Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
File: 8PY2_se1stGN43l-aYTAaVXnFtc.mft (raw, json)
Hash identifier: BREwVS2N4HT/Y64P/Os+Q+swe6Zz0mZB5iX4TNkqjck=
Subject key identifier: 09:C1:CC:78:C8:C6:09:02:62:68:BF:EE:D3:34:92:90:B0:42:2F:B5
Authority key identifier: F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
Certificate issuer: /CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Certificate serial: 019CAB6B188C3B4C9DA818DEA11896A17965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
Manifest number: 184B
Signing time: Sun 01 Mar 2026 22:00:48 +0000
Manifest this update: Sun 01 Mar 2026 22:00:48 +0000
Manifest next update: Mon 02 Mar 2026 22:00:48 +0000
Files and hashes: 1: 8PY2_se1stGN43l-aYTAaVXnFtc.crl (hash: T8Te3F2yCWecgnVBfGFCoRZprVYTeKyCIfNlFr4wvDI=)
2: L7z1z3kD8b7F1K7aacc1gzUm6kI.roa (hash: D3CWLsb8k5BIPwmtHzd5EPsN02bvpYKIOpfirvWVx3E=)
3: UefnhI4rD4WdnFSP87tCcgYjugY.roa (hash: wX49sflwTEuHFD6MRKkajE1pPkRG+Oqz51HRQlhSsxs=)
4: lgrQvjx5MIWGF2Zc_WzTTVLP-v0.roa (hash: weF1SPmq8vuRk/u5oRHyuZvuVh74XYHXLM966wmgglw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:18:8c:3b:4c:9d:a8:18:de:a1:18:96:a1:79:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f636fec7b5b2d18de3797e6984c06955e716d7
Validity
Not Before: Mar 1 22:00:48 2026 GMT
Not After : Mar 2 22:00:48 2026 GMT
Subject: CN=09c1cc78c8c609026268bfeed3349290b0422fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b1:3b:ae:95:f5:2a:ac:4f:5f:c9:00:38:21:
ac:ed:a8:cd:5b:7f:ee:1e:a7:17:f9:66:7e:fe:4f:
1f:b8:8a:30:ce:6e:2e:1d:12:8f:48:8d:a3:c0:e1:
dd:ac:5b:3b:82:76:fc:75:4d:e8:b4:f9:ae:b2:08:
a0:6d:23:1d:75:e1:9a:96:53:41:7d:75:df:68:d5:
c7:78:92:cf:62:e5:b0:20:26:c5:43:6b:5e:32:f8:
57:88:7b:f1:dd:4d:45:c9:f0:45:34:7d:64:f9:1e:
c6:c7:71:28:59:17:b5:cc:75:c5:e8:24:2e:14:04:
43:35:2a:81:3b:78:c2:4c:4c:33:b6:87:dc:b8:1e:
ca:4e:f9:ec:e2:5e:46:a7:37:ac:ef:17:e9:2a:0a:
f5:67:85:c9:56:cb:d0:02:6d:9f:4a:c2:63:1b:a4:
16:6f:fa:df:4e:b3:60:48:72:c6:8d:9f:cd:39:83:
b3:3b:9f:81:fc:ac:5b:8f:09:e0:ab:a7:17:b2:d0:
25:6d:b1:bf:c0:97:84:16:4b:da:5c:38:24:01:7a:
e8:c2:0e:0c:1b:2b:1b:12:bc:9d:21:3c:16:a1:ba:
c0:f8:0d:29:90:6a:7f:77:64:ac:15:19:a3:b0:65:
72:13:3c:a8:59:57:84:5e:15:c3:04:a8:e5:2e:15:
ba:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C1:CC:78:C8:C6:09:02:62:68:BF:EE:D3:34:92:90:B0:42:2F:B5
X509v3 Authority Key Identifier:
keyid:F0:F6:36:FE:C7:B5:B2:D1:8D:E3:79:7E:69:84:C0:69:55:E7:16:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PY2_se1stGN43l-aYTAaVXnFtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a01acd-a3de-4839-9d02-643c1fe38385/1/8PY2_se1stGN43l-aYTAaVXnFtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:aa:ff:ba:db:9b:36:89:fc:31:cc:ad:0e:c6:04:1a:ac:d9:
