Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
File: 8PY2_se1stGN43l-aYTAaVXnFtc.mft (raw, json)
Hash identifier: Ia+664x8WrIa2W5z7OcVDqd02HYnvE4Usml3PMH53pg=
Subject key identifier: 6D:B3:D9:1B:17:23:61:38:E9:14:B5:FB:75:78:4C:7F:AC:41:24:87
Authority key identifier: F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
Certificate issuer: /CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Certificate serial: 019D98F4D7016B7135E74160FB7C1D8BDA03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
Manifest number: 18C6
Signing time: Fri 17 Apr 2026 01:01:15 +0000
Manifest this update: Fri 17 Apr 2026 01:01:15 +0000
Manifest next update: Sat 18 Apr 2026 01:01:15 +0000
Files and hashes: 1: 8PY2_se1stGN43l-aYTAaVXnFtc.crl (hash: J/h9L3eQ3m2DCvZJ3iqj0JH2qi3gQLmx1fgezr2zLD0=)
2: L7z1z3kD8b7F1K7aacc1gzUm6kI.roa (hash: D3CWLsb8k5BIPwmtHzd5EPsN02bvpYKIOpfirvWVx3E=)
3: UefnhI4rD4WdnFSP87tCcgYjugY.roa (hash: wX49sflwTEuHFD6MRKkajE1pPkRG+Oqz51HRQlhSsxs=)
4: lgrQvjx5MIWGF2Zc_WzTTVLP-v0.roa (hash: weF1SPmq8vuRk/u5oRHyuZvuVh74XYHXLM966wmgglw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:d7:01:6b:71:35:e7:41:60:fb:7c:1d:8b:da:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Validity
Not Before: Apr 17 01:01:15 2026 GMT
Not After : Apr 18 01:01:15 2026 GMT
Subject: CN=6db3d91b17236138e914b5fb75784c7fac412487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c4:91:d1:ff:a2:38:74:35:5a:eb:db:03:26:
f7:52:92:74:1a:0f:bd:ed:1d:af:59:e9:81:1a:99:
1e:4f:49:66:d9:2f:95:2b:f3:d0:c4:84:a5:c6:c6:
a4:7d:8f:66:df:1c:49:42:98:54:7e:66:92:39:e7:
7a:f6:18:50:c5:4a:f8:d5:37:09:14:d0:7e:cf:18:
83:65:1f:aa:60:d0:e4:2f:0a:68:25:5e:88:4d:6d:
9e:b0:9a:b3:a8:d7:ff:a8:50:5d:de:5a:58:36:11:
6c:6b:1e:83:2b:33:49:9a:10:2e:18:41:07:80:2a:
80:37:32:69:c3:71:21:bc:da:8c:9f:19:69:f0:c8:
a8:ca:1a:74:09:8f:97:ce:a4:c8:58:26:53:ea:5e:
b8:0c:e0:cd:36:6c:2b:0e:de:85:96:07:b1:a3:08:
af:77:6a:de:c1:92:e1:2c:5e:4b:e9:db:fc:67:0c:
7e:67:1f:de:af:57:1a:0a:52:6e:87:37:9b:22:ad:
37:bb:32:f5:5b:8d:d6:e2:73:91:1c:c3:6e:39:2d:
f6:3b:94:60:cd:e8:01:a0:78:7f:81:03:d5:fb:10:
54:f2:23:54:38:0c:2a:0d:52:c5:d9:c4:28:c9:f6:
bf:55:0b:22:87:52:37:80:9a:79:21:f8:07:36:61:
ae:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B3:D9:1B:17:23:61:38:E9:14:B5:FB:75:78:4C:7F:AC:41:24:87
X509v3 Authority Key Identifier:
keyid:F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:7f:55:27:4a:8a:28:a2:a3:7e:35:4f:cd:f2:21:d9:68:c3:
cc:8f:53:74:0e:fb:ca:2b:86:46:5f:fa:b4:df:d3:83:e3:c3:
88:f5:31:f9:f8:a4:80:20:92:32:c0:b6:62:54:bb:7f:1b:77:
80:24:a9:4e:f4:81:67:da:09:e0:d8:a4:c1:ef:80:bd:70:43:
4b:36:44:22:90:3c:eb:d9:23:72:fd:bc:e7:a5:4c:e0:5a:37:
1a:7d:f4:a0:d0:43:24:40:2a:18:d5:ae:b5:45:2c:34:03:1b:
a5:f4:6e:c7:63:b2:ec:7b:55:49:74:97:42:61:1f:87:99:76:
54:2e:ee:e8:3e:12:80:ad:4f:9a:f9:68:51:2c:c8:de:b8:e8:
b9:08:ab:e8:9e:c5:a8:c5:0b:cb:ed:14:f4:21:e4:9c:8a:a9:
7b:ac:a4:1e:00:7b:5f:38:71:2e:a1:2b:47:e0:b3:29:6a:d0:
72:1c:ea:cf:16:bb:be:da:46:34:28:96:31:ec:6d:00:6e:e0:
78:9a:7c:bd:55:63:81:1f:44:6d:dc:d7:83:aa:64:24:30:1d:
56:ab:05:42:3c:f9:5b:de:3d:10:a0:ad:97:62:f0:2c:64:8c:
80:17:3a:ad:8c:71:f4:8a:1a:e6:a8:d3:3c:22:6a:86:02:c5:
9b:b9:bb:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:28:43 2026 by rpki-client