Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
File: 8u5baEnIyB9adjWVWIprpoIedns.mft (raw, json)
Hash identifier: +7R68Q6/x4wTmOCS6UOoQGPKIc3NGPHGHAtDNrhO7/M=
Subject key identifier: 39:CB:C0:01:CA:F6:49:A7:61:3B:9A:B4:14:03:56:AF:F2:C9:92:9E
Authority key identifier: F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
Certificate issuer: /CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Certificate serial: 019CA9B3E1D95C79F54D67E7AEB94B9FEE82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
Manifest number: 084B
Signing time: Sun 01 Mar 2026 14:01:04 +0000
Manifest this update: Sun 01 Mar 2026 14:01:04 +0000
Manifest next update: Mon 02 Mar 2026 14:01:04 +0000
Files and hashes: 1: 2GTvWzpclUq6kJYm-wsP_GwJPLY.roa (hash: fYmZ9Cu3/ER+umCuIKfV6emnqQD55csuls9mkFBGOE4=)
2: 5oF3V0rjeL1pJ5lHiFSxxXlRiqk.roa (hash: MY4vTmIm6iMkCfXRGy7HULVmNJlJMi1dSNNh0tuV34c=)
3: 69uCRF0gJPayfWhDtOPkNyE4RrA.roa (hash: zk+4O7C/kwm21uLUwHJKUDfYHP0XyuVnc9Gjvk0nfWs=)
4: 8u5baEnIyB9adjWVWIprpoIedns.crl (hash: racUwCAsHyv1qQOWyv4KT7kPfj918zglqkga1m7/kUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:e1:d9:5c:79:f5:4d:67:e7:ae:b9:4b:9f:ee:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2ee5b6849c8c81f5a763595588a6ba6821e767b
Validity
Not Before: Mar 1 14:01:04 2026 GMT
Not After : Mar 2 14:01:04 2026 GMT
Subject: CN=39cbc001caf649a7613b9ab4140356aff2c9929e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:ec:7a:ba:a5:95:27:92:61:57:a7:61:8a:
76:90:43:6e:0c:b1:8b:58:20:49:42:3f:5b:6c:7b:
17:45:53:19:47:50:a2:3a:ce:3e:be:a8:32:cd:ce:
d1:58:2f:cd:94:a4:8f:d5:fd:87:11:37:39:f3:e5:
61:b7:1f:22:e0:22:c2:ed:62:9b:f2:c8:30:60:00:
53:28:bd:94:59:a3:c9:13:8a:dc:91:f7:05:31:58:
58:75:06:65:f1:61:2f:52:66:ae:d1:2e:c2:69:bf:
55:0f:2c:74:9c:10:32:6a:5c:86:23:d3:f4:d6:46:
be:74:0f:48:a3:f3:7a:6c:7d:7f:3b:e4:1f:fd:e1:
50:4d:c8:e1:db:f0:61:86:12:d6:88:a9:77:dc:9d:
e6:97:c6:b8:a2:43:d8:2f:b4:e3:55:29:08:16:7d:
7a:da:e3:8c:61:4d:67:1e:fe:ce:f7:e1:3d:36:ec:
7e:97:5b:14:68:d3:e6:27:35:58:db:d5:ee:19:23:
54:f2:4b:27:8b:59:a2:e7:b9:c8:f6:17:56:85:4a:
33:35:3d:0b:83:b0:3f:f6:78:6f:51:81:ec:80:d7:
a0:73:48:63:29:12:65:e5:89:aa:55:85:ad:b9:84:
79:0b:dc:0c:d4:0c:67:26:68:60:47:99:b6:27:ef:
53:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:CB:C0:01:CA:F6:49:A7:61:3B:9A:B4:14:03:56:AF:F2:C9:92:9E
X509v3 Authority Key Identifier:
keyid:F2:EE:5B:68:49:C8:C8:1F:5A:76:35:95:58:8A:6B:A6:82:1E:76:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8u5baEnIyB9adjWVWIprpoIedns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/002a88-3a85-476f-b452-60a039dd1bca/1/8u5baEnIyB9adjWVWIprpoIedns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:1d:c7:38:27:37:01:3b:9f:7b:5e:38:d3:6a:92:ff:0f:ba:
1d:13:d6:e8:3a:7c:84:05:85:c8:96:20:29:fb:a9:ef:4e:0d:
d9:41:b2:52:13:1e:fb:cb:4d:ba:2f:d6:96:f0:7a:52:42:f8:
62:7f:67:e9:bc:10:15:6a:75:1c:2d:ef:6e:b0:58:40:51:9c:
85:65:83:7b:d4:e1:51:c2:f4:08:34:fd:71:02:39:47:9e:6b:
5e:7c:64:f9:dc:cf:99:d3:59:8a:e2:ea:95:36:a3:9b:d8:7b:
35:59:66:ed:6f:b8:cb:4a:f1:fd:15:6c:31:5c:99:b6:2b:6b:
03:0c:4d:2d:b5:96:19:c3:33:62:9d:98:df:e9:6d:5c:de:aa:
e1:fd:e7:96:7d:94:44:45:e0:28:36:a5:b0:f4:c2:3c:f3:f7:
3f:4b:b6:2b:57:ab:06:ec:18:ad:8f:de:d5:50:65:63:e6:55:
32:1e:90:97:f0:0b:db:86:c6:1e:b8:1a:a2:6a:b7:f1:21:fe:
f3:57:d8:4d:1f:0b:fe:0e:6b:bd:88:cd:b4:47:3a:db:95:cf:
d0:c1:b9:63:97:6d:fd:66:e0:03:b0:cc:40:b9:ce:3b:a8:a8:
87:1e:fa:ee:61:33:2a:40:bb:07:d7:24:f1:b4:ca:80:82:45:
06:27:33:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:03 2026 by rpki-client