Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
File: 8gLwqonAZ9ZjOLTVnSBSujmplEs.mft (raw, json)
Hash identifier: MVDsTiITD/cjFxYGuAx0U6hgeiK7AtDtfdMl1YUaXNI=
Subject key identifier: 73:72:D3:E9:4F:7B:00:68:25:04:F9:3A:8D:05:77:59:A8:DB:25:30
Authority key identifier: F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
Certificate issuer: /CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Certificate serial: 019DA309F83333C8D1ADAB78247161EA60FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
Manifest number: 0829
Signing time: Sun 19 Apr 2026 00:00:32 +0000
Manifest this update: Sun 19 Apr 2026 00:00:32 +0000
Manifest next update: Mon 20 Apr 2026 00:00:32 +0000
Files and hashes: 1: 8gLwqonAZ9ZjOLTVnSBSujmplEs.crl (hash: X4e012UYMg/ShupmDFC12xoNGfBDCkSz3IDCl4QBOv4=)
2: osv-bPTm7EkX2UpBKK6PsetzURk.roa (hash: YSsmgcD36aEYgXK+zsIFKY4sSvKY/KyPq4ODZAfcm88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:09:f8:33:33:c8:d1:ad:ab:78:24:71:61:ea:60:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Validity
Not Before: Apr 19 00:00:32 2026 GMT
Not After : Apr 20 00:00:32 2026 GMT
Subject: CN=7372d3e94f7b00682504f93a8d057759a8db2530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0e:7e:b0:49:da:73:6d:47:9a:09:60:90:87:
ed:ae:5e:65:13:38:75:cd:b5:7f:4f:34:a2:b1:35:
a6:05:13:b8:f6:78:96:ee:d8:f7:75:5d:b1:2d:68:
2f:2e:e6:7f:25:da:97:4e:c9:18:52:8e:7d:93:43:
50:bb:8a:c4:87:55:8d:46:af:ab:db:18:86:cc:c3:
a9:3a:9d:6f:ae:5f:fb:bd:71:13:61:cc:28:a5:87:
53:a1:4f:25:04:5f:16:bb:6a:f9:20:fc:72:a3:5a:
5a:3d:25:6a:89:af:5c:c6:55:b7:45:46:9d:0e:88:
82:4e:06:1a:aa:3b:a0:71:bd:66:8d:03:7c:55:7b:
59:61:b5:67:3b:3d:6d:c9:1f:7a:10:81:f1:f8:0f:
f0:f2:31:13:ba:a1:77:3b:3d:50:d7:12:26:85:22:
88:20:5d:14:0d:0c:1e:de:01:68:73:3e:ea:f8:3d:
63:2f:4b:bb:a9:ab:f2:f1:b0:75:c0:08:25:62:2d:
dc:39:49:3c:dd:b3:a1:49:89:0b:fc:0e:e9:1e:d3:
97:ba:75:78:b3:9f:d9:2d:7e:70:40:a6:6d:2c:52:
ad:05:dd:e5:64:4d:bb:b7:6a:c1:b2:2e:dc:57:b7:
f0:87:35:2c:49:73:8f:d1:fd:63:7b:e2:a5:2e:35:
d1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:72:D3:E9:4F:7B:00:68:25:04:F9:3A:8D:05:77:59:A8:DB:25:30
X509v3 Authority Key Identifier:
keyid:F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:4d:96:2d:48:f8:21:f5:24:9c:a1:c7:c6:c3:ef:8b:0a:11:
59:1c:f1:85:7e:a7:60:f2:c5:0c:16:64:a4:31:a4:c5:65:73:
ed:ae:26:a6:97:58:5f:82:6f:d8:98:03:70:ae:03:69:9d:e4:
a4:ad:e4:31:0d:ec:bc:53:fe:50:00:dd:f4:e3:4b:09:41:26:
a1:39:0c:00:7f:05:c8:3a:ed:8c:43:18:97:a7:b0:6f:a4:a3:
e4:91:1f:f9:0f:23:40:36:15:08:c9:c7:98:b7:fb:cb:17:62:
8b:e4:cd:fc:0c:aa:97:04:59:47:34:5b:f9:d1:50:ed:0d:42:
37:90:12:68:b6:57:60:3c:85:9c:5e:ac:ac:a0:6b:09:de:b5:
53:d1:bd:52:f1:1c:38:02:4c:55:fa:e8:c9:22:82:28:77:bf:
7d:2a:7c:48:dd:a7:1b:9a:5f:c3:ae:29:74:f0:5d:24:5b:4b:
d1:d6:26:c2:b9:76:19:bc:27:3e:68:32:2e:2a:32:7e:ed:30:
00:04:6d:29:0b:75:ad:f9:b2:57:ec:6e:1f:4a:d6:f1:20:b6:
d4:c4:8a:16:61:25:a0:6c:79:86:87:56:03:0a:ce:71:87:ab:
a6:e2:59:48:b7:38:71:f9:18:8f:d9:28:0b:d8:a7:65:3d:b8:
1e:ae:0a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:05:37 2026 by rpki-client