Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
File: 8zXtZqwB15F1zk149nKh_kcgN4A.mft (raw, json)
Hash identifier: AkCQenHKDwchHKT9ORdaZW2EFZeFNg0YQEK9oc2OQaA=
Subject key identifier: 58:AE:76:5F:58:BA:55:0E:BA:CE:8C:BC:83:DE:12:E0:30:BD:FB:0B
Authority key identifier: F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
Certificate issuer: /CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Certificate serial: 019DA453F57A067918AC225FD4B013AA050B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
Manifest number: 028C
Signing time: Sun 19 Apr 2026 06:00:58 +0000
Manifest this update: Sun 19 Apr 2026 06:00:58 +0000
Manifest next update: Mon 20 Apr 2026 06:00:58 +0000
Files and hashes: 1: 8zXtZqwB15F1zk149nKh_kcgN4A.crl (hash: YhQgHOfHOXDGhkzArfLMkQ4QpJdYqyP9324iYJgPnCE=)
2: VpiFwK0hsjfTbGKdlZz4M450A4o.roa (hash: 7nG4whDnBMU971FoyHXyhGJf7PxhrWgEoIfy9EmmD2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:f5:7a:06:79:18:ac:22:5f:d4:b0:13:aa:05:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Validity
Not Before: Apr 19 06:00:58 2026 GMT
Not After : Apr 20 06:00:58 2026 GMT
Subject: CN=58ae765f58ba550ebace8cbc83de12e030bdfb0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:aa:9e:f2:9d:26:c7:fc:08:dc:b1:6a:c3:
d7:3b:18:7d:5b:64:ac:b8:7c:f5:6a:27:96:f0:ce:
67:b0:6c:78:01:10:77:a6:5e:ba:85:57:3e:a8:76:
7b:4a:c0:39:52:29:fa:7f:99:c8:e6:04:b1:73:00:
ce:e6:ff:f1:86:4f:d1:1f:9d:be:cf:dc:a4:bd:79:
56:e5:f5:5a:50:04:55:d7:a1:e8:5b:4b:d4:1b:62:
2c:b6:96:45:25:bf:b7:4b:fb:58:5c:13:cf:91:97:
f8:82:9f:8e:12:25:ec:a6:dd:8b:b7:00:a6:59:ee:
0e:31:27:6f:df:32:84:6a:73:30:1a:e4:99:9d:14:
f3:db:60:1f:c5:a1:1e:dc:39:96:29:0b:ed:58:73:
92:97:ab:c1:24:a7:ae:60:ad:25:ad:86:39:7e:b8:
92:71:72:19:dc:91:57:f5:a3:04:25:ab:a2:f9:01:
8c:95:bc:22:8a:e4:c3:ce:1b:84:6d:59:3c:05:a5:
00:ac:af:e1:ed:6a:45:f8:3f:86:26:c8:16:fa:79:
46:ac:b7:55:08:71:08:a7:be:e3:fb:9f:01:33:59:
67:66:0a:6b:ae:e3:f1:cb:cf:b7:6f:e2:c0:0d:bd:
41:32:d2:52:1e:c8:76:38:3c:30:ab:c6:82:fe:b6:
9a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:AE:76:5F:58:BA:55:0E:BA:CE:8C:BC:83:DE:12:E0:30:BD:FB:0B
X509v3 Authority Key Identifier:
keyid:F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:8f:f1:1b:d2:80:63:a8:74:82:02:05:77:32:e0:da:06:35:
2b:04:ab:35:76:06:46:94:99:d8:49:84:7c:7a:27:3b:6f:36:
44:90:0e:8c:31:27:3b:91:7e:c9:24:5b:99:ad:db:ef:04:73:
4d:c2:19:6b:53:66:50:00:60:31:b7:39:de:c9:d6:c6:1b:df:
cc:d5:f9:08:0a:67:ce:53:d8:54:50:3d:24:d0:02:a3:8b:dc:
2d:5b:6e:91:4b:80:0d:d2:d7:cf:ad:f7:54:1d:99:db:b7:5d:
37:a5:ad:76:33:e0:52:4a:4a:57:cb:48:f4:a1:31:1d:57:80:
f3:1c:2f:12:98:f9:0c:5c:99:8f:a3:33:7b:c6:bd:a8:17:88:
4d:a5:f3:f0:21:68:3f:04:1d:e9:54:6e:da:e5:7f:07:7b:b2:
33:73:5e:ee:a8:18:bf:6d:52:8d:fc:81:53:3d:ca:50:eb:d7:
7f:bb:96:e4:bd:b7:7f:c7:3b:3d:87:be:ac:28:27:24:9f:17:
a5:fd:69:f9:fb:2e:e1:bc:7e:a1:9b:31:8a:f7:37:0e:08:13:
24:6a:38:a7:38:0f:f7:50:dd:e2:df:4b:dc:7f:f3:95:2a:00:
3a:ed:93:4d:0d:a4:b7:bb:6d:df:da:8f:49:c2:0a:5f:54:11:
c6:16:f5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 15:09:35 2026 by rpki-client