Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: SNWY1LQBzjWfJ0VvGSGvEnBjDY9UrMa6LBcbZ3+TX3s=
Subject key identifier: D4:7A:0D:EE:B0:0E:CA:BE:0C:2B:A6:CB:D5:7E:B5:5D:AA:EA:3C:B5
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 019D992B456E888DCD60E0B292D13FC45536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 08C7
Signing time: Fri 17 Apr 2026 02:00:42 +0000
Manifest this update: Fri 17 Apr 2026 02:00:42 +0000
Manifest next update: Sat 18 Apr 2026 02:00:42 +0000
Files and hashes: 1: 2GTvWzpclUq6kJYm-wsP_GwJPLY.roa (hash: fYmZ9Cu3/ER+umCuIKfV6emnqQD55csuls9mkFBGOE4=)
2: 5oF3V0rjeL1pJ5lHiFSxxXlRiqk.roa (hash: MY4vTmIm6iMkCfXRGy7HULVmNJlJMi1dSNNh0tuV34c=)
3: 69uCRF0gJPayfWhDtOPkNyE4RrA.roa (hash: zk+4O7C/kwm21uLUwHJKUDfYHP0XyuVnc9Gjvk0nfWs=)
4: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: 0WS1xz+QV2ciBgCsrdCI/zfEtx7La54Mtj2+2fnBE2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:45:6e:88:8d:cd:60:e0:b2:92:d1:3f:c4:55:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Apr 17 02:00:42 2026 GMT
Not After : Apr 18 02:00:42 2026 GMT
Subject: CN=d47a0deeb00ecabe0c2ba6cbd57eb55daaea3cb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:42:88:93:6f:41:96:e4:62:1e:5a:24:fd:
52:d5:21:c8:ba:49:5f:d3:7e:77:6c:d9:8f:a5:4e:
a5:16:4d:ec:06:23:25:58:88:2d:f9:75:ff:4a:12:
e9:c4:b1:92:2c:52:44:c0:36:6e:4e:7b:72:23:23:
25:fa:4e:5e:de:58:58:6a:a6:94:35:b8:d2:fc:bb:
2e:59:ce:2e:a4:e7:97:10:1f:d8:74:6b:c3:b9:67:
2c:10:24:8b:5f:43:8d:af:5b:42:a2:0d:32:8f:da:
c0:26:3e:27:b3:3d:28:1d:c0:2e:d4:16:e1:5b:54:
87:64:3e:de:ea:1a:8f:d2:f1:d4:60:38:77:fe:38:
43:f1:d6:da:7a:31:9b:d8:36:67:3f:0e:7f:ea:a4:
e1:9c:59:c4:ee:be:80:ae:9d:9c:d5:86:d1:a8:ef:
4e:7b:1e:65:10:ca:b3:fa:b2:27:b9:e2:75:9d:f6:
39:a7:9b:19:51:2a:18:9d:63:4f:b4:72:eb:95:a3:
80:41:51:85:8a:94:8f:f1:04:b6:c0:db:86:9a:47:
6e:e2:b0:42:a3:d5:33:cf:c0:94:e3:b5:90:64:91:
06:66:6c:03:c6:2b:cf:74:11:b0:35:b3:47:4e:f7:
fd:19:c9:b5:60:16:11:97:e4:19:99:00:54:c1:23:
e0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7A:0D:EE:B0:0E:CA:BE:0C:2B:A6:CB:D5:7E:B5:5D:AA:EA:3C:B5
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:11:5e:0b:9e:22:04:d6:bd:b5:c5:37:e8:2d:95:27:01:38:
1a:c5:4e:94:41:42:dd:ae:66:8d:0a:07:d3:33:63:f5:e4:29:
d6:fa:85:23:5d:db:70:19:ae:af:d3:64:96:fa:04:67:99:9e:
df:99:89:41:42:1f:d3:22:12:12:c5:db:5e:be:a7:6b:7f:01:
d1:1d:f6:d6:98:e4:19:c6:64:54:f7:0e:5e:a8:d2:85:d8:79:
b3:eb:76:b4:a0:a5:35:ed:74:a8:cb:b0:f4:f0:dc:68:9c:6b:
d9:cb:72:01:bb:a0:99:76:e5:d5:64:37:6b:f5:8f:3f:43:63:
ce:78:4f:38:9f:e6:28:31:e1:16:f6:ce:08:83:a3:5e:6c:42:
da:50:cd:17:08:b3:a6:59:ba:13:9e:eb:a8:89:2d:5b:10:dd:
23:d2:fd:f6:27:c5:1f:7a:ed:a3:c5:e3:a3:5c:75:3b:9d:05:
c3:c9:5e:f6:ff:9c:e0:f4:42:f3:c8:4f:96:8e:8b:30:0e:ad:
a4:03:b8:72:af:be:c0:77:b9:30:69:18:a4:ea:39:ab:66:fa:
5c:09:0e:0c:54:53:57:dd:2f:02:eb:53:ed:48:8d:9a:65:58:
92:6a:4f:5c:91:af:3e:a1:8f:d9:59:df:08:42:d6:62:94:5a:
03:01:f1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:08:55 2026 by rpki-client