Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
File: 8gLwqonAZ9ZjOLTVnSBSujmplEs.mft (raw, json)
Hash identifier: uId5Dgf3nuAwm36mElWxAbTEtA1a3XAnVII0fL/h8TA=
Subject key identifier: 3F:48:11:CB:E0:6B:C5:55:F5:C1:2B:AB:F4:37:57:FF:4A:EB:38:02
Authority key identifier: F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
Certificate issuer: /CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Certificate serial: 019CABD924234B40AF341E4CA13547295CE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
Manifest number: 07A9
Signing time: Mon 02 Mar 2026 00:01:00 +0000
Manifest this update: Mon 02 Mar 2026 00:01:00 +0000
Manifest next update: Tue 03 Mar 2026 00:01:00 +0000
Files and hashes: 1: 8gLwqonAZ9ZjOLTVnSBSujmplEs.crl (hash: 1YK5upfv61AkFHpamGXAX5EYHIM3IMad87vCwyg6OTU=)
2: osv-bPTm7EkX2UpBKK6PsetzURk.roa (hash: YSsmgcD36aEYgXK+zsIFKY4sSvKY/KyPq4ODZAfcm88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:24:23:4b:40:af:34:1e:4c:a1:35:47:29:5c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Validity
Not Before: Mar 2 00:01:00 2026 GMT
Not After : Mar 3 00:01:00 2026 GMT
Subject: CN=3f4811cbe06bc555f5c12babf43757ff4aeb3802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:92:ae:7e:02:e9:2c:78:50:a8:d4:0b:7e:67:
9c:58:2c:a6:35:0b:a9:d5:d2:08:f6:0b:42:43:96:
a8:f5:0d:f1:9b:7b:13:38:ca:ff:d6:eb:ac:12:cd:
e5:18:7d:75:86:6d:8c:cb:e0:29:bb:4d:54:cc:a4:
4f:4c:9b:3e:18:a8:00:27:59:09:95:c2:3f:b3:87:
c9:6a:b0:c2:7a:a9:2a:6d:2f:2d:f8:8d:f1:7b:e6:
3f:93:90:10:28:30:2f:d4:16:9d:35:52:8b:f2:1b:
01:b1:99:f3:92:b7:c0:e4:db:e0:55:34:56:66:fe:
fe:fa:67:52:a0:e1:d4:91:05:52:0a:7b:ac:2e:61:
27:41:13:4e:b7:fd:53:3b:8d:86:4b:79:8e:03:a3:
7c:97:03:d6:08:d5:c0:52:b7:0b:cc:ab:75:ed:d0:
cf:5c:12:7e:66:69:b9:fd:74:fb:ee:27:de:2a:05:
6e:91:46:51:63:fe:96:b6:bf:29:41:f2:01:42:b8:
8a:33:b3:f2:47:86:d4:8b:e7:25:cb:57:a3:78:f5:
44:43:3d:1b:7d:28:6c:b1:ef:38:e3:96:c3:a7:a3:
fa:1f:f6:aa:61:1d:31:72:5e:84:66:15:81:24:3b:
cd:43:81:31:f0:cd:9a:2b:64:17:cb:47:dd:12:0e:
87:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:48:11:CB:E0:6B:C5:55:F5:C1:2B:AB:F4:37:57:FF:4A:EB:38:02
X509v3 Authority Key Identifier:
keyid:F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:59:05:4e:0e:3b:78:33:7b:48:db:dc:0d:4a:43:8f:74:80:
cf:fc:97:41:a1:85:91:b9:f3:4f:04:b1:06:3b:80:b7:4f:72:
