Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: innU38vlwmsqpyhhurmH7urpzXCEo9TdwZ8EiVvP7Tw=
Subject key identifier: FC:0E:B8:D7:9A:F7:C1:8E:76:AD:8F:39:4B:A0:A9:C7:B6:C8:13:F0
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 019DA3E63DE601274D97529B15CB82419CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 054B
Signing time: Sun 19 Apr 2026 04:01:08 +0000
Manifest this update: Sun 19 Apr 2026 04:01:08 +0000
Manifest next update: Mon 20 Apr 2026 04:01:08 +0000
Files and hashes: 1: hMYGnZ8V3zn1wswDkH9uB5kQnbc.roa (hash: TZ/1y+suo43ZgqAyUHnWJ81Rah/utALvEr+b4U8z1+g=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: eS7YD08AeWQpoWN6vmhtVHSQdxqBH/r8j4H6Yz1nrLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:3d:e6:01:27:4d:97:52:9b:15:cb:82:41:9c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Apr 19 04:01:08 2026 GMT
Not After : Apr 20 04:01:08 2026 GMT
Subject: CN=fc0eb8d79af7c18e76ad8f394ba0a9c7b6c813f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7d:1e:bb:b2:e1:2f:40:8b:6f:14:9e:b9:3d:
a7:3f:99:f2:d3:bd:1e:7b:a5:e6:17:c7:32:a6:a9:
3e:c8:f7:96:e8:29:3f:5c:a7:ae:cf:4c:40:d9:cb:
08:d4:69:84:09:0e:6a:70:a8:fb:04:cc:2b:95:63:
03:7c:74:15:9c:e7:e2:ae:9d:b8:8b:e3:93:86:5e:
07:0e:b4:66:3b:f2:85:b5:8f:2b:1e:ff:27:1c:8f:
8a:49:27:b9:bf:bc:55:1e:78:42:e1:e1:51:91:6f:
e9:91:5c:70:a5:c9:34:10:3b:8b:65:36:88:2a:4d:
48:9e:5e:8f:cb:67:7f:98:2f:a7:8a:80:9f:46:78:
7c:a8:33:c8:f8:30:ab:08:c4:0a:b3:8e:b5:53:51:
d8:23:fb:9a:47:3f:52:ab:c3:ec:6f:93:18:61:00:
3f:71:b9:4b:fe:56:19:ed:e5:9b:af:96:0f:29:38:
6c:99:28:04:56:de:b1:07:bb:41:84:29:96:a6:80:
88:53:e3:44:22:74:eb:c0:4e:f1:34:fb:8e:02:eb:
ac:3c:be:1a:b9:8d:b7:53:68:19:48:9f:dd:13:4f:
d6:87:f8:11:e7:36:91:bd:31:b4:e6:41:e7:30:d6:
85:ac:a7:0f:3c:88:1a:14:b5:e5:3a:a8:54:36:7e:
33:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:0E:B8:D7:9A:F7:C1:8E:76:AD:8F:39:4B:A0:A9:C7:B6:C8:13:F0
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:2a:e7:e8:2f:f9:54:5f:0d:f5:e3:48:f3:a4:ab:27:9f:35:
04:f0:f6:f2:04:95:be:f9:2e:9e:a3:46:8a:54:73:bb:fd:6f:
67:c7:ec:bf:d0:b2:f0:df:68:27:59:65:14:d5:97:53:ff:d2:
83:3a:d0:fd:03:a5:e6:97:4d:40:89:ef:d2:73:74:0a:f5:9e:
0d:9b:4f:dc:10:ff:f9:a9:49:de:da:29:95:2d:88:2d:a5:62:
7c:d9:18:79:d3:d9:bf:74:6b:4b:89:d0:84:c9:5b:d9:90:fa:
6e:75:b9:68:99:ff:62:50:fa:a9:19:20:08:9c:3c:5d:9c:12:
82:ca:5f:f9:9f:f4:a3:aa:f0:f8:ab:00:38:c4:8b:f3:d0:b3:
3b:76:33:61:e9:4f:53:d0:e6:aa:33:cf:8e:55:4d:70:9f:d5:
89:98:38:55:03:6e:3e:a8:bd:ac:0a:9d:42:80:62:4a:dd:64:
5a:3d:27:ed:eb:ee:17:df:05:44:e0:1c:3e:63:bb:ef:c5:fe:
36:3e:b7:b3:ef:4d:c7:b5:b8:09:cf:d5:16:1f:4c:79:c5:74:
73:ef:b8:1b:db:13:fc:a8:0d:64:3b:9d:5b:e0:5a:05:ad:c8:
5a:40:85:f7:ac:1a:fc:e5:6f:54:1c:f6:23:ee:dd:88:77:9e:
96:84:65:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2j5j3mASdNl1KbFcuCQZznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYzExNjhkYTE2MDIwMjg3ZWVhMWZkZWNhMDU0MTkzMGE5
ZDM2ODkwHhcNMjYwNDE5MDQwMTA4WhcNMjYwNDIwMDQwMTA4WjAzMTEwLwYDVQQD
EyhmYzBlYjhkNzlhZjdjMThlNzZhZDhmMzk0YmEwYTljN2I2YzgxM2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzX0eu7LhL0CLbxSeuT2nP5ny070e
e6XmF8cypqk+yPeW6Ck/XKeuz0xA2csI1GmECQ5qcKj7BMwrlWMDfHQVnOfirp24
i+OThl4HDrRmO/KFtY8rHv8nHI+KSSe5v7xVHnhC4eFRkW/pkVxwpck0EDuLZTaI
Kk1Inl6Py2d/mC+nioCfRnh8qDPI+DCrCMQKs461U1HYI/uaRz9Sq8Psb5MYYQA/
cblL/lYZ7eWbr5YPKThsmSgEVt6xB7tBhCmWpoCIU+NEInTrwE7xNPuOAuusPL4a
uY23U2gZSJ/dE0/Wh/gR5zaRvTG05kHnMNaFrKcPPIgaFLXlOqhUNn4z7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPwOuNea98GOdq2POUugqce2yBPwMB8GA1UdIwQY
MBaAFIvBFo2hYCAofuof3soFQZMKnTaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8xOGJjNjAtZWNhNi00OGRkLWFlOTkt
MjZjZTA3MWIwYzM2LzEvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8xOGJjNjAtZWNhNi00OGRkLWFlOTktMjZjZTA3MWIwYzM2
LzEvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaSrn6C/5
VF8N9eNI86SrJ581BPD28gSVvvkunqNGilRzu/1vZ8fsv9Cy8N9oJ1llFNWXU//S
gzrQ/QOl5pdNQInv0nN0CvWeDZtP3BD/+alJ3toplS2ILaVifNkYedPZv3RrS4nQ
hMlb2ZD6bnW5aJn/YlD6qRkgCJw8XZwSgspf+Z/0o6rw+KsAOMSL89CzO3YzYelP
U9DmqjPPjlVNcJ/ViZg4VQNuPqi9rAqdQoBiSt1kWj0n7evuF98FROAcPmO778X+
Nj63s+9Nx7W4Cc/VFh9MecV0c++4G9sT/KgNZDudW+BaBa3IWkCF96wa/OVvVBz2
I+7diHeeloRlsQ==
-----END CERTIFICATE-----
Generated at Sun Apr 19 09:44:23 2026 by rpki-client