Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
File: v8qNbiIJkMc424yExmshnwNFVgw.mft (raw, json)
Hash identifier: a80Lj10SOcWQznMFXYIg6OlW6BEgmykChNUNPSpry/c=
Subject key identifier: 19:83:AB:9E:0E:E6:7B:46:7B:CF:CF:8E:21:DE:2D:6B:25:4C:35:D8
Authority key identifier: BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
Certificate issuer: /CN=bfca8d6e220990c738db8c84c66b219f0345560c
Certificate serial: 019CAB6BD7FBA651E65D28901881F0153659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
Manifest number: 123E
Signing time: Sun 01 Mar 2026 22:01:37 +0000
Manifest this update: Sun 01 Mar 2026 22:01:37 +0000
Manifest next update: Mon 02 Mar 2026 22:01:37 +0000
Files and hashes: 1: v8qNbiIJkMc424yExmshnwNFVgw.crl (hash: Xiizc6DH6bYWIb7ObbAkOOsRYxdNw6FhHLKol/QZ7sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:d7:fb:a6:51:e6:5d:28:90:18:81:f0:15:36:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfca8d6e220990c738db8c84c66b219f0345560c
Validity
Not Before: Mar 1 22:01:37 2026 GMT
Not After : Mar 2 22:01:37 2026 GMT
Subject: CN=1983ab9e0ee67b467bcfcf8e21de2d6b254c35d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:21:85:45:de:81:96:4a:d2:a4:e3:d1:f5:47:
a7:bf:d6:13:87:05:9a:f7:65:ba:a4:d1:d8:13:6b:
44:07:8c:2e:4b:7a:88:f3:91:26:b2:d9:c2:4f:4c:
78:51:8d:ba:8c:7a:ae:86:d5:44:90:88:7e:d3:2b:
9e:c7:a6:1e:2d:b1:1a:e7:d6:22:58:62:87:52:b6:
2c:81:b6:c1:81:90:3d:65:d6:af:1e:06:36:7f:eb:
46:83:a4:72:70:a9:ab:9e:e8:ea:07:f2:e5:50:58:
da:b5:6b:1b:86:df:d1:5f:cd:01:a8:a4:d7:d6:54:
70:a7:69:6c:b7:db:b9:4b:c6:78:d0:ac:ed:51:e8:
8e:ec:21:f4:59:a4:9d:cc:81:12:ee:15:c5:8a:0b:
50:24:83:af:35:1c:ea:7f:6c:c9:19:fe:36:4f:cb:
69:86:14:ba:72:4e:37:40:90:ad:d3:64:c0:9a:37:
e2:6d:ba:b2:cc:bf:30:e1:03:1a:39:bf:7c:15:79:
01:dd:66:74:50:b8:9e:20:ff:78:27:d2:4c:c6:99:
91:8c:f9:2d:04:01:07:33:35:1b:69:98:fc:a2:b3:
2c:d6:ee:dd:83:d6:75:89:ad:44:13:4d:03:d2:a0:
3d:63:a7:32:0d:f2:4d:37:fc:50:97:49:fa:a2:b0:
8a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:83:AB:9E:0E:E6:7B:46:7B:CF:CF:8E:21:DE:2D:6B:25:4C:35:D8
X509v3 Authority Key Identifier:
keyid:BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:a5:7f:ad:d8:58:4c:20:b7:5d:5a:5a:42:d3:5c:40:ec:9b:
44:54:f6:d3:31:59:db:e1:89:82:72:07:1a:90:97:14:65:20:
7a:e5:14:0c:e7:f6:5b:a6:e2:5e:71:26:70:f5:2e:d4:00:04:
1e:84:19:6b:a8:ba:76:7e:c7:b0:64:c4:7d:95:f1:33:e5:2b:
45:fe:e5:0b:f4:ab:5c:20:92:85:ce:13:6c:c8:f4:20:ab:cd:
3e:3a:96:5b:7d:f1:9e:6f:1e:3c:d2:a3:a2:13:84:c9:80:68:
2d:3d:f6:08:e3:bb:7d:62:61:9d:5d:f9:77:dc:27:c5:88:dc:
3e:b6:79:86:2f:df:36:c8:b1:ab:f2:d4:d7:98:08:88:d6:fd:
9d:e2:dc:c5:04:e3:5a:ac:24:95:c6:df:2e:2a:a1:5f:fb:48:
05:85:29:af:9c:da:0e:6b:88:7d:a0:3b:22:4e:27:5a:f6:af:
71:ad:7c:1c:80:18:79:b1:06:8d:3e:bb:c8:9d:9f:45:a2:29:
29:d4:c7:08:5b:29:81:9f:75:68:12:d9:1f:c7:99:f9:d0:3a:
a6:65:bf:a0:5d:cd:00:85:27:73:2c:ce:ac:f4:43:c0:f4:6e:
b5:bb:3b:a6:d1:31:3c:da:6d:08:9f:d6:ea:48:17:02:07:e9:
62:b0:d2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:02:14 2026 by rpki-client