f:74:
13:c1:19:1e:ad:29:04:d2:df:53:62:35:35:03:be:5a:83:75:
63:42:3a:92:e2:c6:d2:7c:c8:04:2f:30:27:15:76:38:14:26:
20:87:f1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:57:51 2026 by rpki-client