Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: cw7j0kscTHfyNY+cSwmSxx3Aotg4aJtvt/Bq+eOjc0o=
Subject key identifier: 71:D9:C9:42:53:A6:83:F1:7A:F9:49:DB:6B:C1:73:51:B7:20:3F:70
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 019CAEA3A7EDC8EB7AE6BF21FB77E192604F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 04CC
Signing time: Mon 02 Mar 2026 13:01:26 +0000
Manifest this update: Mon 02 Mar 2026 13:01:26 +0000
Manifest next update: Tue 03 Mar 2026 13:01:26 +0000
Files and hashes: 1: hMYGnZ8V3zn1wswDkH9uB5kQnbc.roa (hash: TZ/1y+suo43ZgqAyUHnWJ81Rah/utALvEr+b4U8z1+g=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: C0Dh11G+QMLMLYrvXGMt34T82pKlaNWRqi13XA5Vdh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:a7:ed:c8:eb:7a:e6:bf:21:fb:77:e1:92:60:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Mar 2 13:01:26 2026 GMT
Not After : Mar 3 13:01:26 2026 GMT
Subject: CN=71d9c94253a683f17af949db6bc17351b7203f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:0c:ff:07:4e:23:50:c0:c5:01:46:37:a1:
a3:89:a2:53:79:cc:76:de:e9:bb:a1:f1:43:0a:0f:
c1:b3:e7:d3:d9:21:d0:65:e1:03:60:0c:6a:62:30:
0b:cd:ec:f8:8f:52:7e:86:2e:ba:a4:29:c9:27:ab:
a5:74:88:f8:95:43:42:ed:38:dc:ca:ee:2c:5c:ff:
2e:e5:fe:88:20:86:79:94:ff:1d:f8:44:bc:14:c0:
b1:6a:5e:5d:de:0c:6a:06:1d:32:67:14:03:a2:8b:
81:b8:20:94:50:d1:5c:2b:a2:60:9b:c5:fc:ce:26:
3f:56:26:52:10:b8:c7:2f:2e:18:dc:7e:79:de:78:
b2:84:01:12:8d:63:d2:e1:00:be:b7:e5:0b:07:41:
cf:7d:23:2a:dc:b5:ff:b8:d9:fa:2b:3f:90:17:15:
32:44:78:35:eb:51:ba:4d:09:a5:4c:18:62:a6:d2:
86:d2:28:64:c4:70:11:be:fc:bf:c5:63:6e:64:7e:
c3:86:8e:4f:07:f1:ab:00:8f:5a:c4:51:4b:85:5f:
5f:e3:6b:49:b3:75:36:88:ab:93:48:d9:b4:ad:6a:
39:3e:6c:71:a6:66:3f:30:81:9a:72:b3:5b:56:c9:
48:98:7f:24:f8:03:2a:dc:e9:08:9a:1a:b6:bf:0c:
49:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D9:C9:42:53:A6:83:F1:7A:F9:49:DB:6B:C1:73:51:B7:20:3F:70
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:41:bb:0e:13:c0:1a:44:52:fc:59:80:04:c3:fd:8f:8b:8e:
18:aa:00:f7:2b:27:1c:06:b4:09:f0:a8:23:33:c4:6e:fb:c3:
05:b3:50:91:38:5d:c5:2b:b5:11:8a:36:39:5f:47:57:e1:8c:
c3:9c:e7:c5:e5:f1:2a:bc:48:22:b0:cd:dd:1b:e1:81:0f:02:
2c:a2:d2:54:00:43:c8:ba:74:4b:12:f8:6c:06:35:43:49:41:
68:df:75:bb:7d:91:7e:12:60:b0:43:8d:d8:b0:a1:c1:d0:89:
3c:80:39:ce:c6:5b:90:7a:55:14:bc:df:8c:8b:2f:67:48:84:
01:0f:50:88:76:55:60:26:37:8a:a7:13:cd:99:ea:98:3d:57:
9e:c9:c2:86:de:c5:07:f6:2e:9e:82:b1:e7:38:69:36:23:b1:
f3:c0:86:42:5f:80:bc:8c:ed:ee:29:40:06:df:7b:41:7f:76:
48:b5:2c:65:f5:58:b2:52:96:d6:65:14:e2:56:9d:d2:53:0a:
26:7d:7b:5e:f3:f6:7a:c1:1c:34:78:96:c2:af:78:88:50:3b:
30:5e:18:29:3d:ba:50:59:af:68:3e:73:dc:82:8b:a0:81:34:
86:6f:96:03:53:6a:95:0c:7a:8d:bf:ee:e9:a4:a5:56:88:af:
c0:23:a6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:08:49 2026 by rpki-client