Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: YG40JZxJPCyCYvIazXtknOZADdOHWwgl7tjD7IyJkJs=
Subject key identifier: BE:F4:18:D0:01:99:9F:5C:37:1D:7F:4D:33:2C:77:60:16:8C:3B:F1
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 019CACB557D8847D5E760CC3E5BE005FA115
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 1816
Signing time: Mon 02 Mar 2026 04:01:31 +0000
Manifest this update: Mon 02 Mar 2026 04:01:31 +0000
Manifest next update: Tue 03 Mar 2026 04:01:31 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: n3485yKhxrRWlShpClI6Ru1v8gnqhNbEY2xepTc+4bA=)
2: 9vmezDMgMLAYgubj0dZwQBpw7Zo.roa (hash: QLo0rxDXf9m7rqbC9zynXdEyUGpcYsQ8wFalcr82vIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:57:d8:84:7d:5e:76:0c:c3:e5:be:00:5f:a1:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Mar 2 04:01:31 2026 GMT
Not After : Mar 3 04:01:31 2026 GMT
Subject: CN=bef418d001999f5c371d7f4d332c7760168c3bf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:03:1b:0d:66:5c:6d:a1:f5:b4:33:76:8f:9e:
34:8b:aa:7c:86:d3:08:bb:4c:4f:f4:e5:93:1a:65:
a4:74:af:61:5e:bc:a7:74:c7:6d:5f:41:62:b5:8b:
f3:18:a7:24:40:f6:e1:05:ca:76:57:70:ac:34:93:
b6:d2:9d:4f:01:f8:cb:f4:a1:4f:4f:c7:de:c5:6e:
d3:e8:af:b0:fe:9b:83:af:2e:8f:c3:62:3a:b1:d0:
8b:76:e3:f3:57:5c:15:14:41:98:05:d8:ad:5d:b0:
c5:6a:8e:35:d6:d4:05:38:0f:dc:60:fe:63:20:19:
f4:c5:66:4a:e1:e9:ce:66:c9:ca:a7:7a:e6:60:a3:
95:c2:13:54:7d:91:95:a8:69:3e:74:e2:79:8d:c9:
91:d4:ee:46:34:6d:d8:48:88:a5:7e:e8:a2:d3:34:
8f:9c:ae:56:37:61:74:db:63:b1:e1:26:7e:59:1b:
46:4f:32:23:18:ca:78:b5:32:1f:cc:f8:1c:65:c0:
bc:1b:30:44:b7:99:7a:f2:5f:f7:59:b4:19:03:7e:
5e:83:7c:60:d8:ba:38:33:bd:c2:ae:04:89:d0:6f:
a0:2d:28:90:6d:de:bc:03:14:3e:71:1f:b6:1b:23:
99:9f:89:4d:19:28:54:dd:9e:59:26:be:20:57:b6:
58:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F4:18:D0:01:99:9F:5C:37:1D:7F:4D:33:2C:77:60:16:8C:3B:F1
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:f0:1f:a5:17:d3:0f:6d:93:13:a1:6f:31:0e:82:f5:f8:d5:
ce:04:f5:13:e7:b3:93:a6:df:91:73:1a:dc:40:58:73:e5:06:
5f:e8:d9:03:e9:a3:92:1f:f0:a8:bf:cc:22:54:76:23:e8:11:
7e:4d:a7:34:29:06:9c:4b:83:07:41:63:9f:de:45:9a:05:f2:
e0:25:de:ba:1b:ca:22:98:23:f1:9a:f4:f9:38:6b:ad:1d:4d:
7f:04:dc:ea:71:7c:a0:1b:06:19:a4:f6:d5:ec:d6:2f:56:8d:
a5:82:7f:2a:03:6a:3c:ad:bc:68:09:0a:dd:ce:5b:73:84:f3:
48:15:64:20:04:a3:94:06:bb:49:f2:6e:46:d8:a8:7c:9e:7d:
98:35:7a:7e:32:36:0f:10:4e:cd:5a:dd:e9:3d:ef:49:9e:63:
b5:90:1d:0f:5b:3e:d0:74:3a:73:12:70:f2:30:88:28:a8:86:
f8:4f:aa:34:bb:63:d1:3a:89:5c:9f:bb:11:0c:72:de:5f:75:
b4:ea:98:92:8d:8b:fa:39:90:35:5f:9a:a0:1c:95:9c:56:03:
d5:be:9f:72:93:f5:f6:91:fb:8b:24:af:94:1e:8b:80:91:98:
dd:d0:b6:d3:76:70:82:05:34:6e:90:f6:07:81:6d:57:85:c6:
79:2c:41:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:47:31 2026 by rpki-client