Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: t1G/KCdZiMm4zwhJ8S3GcEKmfP8fe7X78zme0mkhXCU=
Subject key identifier: 51:53:03:79:41:08:96:38:C3:5B:74:DE:35:B7:03:39:FE:65:85:A2
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 019D996298595AEB98963C6C720000437685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 15BA
Signing time: Fri 17 Apr 2026 03:01:08 +0000
Manifest this update: Fri 17 Apr 2026 03:01:08 +0000
Manifest next update: Sat 18 Apr 2026 03:01:08 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: I1Qvr/dDs53Sw0EPiCzVxHum/NhZUMwJnbBKtVHsNBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:98:59:5a:eb:98:96:3c:6c:72:00:00:43:76:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: Apr 17 03:01:08 2026 GMT
Not After : Apr 18 03:01:08 2026 GMT
Subject: CN=5153037941089638c35b74de35b70339fe6585a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:54:8e:63:dc:b7:24:94:8f:e3:12:b1:5d:78:
ee:7d:4c:d4:d2:1d:cc:d8:ff:45:d0:83:ff:86:66:
78:94:b1:ad:ad:ae:64:4b:55:b7:03:d7:d4:19:77:
47:90:3d:ff:f7:b8:f1:6f:59:65:73:9a:ab:27:f3:
19:1c:db:f4:e1:2b:44:c6:91:fb:71:39:1e:f7:92:
41:de:9c:46:43:93:ba:fe:27:f4:aa:ff:b2:e0:a2:
36:65:48:b5:9d:df:53:ca:7b:b0:c3:74:77:c3:7c:
d7:18:a1:e6:ba:c3:3e:55:65:ed:43:38:79:79:53:
0d:ab:e1:84:2b:55:1b:64:9d:f9:c7:49:12:08:8e:
16:76:df:cc:d8:75:06:48:bb:92:c1:24:a2:97:aa:
01:96:88:fa:1a:63:b8:8e:67:8e:ca:ea:2f:25:8d:
1d:1b:80:de:f4:9d:04:37:46:c7:ad:ee:32:4a:0b:
3d:3f:7f:95:d4:90:c7:ea:b2:cd:d0:9a:48:9a:71:
c7:58:e7:41:91:8d:38:71:a7:cb:19:65:7b:a7:01:
16:68:bf:d8:c8:d2:9b:3f:6e:12:ee:e2:fc:6e:80:
af:5c:56:01:14:48:44:ce:7e:fc:1e:50:5b:6a:35:
8d:9f:28:2a:1a:fa:07:17:95:03:2c:cb:dc:af:45:
e7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:53:03:79:41:08:96:38:C3:5B:74:DE:35:B7:03:39:FE:65:85:A2
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:34:e2:a6:a6:54:6c:fb:de:78:0c:71:a7:c4:f1:98:63:e7:
1f:5f:e5:3b:89:e7:ad:c8:62:68:ee:7a:5e:84:be:be:f6:c9:
e3:e3:82:b3:3f:45:38:76:d1:cc:eb:80:d1:be:de:6f:32:37:
9a:61:26:02:89:b3:11:38:f2:42:68:79:3c:7c:a8:94:32:73:
e4:14:82:64:14:38:0f:a1:2e:e2:8d:8c:43:3f:dc:cc:0f:a6:
4c:78:c0:0d:50:22:56:e7:f4:86:ff:4d:e5:03:70:cf:72:f9:
84:9f:ea:35:c4:0e:46:b8:6a:46:38:88:35:53:a6:ca:cd:1c:
52:ce:06:ea:07:b5:88:86:4d:3b:1d:1f:f6:9b:78:06:d2:83:
89:10:96:02:52:ba:f6:8c:e3:55:ae:8d:f9:7c:37:57:4d:a1:
94:4d:53:91:87:49:0c:fd:01:a9:44:35:20:04:7c:21:83:b8:
bc:5d:94:fd:5b:af:a7:89:1b:98:2b:77:4b:00:71:99:e4:c7:
0f:21:51:ca:1e:b8:ed:87:7b:45:37:b0:c1:dc:25:91:26:7a:
fd:8e:ed:7c:37:98:53:15:db:f1:b0:18:63:06:d6:e4:e3:68:
a7:7a:61:1f:20:35:67:b7:27:51:89:2f:f2:94:05:c8:d4:a0:
c9:41:74:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:02:57 2026 by rpki-client