Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
File: 8WmQKta3v0YB7qpecj7yPXD6dxQ.mft (raw, json)
Hash identifier: g/D93aHBVPT9JhCcopwg7j1YJvzVJWXQEW5rKDehOf0=
Subject key identifier: 9C:EF:15:ED:4F:10:36:3C:4F:03:29:08:33:3F:AE:9D:13:DC:12:26
Authority key identifier: F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
Certificate issuer: /CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Certificate serial: 019CAE35076E3E96D15E4A1F5322A29B8531
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 11:00:36 +0000
Manifest this update: Mon 02 Mar 2026 11:00:36 +0000
Manifest next update: Tue 03 Mar 2026 11:00:36 +0000
Files and hashes: 1: 8A44F-HK4brDvcdx38UFaUUZrxg.roa (hash: J1l91xAYUMrUVrPKe9o7rX2U+//nR5fojqbrmgbxxMA=)
2: 8WmQKta3v0YB7qpecj7yPXD6dxQ.crl (hash: aaUh3HrXVuriJyaMmmshwiqyQoQm7FMq7SllHXeNIQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:07:6e:3e:96:d1:5e:4a:1f:53:22:a2:9b:85:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Validity
Not Before: Mar 2 11:00:36 2026 GMT
Not After : Mar 3 11:00:36 2026 GMT
Subject: CN=9cef15ed4f10363c4f032908333fae9d13dc1226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7d:26:a8:e5:2f:40:0e:71:a3:f9:1b:45:a6:
1f:00:10:7c:90:37:d3:b2:f2:83:32:dd:42:a9:29:
52:e3:7d:7d:0e:71:bd:70:85:2f:c5:3a:d1:4e:d1:
be:38:c2:47:1e:2b:37:78:1c:7f:57:61:85:8a:d8:
17:4a:d7:f0:d9:fa:08:78:9e:c0:5a:92:3b:42:68:
63:9d:49:f4:f2:46:bb:aa:2b:08:87:65:e2:2a:46:
f5:b1:a1:11:d4:69:e4:1a:25:ae:53:c3:eb:3f:45:
0c:40:a7:dc:7a:dd:86:42:36:94:e1:55:ba:a9:b1:
50:0c:92:dd:50:ba:3e:bf:2e:87:81:e8:39:fa:08:
4d:da:7b:d4:04:f6:b5:d3:e5:62:e8:01:b2:52:4e:
ab:3a:3d:7d:2c:02:83:b2:f2:a4:1a:a6:12:6e:fb:
e3:83:38:94:b8:9d:b8:d0:7f:57:dd:5f:df:35:d9:
95:94:71:a8:d1:23:eb:e2:02:e8:fc:a5:12:32:2f:
cd:56:c5:cf:02:7e:41:9d:22:06:03:bc:32:30:74:
39:71:9e:46:65:61:fa:47:0d:12:be:cc:4f:04:a7:
25:35:ab:7f:f3:ba:cc:bb:de:82:f3:74:31:97:13:
41:a0:eb:b8:48:fc:4a:91:7a:4f:8a:25:bf:84:a6:
21:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:EF:15:ED:4F:10:36:3C:4F:03:29:08:33:3F:AE:9D:13:DC:12:26
X509v3 Authority Key Identifier:
keyid:F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:2f:47:15:d3:d4:9c:e1:0f:51:8a:e7:ba:a6:10:06:e2:38:
a2:e7:dd:a3:3a:ec:66:68:84:76:93:42:9f:cb:09:73:2a:7c:
45:f4:0c:86:62:27:41:3e:ea:55:36:b1:44:21:21:26:65:d3:
47:59:ef:51:f3:20:ba:b4:ee:a1:cd:6f:7d:c9:3c:34:34:3b:
5f:de:93:f1:9b:fa:60:aa:51:fc:37:10:0c:49:a4:4f:10:b9:
78:97:29:09:2d:4f:ca:7a:5a:79:12:0a:c8:c2:c4:53:82:a2:
de:65:8b:9e:64:97:54:d5:67:02:ec:32:47:6a:8b:e0:50:5c:
3e:9b:72:c8:19:37:a6:ec:ba:9b:e0:be:1b:63:d1:a5:a6:7e:
b4:6c:30:a1:7e:73:9f:b9:2e:8d:2a:d3:06:21:26:4b:bf:20:
2a:1d:d4:0d:5c:cb:2d:ba:4f:f6:be:90:b3:17:f4:fe:4a:92:
4a:ad:33:3a:24:a8:1c:6e:4b:a4:8b:12:05:9a:0e:1d:56:4e:
a6:59:ef:69:8a:f0:55:3b:35:39:6f:0a:a4:a7:d6:44:0b:ef:
f9:a2:8f:ee:ed:13:b8:86:3e:0e:ec:9f:f1:b5:14:ba:b7:7c:
dd:a4:88:db:bd:fb:d5:8d:b2:1a:61:18:14:04:18:74:6d:ad:
7d:ee:ef:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:19:48 2026 by rpki-client