Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
File: 8uOrazEY4L3g5kiOa-1slpQeDoQ.mft (raw, json)
Hash identifier: hw0sB6eS2hOY9sUXl11WMh2lFpczV3+qOQW3ggcO4BA=
Subject key identifier: 11:07:6C:EF:3B:40:82:E6:E0:94:DE:DD:2C:06:98:7C:1F:2E:61:14
Authority key identifier: F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
Certificate issuer: /CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Certificate serial: 019D9A74DD017F768AD0C07105B9FB0E073F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
Manifest number: 0D58
Signing time: Fri 17 Apr 2026 08:00:43 +0000
Manifest this update: Fri 17 Apr 2026 08:00:43 +0000
Manifest next update: Sat 18 Apr 2026 08:00:43 +0000
Files and hashes: 1: 8X-vY96aKKHfj_txGbHwT7KRdWc.roa (hash: 0WIWIIW0b9953A6VR0CU69w8OMoDd9V6tcRbkVExZv4=)
2: 8uOrazEY4L3g5kiOa-1slpQeDoQ.crl (hash: Ws6QhEP0z0nzlBwG266LYPBHXnAOLtvFLe+wpa8XcWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:dd:01:7f:76:8a:d0:c0:71:05:b9:fb:0e:07:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Validity
Not Before: Apr 17 08:00:43 2026 GMT
Not After : Apr 18 08:00:43 2026 GMT
Subject: CN=11076cef3b4082e6e094dedd2c06987c1f2e6114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4b:59:db:18:cd:75:d6:34:28:c7:02:a4:10:
a1:97:ba:12:d3:dc:2a:08:1c:a7:eb:b7:d6:a7:74:
f7:40:0b:2f:09:e5:a1:cf:af:ed:0a:0e:31:6e:8d:
61:e7:61:0b:d3:7d:b3:a2:2e:d9:df:e6:27:5b:11:
b7:cc:cf:04:ef:11:22:f7:d4:a6:7d:14:c1:77:4f:
78:e1:4e:fe:9d:92:18:90:0b:5f:d8:85:3d:fa:b2:
06:c5:a0:58:67:ae:7e:4e:a1:64:01:80:ca:64:18:
e8:ee:1e:f5:21:4c:db:88:23:44:2e:b7:07:6a:5d:
55:7f:0e:26:dc:49:28:1f:cf:b5:e5:0b:9e:37:31:
4f:91:ae:8f:37:8c:a3:dc:74:f0:38:b3:d6:18:14:
14:3e:ef:d9:09:e7:89:8e:a6:87:81:95:3d:c6:3b:
66:5a:80:49:69:a1:81:48:e2:b8:57:e3:ad:88:99:
f0:fa:c5:f1:db:8f:eb:b7:13:cf:04:88:72:c6:4e:
f7:7a:6d:b0:57:e9:5b:06:d5:e7:0b:82:cd:a4:cb:
ff:f3:2f:66:05:6c:32:0c:b1:3d:f5:47:fb:d7:23:
64:9f:5f:0c:65:5d:d3:be:b9:62:20:8c:fb:91:b7:
d5:88:10:9d:1b:60:e1:78:db:83:1d:60:b2:5b:e0:
f3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:07:6C:EF:3B:40:82:E6:E0:94:DE:DD:2C:06:98:7C:1F:2E:61:14
X509v3 Authority Key Identifier:
keyid:F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:66:39:eb:c0:54:a9:e0:c4:ad:9c:1d:3c:d3:81:9b:0a:3c:
0c:e8:be:a3:03:40:90:15:ba:c7:86:c6:bb:32:23:ec:80:3d:
2a:ee:73:ac:42:69:cb:c9:f1:a2:60:fd:d2:db:1a:14:42:05:
66:21:cf:8f:94:b6:67:88:e3:ab:b7:e6:c3:4e:2b:e0:84:6c:
ce:8e:e3:b2:68:d4:48:f2:ba:54:04:54:73:d7:a5:4f:e4:5d:
68:05:39:6b:f8:59:d8:b4:f1:3a:d6:2c:29:0c:57:d0:6d:79:
7a:be:56:d2:e0:c2:f3:ad:db:69:10:ec:79:30:23:16:f5:2c:
d1:e2:a0:7b:ee:22:4b:b2:46:7c:31:d3:ba:fb:87:b7:f5:6c:
04:84:0a:5c:a4:52:ef:74:c3:4d:65:fb:ad:79:45:11:26:31:
63:a3:b3:53:03:9c:74:e0:85:d1:de:7d:5e:8f:9d:aa:87:a7:
88:41:0d:4b:51:8c:64:00:46:a3:34:6e:c1:73:06:d3:e7:96:
05:eb:1e:d2:3c:36:52:05:76:a3:f3:e4:59:c7:1c:2a:f7:e1:
96:8c:55:5e:4a:54:a7:fc:33:ba:60:d7:b0:18:ad:ac:23:9a:
b5:92:08:a3:6f:ca:bc:96:08:bf:a6:f6:88:1e:15:48:a7:1e:
5f:ad:8a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:23:03 2026 by rpki-client