11:38:08:ba:4f:46:93:d8:2e:e6:cf:c2:99:c4:7f:0a:7b:47:
bd:95:af:f6:c9:17:71:2a:fd:e6:e4:3b:f4:f0:ad:c6:be:1a:
b6:99:20:f6:c3:ae:b3:53:7b:ec:5b:75:e2:3f:b7:65:6d:33:
2b:5f:aa:ba:6e:53:cd:14:50:32:33:61:00:fb:fd:0a:32:a7:
a6:a5:c4:d4:1a:3f:c9:88:68:39:81:00:08:aa:9f:73:d2:14:
64:0a:95:84:c6:ee:8c:77:b2:7c:c8:d0:8e:44:01:cc:3a:f8:
fa:d9:11:70:b5:7d:14:5b:89:5a:ee:93:f8:58:20:14:87:6b:
33:b0:d6:92:ad:4a:e9:cc:fd:f6:6b:17:73:e5:b6:d9:a1:d6:
2f:4e:3f:58:d5:1f:d4:bf:c7:3a:d7:f8:cb:f9:39:6a:76:41:
59:f3:45:a7:a6:d7:3b:22:f3:f4:5d:6f:77:fe:db:00:4e:2b:
aa:bd:7d:33:80:6d:0f:7a:be:67:93:b1:51:9a:c2:6e:2e:52:
6e:c5:27:16:19:cc:b4:42:1e:a8:03:8b:3a:1b:66:78:d6:7b:
49:6e:ae:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2SQjS0CvNB5MoTVHKVzoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyMDJmMGFhODljMDY3ZDY2MzM4YjRkNTlkMjA1MmJhMzlh
OTk0NGIwHhcNMjYwMzAyMDAwMTAwWhcNMjYwMzAzMDAwMTAwWjAzMTEwLwYDVQQD
EygzZjQ4MTFjYmUwNmJjNTU1ZjVjMTJiYWJmNDM3NTdmZjRhZWIzODAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pKufgLpLHhQqNQLfmecWCymNQup
1dII9gtCQ5ao9Q3xm3sTOMr/1uusEs3lGH11hm2My+Apu01UzKRPTJs+GKgAJ1kJ
lcI/s4fJarDCeqkqbS8t+I3xe+Y/k5AQKDAv1BadNVKL8hsBsZnzkrfA5NvgVTRW
Zv7++mdSoOHUkQVSCnusLmEnQRNOt/1TO42GS3mOA6N8lwPWCNXAUrcLzKt17dDP
XBJ+Zmm5/XT77ifeKgVukUZRY/6Wtr8pQfIBQriKM7PyR4bUi+cly1ejePVEQz0b
fShsse8445bDp6P6H/aqYR0xcl6EZhWBJDvNQ4Ex8M2aK2QXy0fdEg6HiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD9IEcvga8VV9cErq/Q3V/9K6zgCMB8GA1UdIwQY
MBaAFPIC8KqJwGfWYzi01Z0gUro5qZRLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGdMd3FvbkFaOVpqT0xUVm5TQlN1am1wbEVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84NzY5ZjEtYjgwYi00ODg2LWJiMGIt
ZjYyNTcwMGU4YTkwLzEvOGdMd3FvbkFaOVpqT0xUVm5TQlN1am1wbEVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi84NzY5ZjEtYjgwYi00ODg2LWJiMGItZjYyNTcwMGU4YTkw
LzEvOGdMd3FvbkFaOVpqT0xUVm5TQlN1am1wbEVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZlkFTg47
eDN7SNvcDUpDj3SAz/yXQaGFkbnzTwSxBjuAt09yETgIuk9Gk9gu5s/CmcR/CntH
vZWv9skXcSr95uQ79PCtxr4atpkg9sOus1N77Ft14j+3ZW0zK1+qum5TzRRQMjNh
APv9CjKnpqXE1Bo/yYhoOYEACKqfc9IUZAqVhMbujHeyfMjQjkQBzDr4+tkRcLV9
FFuJWu6T+FggFIdrM7DWkq1K6cz99msXc+W22aHWL04/WNUf1L/HOtf4y/k5anZB
WfNFp6bXOyLz9F1vd/7bAE4rqr19M4BtD3q+Z5OxUZrCbi5SbsUnFhnMtEIeqAOL
OhtmeNZ7SW6ugg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:40:56 2026 by rpki-client