Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: 5Zig+ztBRWz//FaD2HJ2dlgufjgp0t1lHR3YH0UR3QQ=
Subject key identifier: A1:57:AE:A5:37:8A:08:D2:7D:D0:26:4A:4D:38:52:04:CE:0B:73:EB
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 019D9C2CC42E5DBF0DFA0D03B2F22646EAC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 1892
Signing time: Fri 17 Apr 2026 16:01:12 +0000
Manifest this update: Fri 17 Apr 2026 16:01:12 +0000
Manifest next update: Sat 18 Apr 2026 16:01:12 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: 1S7PrFgtFYf5Mu8XHJOoURmIlOny1FMf+3EiYAuBxEM=)
2: 9vmezDMgMLAYgubj0dZwQBpw7Zo.roa (hash: QLo0rxDXf9m7rqbC9zynXdEyUGpcYsQ8wFalcr82vIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:c4:2e:5d:bf:0d:fa:0d:03:b2:f2:26:46:ea:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Apr 17 16:01:12 2026 GMT
Not After : Apr 18 16:01:12 2026 GMT
Subject: CN=a157aea5378a08d27dd0264a4d385204ce0b73eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:c3:00:48:3f:f0:2f:48:99:0c:89:45:0e:
65:c5:8e:ba:ae:d7:28:07:c0:a7:c7:d9:b3:03:f2:
47:fd:bd:8f:cf:2b:db:18:d9:94:eb:3e:eb:5f:70:
f6:aa:20:11:dd:f6:90:eb:e3:c7:a6:c1:c4:e0:c5:
e7:9b:d8:da:96:a0:2e:7d:01:e8:8e:05:96:04:dd:
2f:63:3d:ec:e8:28:7b:1c:00:c4:0a:98:9d:7a:38:
ab:1c:fc:1b:be:fb:b7:58:d9:ca:e7:cd:46:41:8f:
67:2e:98:99:60:ff:18:a1:69:8f:56:f6:05:33:99:
6b:fe:dd:4a:62:1f:03:e6:03:4b:3e:ee:09:69:76:
b2:4f:f8:3f:e8:bf:0a:b5:7e:e0:83:3c:d8:9e:f3:
0f:73:7a:6e:60:2a:71:e4:99:b8:03:16:d2:32:b0:
dd:ce:7b:39:52:58:23:d4:ca:88:e3:18:d8:bf:b4:
b9:0e:ef:36:c1:8b:ac:8d:4f:5a:61:a0:c9:86:f7:
0a:a4:24:06:71:34:3e:f5:06:bd:62:70:be:5e:07:
c2:77:4e:15:76:20:24:1c:4c:f9:81:28:4b:0e:c4:
73:32:7a:bd:15:9d:be:cc:c9:86:c6:7e:74:99:38:
5d:12:7e:82:55:d7:65:b9:4b:1b:98:a0:81:5c:bb:
89:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:57:AE:A5:37:8A:08:D2:7D:D0:26:4A:4D:38:52:04:CE:0B:73:EB
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:76:bb:d9:b7:99:4b:92:2b:33:09:26:55:6b:82:3a:ac:fc:
9f:03:99:d9:2c:99:55:ab:92:a8:49:86:2e:0a:29:7f:ec:fc:
b7:e2:ca:1e:26:49:5a:01:17:6d:cc:3f:33:99:6d:07:46:06:
e4:fc:34:67:13:9f:4b:99:56:56:2b:b4:7d:7b:e2:a6:66:33:
da:2d:0e:27:05:24:a0:4d:3a:10:d8:bb:4d:99:12:90:29:81:
8b:ae:77:b1:ea:f0:66:a8:9b:a7:24:77:46:6d:d7:ed:ec:d8:
ea:59:4c:13:83:22:2e:ff:ab:d7:2b:e7:d7:ed:1b:bc:4d:99:
3e:01:ae:3e:e2:6a:a3:a9:29:f9:bb:87:45:42:62:c1:3e:78:
5a:c9:13:eb:15:08:5c:67:9b:58:bb:d1:a7:3e:95:e5:b4:96:
50:0b:fe:c5:99:0b:82:d4:56:60:6d:f8:95:20:32:91:1a:7e:
e6:0e:5f:aa:08:e2:67:9e:f5:b3:61:8d:2a:21:dd:dc:f2:b4:
3c:d2:84:f5:17:05:fa:91:3b:75:29:d1:28:ef:49:28:c8:dd:
a7:9e:3a:67:46:e0:d6:a7:5b:3a:39:48:9e:b5:73:6d:18:43:
f2:02:ad:24:79:70:1b:1a:42:71:af:19:6b:04:92:d8:87:e8:
6c:19:6f:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cLMQuXb8N+g0DsvImRurCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNThiM2E5NzQxYjQzMWQ3YmVjZDY0Mjg2YjllNmJjZTBl
OTc1ZGEwHhcNMjYwNDE3MTYwMTEyWhcNMjYwNDE4MTYwMTEyWjAzMTEwLwYDVQQD
EyhhMTU3YWVhNTM3OGEwOGQyN2RkMDI2NGE0ZDM4NTIwNGNlMGI3M2ViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3bDAEg/8C9ImQyJRQ5lxY66rtco
B8Cnx9mzA/JH/b2PzyvbGNmU6z7rX3D2qiAR3faQ6+PHpsHE4MXnm9jalqAufQHo
jgWWBN0vYz3s6Ch7HADECpidejirHPwbvvu3WNnK581GQY9nLpiZYP8YoWmPVvYF
M5lr/t1KYh8D5gNLPu4JaXayT/g/6L8KtX7ggzzYnvMPc3puYCpx5Jm4AxbSMrDd
zns5Ulgj1MqI4xjYv7S5Du82wYusjU9aYaDJhvcKpCQGcTQ+9Qa9YnC+XgfCd04V
diAkHEz5gShLDsRzMnq9FZ2+zMmGxn50mThdEn6CVddluUsbmKCBXLuJcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKFXrqU3igjSfdAmSk04UgTOC3PrMB8GA1UdIwQY
MBaAFPJYs6l0G0Mde+zWQoa55rzg6XXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTct
Y2RhOTRmYjc5NmQxLzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTctY2RhOTRmYjc5NmQx
LzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR3a72beZ
S5IrMwkmVWuCOqz8nwOZ2SyZVauSqEmGLgopf+z8t+LKHiZJWgEXbcw/M5ltB0YG
5Pw0ZxOfS5lWViu0fXvipmYz2i0OJwUkoE06ENi7TZkSkCmBi653serwZqibpyR3
Rm3X7ezY6llME4MiLv+r1yvn1+0bvE2ZPgGuPuJqo6kp+buHRUJiwT54WskT6xUI
XGebWLvRpz6V5bSWUAv+xZkLgtRWYG34lSAykRp+5g5fqgjiZ571s2GNKiHd3PK0
PNKE9RcF+pE7dSnRKO9JKMjdp546Z0bg1qdbOjlInrVzbRhD8gKtJHlwGxpCca8Z
awSS2IfobBlvYQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 20:07:01 2026 by rpki-client