19:ee:cc:b2:e1:34:13:23:49:33:ab:2f:59:f7:fc:7f:ef:c1:
89:f5:59:61:07:af:67:85:47:3d:5f:ba:67:5c:2a:36:0e:76:
8e:31:99:07:35:3e:0c:76:86:58:59:69:c6:67:91:00:19:d3:
77:47:8b:d8:45:ae:e0:d2:7a:07:d9:b5:1e:31:14:3a:dd:d2:
1a:10:07:09:c7:55:ad:4d:0a:71:a7:d4:ae:20:6a:17:5c:8a:
78:a7:db:40:39:3c:5b:a2:6e:ce:a9:de:99:0c:93:ac:f2:5a:
0e:c9:9d:f2:6d:dc:00:75:1c:64:82:d8:e1:4c:76:7e:53:9f:
d3:e6:41:f2:c3:ea:66:bf:86:b7:a2:fc:4e:e0:d9:6e:3b:74:
48:93:1b:ab:4e:f2:68:87:3d:12:93:30:62:f5:89:ee:52:93:
9d:2d:d6:fc:42:2d:dc:38:a4:21:92:ba:a5:bd:22:74:8c:22:
cc:c9:5d:fc:5f:91:86:bd:f9:f1:e0:86:12:89:92:9d:d5:d8:
f3:79:e2:05:53:52:d2:4e:8d:f4:a3:ea:8c:c8:56:e6:b2:1f:
82:10:e8:d3:cd:9b:73:b0:38:48:10:c6:b0:32:f0:7d:04:48:
47:94:02:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyraxiMO0ydqBjeoRiWoXllMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwZjYzNmZlYzdiNWIyZDE4ZGUzNzk3ZTY5ODRjMDY5NTVl
NzE2ZDcwHhcNMjYwMzAxMjIwMDQ4WhcNMjYwMzAyMjIwMDQ4WjAzMTEwLwYDVQQD
EygwOWMxY2M3OGM4YzYwOTAyNjI2OGJmZWVkMzM0OTI5MGIwNDIyZmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLE7rpX1KqxPX8kAOCGs7ajNW3/u
HqcX+WZ+/k8fuIowzm4uHRKPSI2jwOHdrFs7gnb8dU3otPmusgigbSMddeGallNB
fXXfaNXHeJLPYuWwICbFQ2teMvhXiHvx3U1FyfBFNH1k+R7Gx3EoWRe1zHXF6CQu
FARDNSqBO3jCTEwztofcuB7KTvns4l5Gpzes7xfpKgr1Z4XJVsvQAm2fSsJjG6QW
b/rfTrNgSHLGjZ/NOYOzO5+B/Kxbjwngq6cXstAlbbG/wJeEFkvaXDgkAXrowg4M
GysbErydITwWobrA+A0pkGp/d2SsFRmjsGVyEzyoWVeEXhXDBKjlLhW6iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAnBzHjIxgkCYmi/7tM0kpCwQi+1MB8GA1UdIwQY
MBaAFPD2Nv7HtbLRjeN5fmmEwGlV5xbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFBZMl9zZTFzdEdONDNsLWFZVEFhVlhuRnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9hMDFhY2QtYTNkZS00ODM5LTlkMDIt
NjQzYzFmZTM4Mzg1LzEvOFBZMl9zZTFzdEdONDNsLWFZVEFhVlhuRnRjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9hMDFhY2QtYTNkZS00ODM5LTlkMDItNjQzYzFmZTM4Mzg1
LzEvOFBZMl9zZTFzdEdONDNsLWFZVEFhVlhuRnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANKr/utub
Non8McytDsYEGqzZGe7MsuE0EyNJM6svWff8f+/BifVZYQevZ4VHPV+6Z1wqNg52
jjGZBzU+DHaGWFlpxmeRABnTd0eL2EWu4NJ6B9m1HjEUOt3SGhAHCcdVrU0KcafU
riBqF1yKeKfbQDk8W6JuzqnemQyTrPJaDsmd8m3cAHUcZILY4Ux2flOf0+ZB8sPq
Zr+Gt6L8TuDZbjt0SJMbq07yaIc9EpMwYvWJ7lKTnS3W/EIt3DikIZK6pb0idIwi
zMld/F+Rhr358eCGEomSndXY83niBVNS0k6N9KPqjMhW5rIfghDo082bc7A4SBDG
sDLwfQRIR5QCCg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:48:22 2026 by rpki-client