Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: 4XXFbrDm+U7u9FfuEAjYRDjeaQ2/5opiN2lj4UyhwsY=
Subject key identifier: 89:23:75:B7:A7:A8:40:5C:1C:5B:98:59:DA:EB:05:D7:A2:60:92:33
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 019CABD947A20332368688151303119A0034
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 153F
Signing time: Mon 02 Mar 2026 00:01:09 +0000
Manifest this update: Mon 02 Mar 2026 00:01:09 +0000
Manifest next update: Tue 03 Mar 2026 00:01:09 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: hkIvrMkORwjhML6uFciqUFm/SHVAMity2SHpka6cQPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:47:a2:03:32:36:86:88:15:13:03:11:9a:00:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: Mar 2 00:01:09 2026 GMT
Not After : Mar 3 00:01:09 2026 GMT
Subject: CN=892375b7a7a8405c1c5b9859daeb05d7a2609233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:42:05:03:19:44:8e:40:c0:b9:13:a7:29:ea:
0f:e3:ec:5a:ff:ee:ad:f0:c6:69:ed:4a:2c:c5:2f:
1b:54:00:fa:2a:0a:82:1c:e7:db:43:78:8a:af:9b:
11:52:9c:51:a9:6d:a6:ff:d1:05:49:63:f2:2e:99:
4f:8a:34:e8:38:b5:07:f2:43:ef:b9:f0:09:a3:14:
28:36:0d:40:5d:ad:3f:3b:22:a4:04:fe:59:fb:d6:
28:9e:f6:c0:89:6e:13:57:6f:3b:ad:e6:40:85:17:
09:47:f1:eb:3e:8a:e6:94:5c:bc:92:ae:42:33:12:
84:80:20:7e:d3:a4:b4:d5:ec:e7:b8:19:37:14:e9:
8e:c7:c8:e9:70:e6:60:d1:b9:a8:71:3a:92:df:92:
59:3f:97:a8:ef:40:9a:9b:93:91:ca:c9:1f:25:34:
84:7b:52:54:37:d8:c2:93:b5:1d:77:af:4b:d4:f6:
8f:18:de:cb:f7:48:7e:ef:12:01:3a:4c:38:27:40:
b9:1d:d0:a1:31:14:a8:c9:68:d8:60:f0:ce:a9:25:
da:7d:20:33:ed:9a:bd:44:06:d3:d0:9e:ec:7e:0f:
51:51:f6:6e:04:ff:b6:41:8a:5b:83:2a:8d:19:e6:
b9:cf:32:87:89:d4:04:08:5c:53:b2:56:a0:7c:96:
57:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:23:75:B7:A7:A8:40:5C:1C:5B:98:59:DA:EB:05:D7:A2:60:92:33
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:89:e0:d8:27:5c:c3:56:1e:37:c6:ac:9e:73:7a:8f:72:22:
49:66:f1:be:a1:eb:48:20:8d:03:5c:b2:06:05:c1:12:62:4e:
f1:8c:e5:5b:26:79:f8:b4:c8:f8:d0:a0:2c:01:61:75:96:40:
9e:98:00:b8:0c:e9:ab:03:32:74:a3:d9:dc:33:ee:f3:e5:ce:
6b:19:42:32:2a:ad:ef:31:93:26:bf:34:ae:95:10:e2:45:22:
71:af:ca:70:71:4d:66:22:d6:fd:09:85:34:ce:f5:12:7d:16:
7b:d6:0a:d4:09:b5:c2:47:2b:32:53:54:19:c8:3f:8e:8e:1e:
7e:ee:12:40:7a:ce:b1:b4:f8:ac:16:16:26:86:c3:10:72:cc:
22:1d:a9:0b:6c:af:b7:4a:0d:a7:ae:1a:ff:2b:ae:91:fa:2a:
d6:06:94:59:91:68:fd:3d:19:e9:9d:b0:f3:ed:0c:83:be:c9:
97:6e:d9:38:08:69:bf:af:9f:e1:ff:b0:0b:f7:f6:09:74:a0:
d7:28:f5:e3:5a:d9:1b:e7:f2:8d:b1:06:81:70:b3:36:43:58:
75:fc:a8:09:c9:f9:5f:e0:f2:55:74:94:78:60:ec:17:1d:9c:
76:54:58:ce:95:ae:96:95:fc:a7:ad:25:23:73:09:60:dc:f4:
b2:68:ab:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:26:52 2026 by rpki-client