Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: bbRYkyPawhvEuPUvOogxITqZEgkSFdkV4uk3aaPFs28=
Subject key identifier: B4:49:E7:9A:F8:A6:D8:8C:5B:F7:31:71:37:23:8F:E3:3D:72:15:30
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019D9A07113D94DBC027BD5EB24DC9EC6EEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 06:00:47 +0000
Manifest this update: Fri 17 Apr 2026 06:00:47 +0000
Manifest next update: Sat 18 Apr 2026 06:00:47 +0000
Files and hashes: 1: 3ZbP8D4oyhCe4u5mlugxkhUP_G4.roa (hash: mYQ4ggMgVLrFbz01ZBuOhgHTwYfwTmz0/Kv0k+37TBo=)
2: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: 6ml5cnkar6G8seXPZDoKGRWR+YliD6x6rpbB2eHwr8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:11:3d:94:db:c0:27:bd:5e:b2:4d:c9:ec:6e:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Apr 17 06:00:47 2026 GMT
Not After : Apr 18 06:00:47 2026 GMT
Subject: CN=b449e79af8a6d88c5bf7317137238fe33d721530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:df:c2:b6:2e:bb:fe:0f:39:9c:cb:2f:69:83:
09:b0:ec:c2:e1:41:f8:08:e3:33:f5:09:49:6e:e0:
0e:e3:39:a3:46:27:12:fb:cc:f2:1d:a8:a7:ef:40:
b9:4c:77:8f:96:47:15:75:bb:86:34:dd:15:05:c4:
8c:b6:b2:09:fa:e3:65:55:e7:12:fc:f9:d6:8e:a3:
41:ca:ef:2e:f0:d8:26:0a:f3:64:7d:81:de:0c:d0:
c8:7f:51:9b:3b:d8:cb:12:0c:69:97:09:15:08:90:
30:48:05:f1:58:cd:62:e7:10:11:2e:ec:2e:68:1c:
fa:a5:56:68:94:04:79:aa:29:ca:41:cd:9f:4c:6f:
96:70:22:a1:ec:94:63:7e:f9:27:11:9c:a8:e1:9c:
d2:28:94:8b:5a:1c:54:72:af:c5:58:c6:14:62:ad:
92:13:60:91:45:cf:af:21:ba:a9:43:e1:21:12:79:
d7:d5:75:e0:0e:9d:b5:b3:59:24:77:71:78:ae:48:
c9:61:7c:ec:3d:5c:66:77:1e:c9:a2:05:06:d9:eb:
2a:a4:17:8a:16:ed:7a:a7:17:49:e2:6c:7f:45:40:
b2:3b:89:42:14:a5:9a:6a:a5:55:d0:f0:81:c0:6d:
fe:d9:28:bd:63:d2:f0:90:e5:db:ba:6c:96:57:7a:
35:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:49:E7:9A:F8:A6:D8:8C:5B:F7:31:71:37:23:8F:E3:3D:72:15:30
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:bc:92:b2:97:fa:71:96:07:fe:98:f6:b8:cf:91:f5:5f:b8:
65:c9:b0:84:52:86:2c:f0:df:46:a8:63:39:a1:7c:13:49:e2:
cc:10:3d:10:9e:fc:87:c9:be:1f:ec:83:6d:cd:2f:f4:7f:95:
d8:d3:c0:db:e2:2b:7b:c6:59:20:71:c6:c6:d8:88:d7:f8:b8:
4f:7f:48:fa:5b:3b:9e:d4:65:4b:4c:c6:5b:91:02:f5:ca:02:
ec:a0:a7:9d:fc:85:81:72:13:0e:a6:1c:13:2c:0b:c6:20:4b:
b8:04:f9:0e:ce:30:08:e8:7a:72:2b:62:16:27:56:b0:c5:ef:
b8:9d:88:bf:ca:13:23:29:e5:c7:36:b9:6b:8e:f6:63:bf:e2:
6a:a7:37:16:10:f8:43:c3:c4:e7:f5:34:9e:47:10:73:00:8c:
2e:f9:5d:7f:ea:70:c2:03:82:e7:0a:18:80:25:c5:2f:d8:f4:
a6:a0:77:20:01:ad:09:22:4a:02:c4:d8:f8:c3:ee:b5:ab:18:
fc:f2:a3:b2:b6:bd:4d:19:ce:a6:e4:6c:46:4a:4b:ec:59:ce:
6f:5e:d7:1e:4d:c6:60:0c:e2:99:d8:be:7d:1f:59:2d:77:69:
71:ab:dc:f0:40:82:67:da:7b:04:cf:95:d9:cd:b9:91:f9:6b:
eb:48:49:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:04:19 2026 by rpki-client