Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
File: 8E3LHKHUaLwERw8dtKRuz1uCeEg.mft (raw, json)
Hash identifier: thsFMuMks0NzO7I1oNAwwiSzC/P+2QJBOOqHYRGlR/k=
Subject key identifier: 11:A7:16:19:C7:99:74:6F:5A:89:CC:CE:20:3E:33:22:BD:1B:B5:99
Authority key identifier: F0:4D:CB:1C:A1:D4:68:BC:04:47:0F:1D:B4:A4:6E:CF:5B:82:78:48
Certificate issuer: /CN=f04dcb1ca1d468bc04470f1db4a46ecf5b827848
Certificate serial: 019D9B87670DA740B7A65C0E91B111A064C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
Manifest number: 0541
Signing time: Fri 17 Apr 2026 13:00:35 +0000
Manifest this update: Fri 17 Apr 2026 13:00:35 +0000
Manifest next update: Sat 18 Apr 2026 13:00:35 +0000
Files and hashes: 1: 8E3LHKHUaLwERw8dtKRuz1uCeEg.crl (hash: buhWRmq+DbiQalA+yQX5+jtHNVpttLwuu3JFNyq7o8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:67:0d:a7:40:b7:a6:5c:0e:91:b1:11:a0:64:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04dcb1ca1d468bc04470f1db4a46ecf5b827848
Validity
Not Before: Apr 17 13:00:35 2026 GMT
Not After : Apr 18 13:00:35 2026 GMT
Subject: CN=11a71619c799746f5a89ccce203e3322bd1bb599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:4f:0c:7e:da:07:02:8a:f2:b0:a3:52:3a:bb:
7d:8e:41:10:b0:0f:70:14:92:c0:91:5c:15:f3:9e:
8a:34:62:55:0e:98:f4:ff:3e:9e:52:47:ca:43:f8:
59:6d:b7:15:cb:73:25:c0:da:f6:5c:be:d4:cd:69:
14:c3:17:b4:76:d0:e5:74:e7:15:3f:29:65:5c:fb:
41:23:a8:f9:44:37:bf:fe:7a:ec:02:d8:06:8d:fc:
39:0e:4c:74:0b:d5:8c:e9:0e:dc:2d:67:b4:f5:f6:
1e:00:b9:48:26:21:4e:df:93:27:3d:b8:a5:46:e5:
6b:a0:a6:99:86:c0:60:9e:32:dc:09:2f:5d:21:db:
80:85:f8:c3:1f:90:9f:30:7a:6a:65:db:b0:20:00:
dd:99:18:25:e8:6c:bd:39:25:71:f5:38:da:9f:bb:
96:93:2b:32:f2:d9:46:f6:b9:2a:5f:c3:63:26:f1:
9f:87:32:c5:96:9c:59:4d:ab:1e:2d:88:fc:91:28:
32:ec:2e:6d:16:ef:26:48:f1:bf:1d:33:1c:35:41:
30:18:a3:0a:a2:5e:bf:09:e8:19:8f:fd:22:18:f3:
9a:df:53:97:97:62:a5:12:0c:ab:5a:1b:ae:62:84:
a4:fd:63:76:fd:5c:26:6b:8f:01:30:1d:de:45:be:
5d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A7:16:19:C7:99:74:6F:5A:89:CC:CE:20:3E:33:22:BD:1B:B5:99
X509v3 Authority Key Identifier:
keyid:F0:4D:CB:1C:A1:D4:68:BC:04:47:0F:1D:B4:A4:6E:CF:5B:82:78:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E3LHKHUaLwERw8dtKRuz1uCeEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c56b1b-4b10-41dc-9ffa-db5160ee74e7/1/8E3LHKHUaLwERw8dtKRuz1uCeEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:44:ae:20:6b:25:96:31:59:59:b6:52:c2:32:2f:e8:0d:81:
c0:91:f4:2f:0d:fa:63:3f:49:0c:a7:91:80:e7:5d:59:18:c5:
9c:4d:75:04:a1:2a:38:af:4d:f9:3c:76:3e:14:e9:b4:dc:70:
20:b7:0c:f1:55:b9:ba:19:b6:d8:ce:de:21:0b:2a:83:77:e5:
0a:7c:36:d5:2d:72:23:d7:12:7e:66:94:08:c3:a8:ec:ec:71:
5e:3e:51:88:66:b5:60:73:1c:f1:31:8b:c8:6d:f9:65:a5:9c:
45:85:0e:6e:38:75:e1:96:e3:a7:0b:d2:6b:b5:7e:30:a8:b6:
6f:c5:9e:75:8c:50:b9:52:c5:0e:d9:49:e6:17:fe:61:de:0c:
6c:41:67:5c:f7:9e:77:9a:74:b9:da:a1:c8:c8:99:2f:0e:5e:
40:35:da:cf:2a:a9:d4:f1:20:78:37:3f:ac:3d:9b:35:4b:58:
91:24:86:6e:c0:d9:12:47:e8:de:12:22:7e:fd:c9:3a:21:06:
20:f5:ff:a0:27:ec:82:5c:80:94:d6:71:31:8a:21:2e:40:52:
ec:11:cf:45:25:09:75:95:34:df:15:9b:b6:2f:6e:df:8f:eb:
7b:0c:07:04:41:f8:3e:99:e1:e7:26:25:78:7d:33:9f:49:45:
19:f1:bc:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:06:22 2026 by rpki-client