Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: npFSX+6w/n5XzPvL/2hbLgVfQ/IyfHQoUJM9LyTGluY=
Subject key identifier: 47:EC:17:6C:3D:E2:99:9A:CE:B6:D4:D0:B8:29:36:65:8F:C3:AE:44
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 019EBEECA4D5A2202124C10E912008DB3583
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 1652
Signing time: Sat 13 Jun 2026 03:00:40 +0000
Manifest this update: Sat 13 Jun 2026 03:00:40 +0000
Manifest next update: Sun 14 Jun 2026 03:00:40 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: 36Sd9fZOr7N5aRzoawNy6SV4Pe9aKKIk+8moCpTwvjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ec:a4:d5:a2:20:21:24:c1:0e:91:20:08:db:35:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: Jun 13 03:00:40 2026 GMT
Not After : Jun 14 03:00:40 2026 GMT
Subject: CN=47ec176c3de2999aceb6d4d0b82936658fc3ae44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:76:e8:bf:c3:cc:d5:07:ca:ba:6e:a2:9b:fa:
d8:fb:c2:bc:3a:42:50:a1:0f:0c:59:85:5f:33:e4:
44:f1:0e:54:89:e7:2c:5c:fc:e5:e8:bd:0e:8c:6f:
9b:db:5a:6b:2c:b8:73:2b:59:f4:57:fc:70:7c:cd:
dc:9b:96:0c:08:42:0b:44:89:bf:f0:e9:0b:db:a9:
a2:48:09:42:8d:45:78:46:47:9f:5d:24:d1:1f:1d:
bd:86:10:9f:08:37:ad:81:35:28:18:9d:96:f8:71:
d9:7c:fb:65:2c:51:60:40:a0:ae:6b:66:e6:2e:cc:
5a:45:43:ad:75:83:b2:f4:10:da:8f:71:32:b7:e8:
82:41:c6:63:6c:ef:46:0f:23:96:0e:c2:4b:80:8e:
dd:8b:aa:35:fb:36:44:ad:9d:7f:88:10:88:9a:2e:
eb:6e:63:f6:bc:12:e0:36:9e:d1:9d:82:a8:6e:1f:
d0:79:d7:70:26:39:d3:11:ac:8a:53:41:f1:8c:00:
4e:37:bc:a4:bd:31:ab:93:fc:27:14:ad:67:89:76:
29:4c:03:0c:a0:46:e2:7c:3b:a2:19:9c:37:53:0e:
fe:28:40:f0:14:27:f3:74:be:83:e3:e0:18:30:4a:
14:24:80:56:b4:c2:d0:b9:b1:e8:33:6a:12:8d:7d:
78:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:EC:17:6C:3D:E2:99:9A:CE:B6:D4:D0:B8:29:36:65:8F:C3:AE:44
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:d6:09:da:6d:7f:c5:d0:19:f7:f4:c1:c1:ca:f5:6e:8d:e4:
10:6c:05:bc:2c:60:81:75:ad:3a:45:a1:c9:9d:85:20:6d:dc:
a5:c9:b2:6a:bd:e3:b4:f2:97:15:5f:80:5d:e8:60:d7:0e:91:
e4:c3:7d:4c:81:91:0d:f0:e2:cc:14:42:2c:ff:04:02:ed:bf:
26:01:81:a3:ae:de:01:c0:5f:e7:aa:15:70:a4:b7:18:30:da:
69:a5:69:2e:f4:b6:bf:db:4b:60:99:0b:53:64:cc:66:01:61:
ac:9f:0a:61:f0:64:57:e4:48:62:1a:f7:82:f0:c4:dd:56:38:
92:ee:87:58:6d:55:a3:4b:d1:20:9f:55:86:a1:86:f6:54:39:
96:2c:9f:d9:bf:49:5b:f4:fc:aa:32:0c:e2:ba:eb:65:50:ea:
e9:08:43:12:a7:12:dc:94:fd:f4:97:3f:7a:7c:20:57:4b:6c:
00:30:1d:96:b1:4b:cd:22:74:7f:e3:f3:98:df:64:be:3a:93:
0d:41:d8:38:02:e9:b3:08:f6:1b:a0:d6:2c:03:17:1d:8e:bf:
90:cf:8a:53:ae:85:84:87:4d:c3:7d:7f:15:54:90:ba:d3:81:
3c:d7:e1:07:61:ca:51:60:56:ab:6c:a4:bb:c6:92:97:e9:0c:
c2:58:f2:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:11:20 2026 by rpki-client