Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: eew3xaYG+gLazvkuG9epRERCMrdX9PbzW7VW1pGIkWc=
Subject key identifier: CE:D5:EF:85:D5:74:CF:55:DA:0B:BC:89:23:B4:AC:3E:94:E4:F4:27
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019EBDA2DF401D4541B21728A6BB9A9E1E46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 1958
Signing time: Fri 12 Jun 2026 21:00:28 +0000
Manifest this update: Fri 12 Jun 2026 21:00:28 +0000
Manifest next update: Sat 13 Jun 2026 21:00:28 +0000
Files and hashes: 1: 3ZbP8D4oyhCe4u5mlugxkhUP_G4.roa (hash: mYQ4ggMgVLrFbz01ZBuOhgHTwYfwTmz0/Kv0k+37TBo=)
2: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: EebJ/Zqyq8lg7eUKExBVta5+9pdmRL9UbWR9PQCSoNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 21:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:a2:df:40:1d:45:41:b2:17:28:a6:bb:9a:9e:1e:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Jun 12 21:00:28 2026 GMT
Not After : Jun 13 21:00:28 2026 GMT
Subject: CN=ced5ef85d574cf55da0bbc8923b4ac3e94e4f427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:41:1f:d3:98:6f:48:b8:2b:0c:68:a8:7e:28:
48:d0:da:02:ac:9e:d9:f8:95:e8:41:f1:44:8b:6e:
5d:8a:43:af:8e:c7:1f:3d:dc:4a:27:b3:30:27:e1:
d1:cc:56:d1:8b:e4:a2:09:74:af:7c:08:ff:b2:86:
f8:4a:3a:40:9b:65:a2:35:15:cb:08:2f:18:6f:3f:
04:13:c8:57:f5:bb:14:bd:c1:32:43:20:7d:f6:5f:
30:6a:f0:0c:35:38:83:f3:4e:f9:3b:f8:9d:b7:3e:
31:a6:f1:a0:12:51:7c:7a:62:86:fc:9d:92:ee:aa:
28:6f:e0:9c:4b:ab:19:a3:01:2a:1f:90:89:a0:cf:
b8:78:93:10:f2:4e:e8:c6:10:6e:38:01:04:6a:9f:
42:fa:ad:ec:a5:27:e3:e4:32:9f:a5:27:63:1c:f1:
c3:af:96:fe:0c:e7:41:88:78:84:ef:8c:bc:75:c3:
1a:84:5c:ae:68:e0:47:46:38:87:22:27:43:d8:d0:
51:3d:31:32:6a:61:71:af:76:31:4c:97:f6:ca:f0:
c7:f9:b5:07:a3:5d:da:00:06:38:87:48:fb:2e:c6:
9c:db:b6:d3:92:a8:68:c6:8c:3a:49:3d:55:e8:cd:
08:33:c0:8f:68:73:24:01:85:57:8e:ec:59:6a:d8:
35:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D5:EF:85:D5:74:CF:55:DA:0B:BC:89:23:B4:AC:3E:94:E4:F4:27
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:31:16:d3:00:e6:5b:8f:de:a9:84:85:5b:3e:48:ce:05:22:
85:a7:36:d2:b0:66:90:87:46:4f:8b:80:ce:02:a0:2e:d0:b8:
66:76:a8:60:70:e3:71:b2:04:ad:dc:59:1d:21:06:c9:d0:55:
a0:12:2e:f1:68:c3:0c:ea:78:cb:67:0d:f4:78:d3:c6:41:6e:
d8:ed:0a:1e:d1:54:d8:d9:d4:79:d5:f1:3d:f2:80:55:9f:dd:
fe:3d:e7:50:2d:ba:9e:f8:0d:c6:ec:43:a8:71:eb:5a:7e:1b:
2b:48:d8:b1:9f:04:cb:8f:d9:98:ea:47:55:a3:ab:37:ea:a5:
b3:2f:58:ef:eb:ab:47:e8:98:00:50:43:43:17:10:09:8b:4d:
44:70:85:47:64:70:54:c1:f0:07:79:68:25:57:6e:62:e8:14:
1c:39:a6:de:2f:a3:73:cc:93:3f:37:50:07:53:ea:5e:a3:83:
84:03:f7:f9:f5:e7:69:67:68:ee:a4:b3:cb:9d:b4:8c:9a:8d:
40:3c:4c:c4:be:09:14:8a:a6:bb:7f:9f:02:37:3a:16:b2:24:
3d:48:c4:15:da:7c:ea:85:97:93:6d:3a:b1:31:67:b8:6a:30:
83:29:83:a8:91:86:b3:ef:54:c2:17:7f:dc:9f:32:b7:7b:84:
e0:e9:09:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:11:16 2026 by rpki-client