Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft
File: 8mJAZfhrTPmEjex9q4ak24bBXhE.mft (raw, json)
Hash identifier: 656XRxgYekb1JqnCvEfLcToZ8/JkfDrfuDif3XWXAx4=
Subject key identifier: 87:D6:2B:71:3C:36:59:94:04:A9:0D:47:F7:92:83:EC:67:82:F7:85
Authority key identifier: F2:62:40:65:F8:6B:4C:F9:84:8D:EC:7D:AB:86:A4:DB:86:C1:5E:11
Certificate issuer: /CN=f2624065f86b4cf9848dec7dab86a4db86c15e11
Certificate serial: 019CAEA3C245A22A9EFD86FBD52084DEC7E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft
Manifest number: 0437
Signing time: Mon 02 Mar 2026 13:01:33 +0000
Manifest this update: Mon 02 Mar 2026 13:01:33 +0000
Manifest next update: Tue 03 Mar 2026 13:01:33 +0000
Files and hashes: 1: 8mJAZfhrTPmEjex9q4ak24bBXhE.crl (hash: vfR3gXbxcaEwImkn0+ghX+qcDys8+qZVcKnsic0Z5HE=)
2: B9dQBunPgCxrLiUL8opifDj2bOM.roa (hash: fWD90xCndzZ4WlkSeFBibUlZH38mskA/RfgbZjV3SFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:c2:45:a2:2a:9e:fd:86:fb:d5:20:84:de:c7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2624065f86b4cf9848dec7dab86a4db86c15e11
Validity
Not Before: Mar 2 13:01:33 2026 GMT
Not After : Mar 3 13:01:33 2026 GMT
Subject: CN=87d62b713c36599404a90d47f79283ec6782f785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3d:66:5a:6b:6d:af:ff:79:ea:9d:e3:67:ef:
9d:18:3d:51:18:2f:48:29:0f:6f:99:3f:f5:8b:3f:
d5:fd:9e:54:ef:c3:a2:27:fc:e8:61:a8:74:e4:15:
94:ea:ea:8b:4b:f0:c4:1c:ae:f1:2c:94:07:70:a1:
f1:e0:38:8d:67:fa:ae:ec:ee:47:b6:9b:5f:5d:29:
c5:51:ea:ad:95:7a:bf:01:78:ef:a1:6f:b3:ee:d6:
a4:ae:2a:4a:14:54:43:dd:4f:71:84:3d:cc:c8:eb:
b0:89:9b:59:57:29:4c:79:25:c6:4f:66:ed:92:6a:
ea:a1:22:16:40:97:74:5f:9c:04:49:63:2e:0a:9b:
38:23:b6:4f:e2:dc:14:06:67:32:6e:11:48:1e:b2:
c1:4a:c5:93:da:87:8c:75:85:da:b8:bf:19:82:13:
fe:d9:c8:1c:99:59:24:f6:29:da:18:40:33:0a:09:
f6:97:c5:0a:20:9c:88:e0:43:30:c0:ad:f2:c8:ca:
45:10:44:73:6e:2e:8e:41:c6:6b:dc:e8:1e:0c:8f:
72:8a:86:db:eb:f8:43:bb:d9:57:08:b0:9a:aa:4d:
74:80:bb:17:0f:32:cd:d2:92:a3:c8:89:7f:2f:67:
34:fc:35:ee:6a:28:e5:74:a2:66:8c:f3:cf:74:09:
ed:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D6:2B:71:3C:36:59:94:04:A9:0D:47:F7:92:83:EC:67:82:F7:85
X509v3 Authority Key Identifier:
keyid:F2:62:40:65:F8:6B:4C:F9:84:8D:EC:7D:AB:86:A4:DB:86:C1:5E:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mJAZfhrTPmEjex9q4ak24bBXhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/818491-d657-42c8-bc9a-e5470c52d4dd/1/8mJAZfhrTPmEjex9q4ak24bBXhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ba:fc:b7:4b:84:87:6a:c3:33:1a:9e:4b:2c:39:74:00:d8:
bd:e1:5c:2e:39:bf:2a:8d:a4:15:32:80:4a:ec:41:3a:d7:38:
e5:f7:81:ba:58:b6:1d:1f:b8:a8:28:a9:3a:40:ce:2d:cb:b1:
18:8f:34:c7:66:e4:33:69:ca:e0:b8:23:e0:ac:5c:fb:82:31:
14:3a:15:2d:41:10:2b:e9:50:11:a8:77:2f:6d:20:fb:ea:af:
3d:94:81:d9:a8:27:16:09:25:e3:fb:fb:a5:00:6b:33:af:c8:
bf:80:fb:88:c8:55:95:c9:ce:28:cc:e8:cd:41:1b:3f:b9:65:
f8:1f:cc:f4:5f:29:ec:93:d4:13:d7:42:93:93:f6:3a:a0:5b:
d6:e5:bc:ce:d8:67:50:d8:42:e9:7e:bd:25:9d:f4:78:d6:7b:
29:e8:59:a3:35:bf:37:b0:24:f8:ef:23:21:ff:b7:fc:56:6d:
d3:7b:31:f9:93:d7:cc:50:15:3b:b3:94:07:4c:0d:8d:32:a6:
a6:33:13:79:31:5b:97:27:be:87:f5:07:3c:3a:36:f3:09:ff:
81:24:fd:24:65:c9:74:df:f3:7a:f3:54:15:3a:bd:29:11:bd:
56:01:1e:28:7d:62:49:a5:a8:1f:4a:ab:69:92:66:8b:98:ea:
7d:33:e4:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:26:16 2026 by rpki-client