Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft
File: 8DpbV31dnm0cX9O-1ADpacC-fDQ.mft (raw, json)
Hash identifier: Je6WI1hpQjxOFEcATARW4imWeM6gxdcNX3IRvg8Xw7Q=
Subject key identifier: AF:C3:1D:45:55:E0:96:BB:8B:15:8F:9C:D8:4C:AF:7C:7C:B6:65:B3
Authority key identifier: F0:3A:5B:57:7D:5D:9E:6D:1C:5F:D3:BE:D4:00:E9:69:C0:BE:7C:34
Certificate issuer: /CN=f03a5b577d5d9e6d1c5fd3bed400e969c0be7c34
Certificate serial: 019CAE360031B64306D9DB28B68D08019486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft
Manifest number: 1842
Signing time: Mon 02 Mar 2026 11:01:40 +0000
Manifest this update: Mon 02 Mar 2026 11:01:40 +0000
Manifest next update: Tue 03 Mar 2026 11:01:40 +0000
Files and hashes: 1: 8DpbV31dnm0cX9O-1ADpacC-fDQ.crl (hash: 5ohfZ2V//qTK9zpA3vdeXdb3FvlfUPP5YDhjqA5nALY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:36:00:31:b6:43:06:d9:db:28:b6:8d:08:01:94:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f03a5b577d5d9e6d1c5fd3bed400e969c0be7c34
Validity
Not Before: Mar 2 11:01:40 2026 GMT
Not After : Mar 3 11:01:40 2026 GMT
Subject: CN=afc31d4555e096bb8b158f9cd84caf7c7cb665b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:31:b5:ec:54:17:b0:b2:06:65:80:0d:04:d7:
ec:44:c9:95:36:35:b4:df:0e:76:8a:5b:92:ab:a6:
58:c8:40:30:f0:f8:c4:94:15:83:c5:37:c1:a7:2e:
5f:84:8c:e3:ef:db:d2:43:de:a3:90:bb:9a:f2:9e:
c1:52:91:94:a0:12:9a:af:e8:58:32:15:25:fa:23:
aa:66:6b:1d:35:6e:76:fd:8d:f8:30:13:78:47:c2:
d0:7a:43:97:da:b4:49:8a:0b:18:2e:e8:5f:9a:1a:
26:53:c9:08:3d:50:77:5f:f5:28:6d:24:85:94:a8:
a3:e7:f0:0f:c1:67:85:4a:7b:96:bb:e8:b4:19:9e:
51:a9:e5:75:40:9d:ef:0d:68:97:bc:6c:47:a6:11:
34:0f:6c:3d:40:b9:80:78:8f:0b:f2:61:e9:33:98:
6a:12:21:31:ca:5f:87:da:52:20:1e:63:37:7e:d1:
59:d5:0d:1e:ef:e9:d4:aa:b5:f1:24:cb:7b:13:cd:
05:b9:ca:7e:36:21:ba:18:27:ae:9c:10:f0:c4:1d:
b3:c9:ef:ae:2c:ef:86:4a:10:18:4e:bb:52:9a:ea:
64:ca:84:36:ed:b0:25:f5:f9:8a:a6:11:d0:5b:f8:
3b:e0:7f:30:56:93:35:99:de:20:7b:18:ef:5b:50:
8f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C3:1D:45:55:E0:96:BB:8B:15:8F:9C:D8:4C:AF:7C:7C:B6:65:B3
X509v3 Authority Key Identifier:
keyid:F0:3A:5B:57:7D:5D:9E:6D:1C:5F:D3:BE:D4:00:E9:69:C0:BE:7C:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:8f:6d:00:ea:b2:26:53:50:1b:60:c8:7e:6d:49:a9:27:7c:
0d:9f:47:a2:df:d0:5f:39:ec:ee:e2:08:f7:d0:e4:55:85:9f:
3e:31:ec:ee:e2:5b:f8:9a:90:19:58:9a:23:96:f4:62:4e:2b:
7f:ec:a0:8d:8a:21:c8:1f:43:a0:1c:60:07:a4:fd:e1:5d:c4:
46:ea:61:8a:3b:2e:a3:78:37:03:bf:bc:69:11:dd:97:e4:a7:
fc:e3:bc:0e:b7:ec:35:ca:e8:b7:e9:2c:d8:51:c9:fb:3a:8d:
3a:74:88:62:59:7f:1c:60:3c:87:b7:e2:e5:60:c5:cd:29:8c:
e0:cb:6d:d8:45:e6:35:a2:31:bc:5b:37:4b:1f:7b:57:52:4d:
72:f7:4d:65:37:63:2e:45:14:69:2b:f3:59:2c:04:d7:40:65:
ef:58:73:8c:a7:ab:6c:d5:0b:39:21:39:df:17:92:6a:77:86:
8a:a0:7c:04:7c:1e:5b:c1:cb:da:5c:af:ca:29:81:e7:d4:8c:
70:5b:e6:50:9b:1a:fb:d0:b0:f9:93:0e:27:18:0f:53:19:c6:
5f:5a:69:30:17:f6:15:bc:59:a0:09:fa:1e:19:27:ef:23:35:
34:19:0a:54:c6:54:04:99:c3:33:f3:52:d8:18:13:97:a9:a2:
47:07:e4:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:56:00 2026 by rpki-client