Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json)
Hash identifier: +QiAk+HozcEDPfPWN4VBHzkdl/AUga1kvpibfJb5+O0=
Subject key identifier: CE:25:96:EF:15:F6:E9:82:C1:9D:53:CF:FB:5C:72:9D:37:75:F7:06
Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Certificate serial: 019D9886362AD587B25EB4259A78600FD5D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
Manifest number: 12BC
Signing time: Thu 16 Apr 2026 23:00:25 +0000
Manifest this update: Thu 16 Apr 2026 23:00:25 +0000
Manifest next update: Fri 17 Apr 2026 23:00:25 +0000
Files and hashes: 1: F4rY5JVMtMl_zYzUZwZp4oeHP1I.roa (hash: E0rqrVkOGoV8SRKX7SA5ZbTVTAKBdcJrr4ggv5rMXIg=)
2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: ciiPOrfHFntmqjD/VzScp0FJP68E1dKFYB66NjvyBoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:36:2a:d5:87:b2:5e:b4:25:9a:78:60:0f:d5:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Validity
Not Before: Apr 16 23:00:25 2026 GMT
Not After : Apr 17 23:00:25 2026 GMT
Subject: CN=ce2596ef15f6e982c19d53cffb5c729d3775f706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:3f:f4:68:94:b1:09:19:aa:5b:ca:9d:62:
90:1f:0b:95:47:75:86:44:79:ce:1d:d6:fc:6b:68:
a7:6f:aa:b4:f0:18:2a:22:00:b5:21:24:a9:4b:56:
71:11:68:6d:ba:04:47:73:33:9c:29:e5:77:38:48:
2c:e4:46:8f:fc:49:3e:79:34:9a:f2:69:71:fc:62:
3f:92:28:54:2e:05:1c:27:e3:fe:11:61:e1:3d:b2:
2f:a3:eb:c6:a9:40:88:25:ae:d2:08:08:75:2d:f5:
d8:f2:37:76:7c:6a:ab:c0:9c:a0:10:b5:0a:eb:34:
5a:04:d1:c5:74:d5:74:a1:88:08:a8:fa:15:3b:15:
2b:21:68:59:df:c4:5a:e8:ac:a4:9f:f4:0c:0b:65:
c8:e3:51:7b:68:d8:37:f6:f7:28:1c:65:1d:85:bc:
ac:97:6b:20:e1:fa:e6:6f:2c:3d:43:1a:b7:22:0a:
a0:94:7b:3a:24:3f:79:0d:f2:95:ea:5e:99:82:03:
eb:a5:2e:d4:01:61:d8:06:f1:06:e5:b8:c2:95:0a:
ef:9b:ed:c3:d6:25:3d:b2:de:0f:37:96:8a:67:34:
80:70:fc:69:bd:5d:78:7b:86:d3:65:ae:ab:5f:83:
14:73:db:c0:12:0b:d7:d6:c2:a8:3e:96:fb:f4:2f:
bb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:25:96:EF:15:F6:E9:82:C1:9D:53:CF:FB:5C:72:9D:37:75:F7:06
X509v3 Authority Key Identifier:
keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b9:50:83:2b:c7:05:ae:84:be:70:e4:19:01:7f:6d:39:61:
ac:80:cf:9f:e5:d9:34:e0:8a:27:10:b2:bd:3c:fb:0e:48:cb:
62:30:e7:2d:10:41:5e:5b:10:f2:36:f0:89:67:f5:b7:c1:c0:
11:c8:c6:3c:eb:69:4c:34:ec:e2:b1:03:e8:a7:63:db:8e:e1:
57:5f:24:dd:1a:b6:03:c9:3d:08:14:dd:ad:36:8b:d2:34:69:
5a:92:0e:86:b5:91:39:db:cb:3f:fc:ca:c3:02:eb:72:34:d0:
65:4a:ba:0b:1d:ea:6f:3e:7f:b1:93:a9:af:06:ce:a4:d4:71:
0c:d3:d2:c2:a6:56:70:1e:7d:13:45:6c:08:06:3a:06:2e:4e:
93:0e:99:db:97:dc:fb:eb:d3:25:91:63:aa:a2:85:29:bd:98:
e6:fe:3b:20:3c:1c:e1:1d:86:d4:b7:14:3a:f0:2f:6c:59:0b:
ee:5c:eb:bc:f3:0f:ce:f2:f3:7f:0a:d4:64:90:b7:cb:d1:2a:
3e:22:08:65:b5:81:63:f6:ce:b8:ea:83:ff:83:53:94:a8:8c:
c3:45:c7:42:f3:c1:fd:45:c1:0a:9b:06:0e:b3:8c:e5:33:d0:
a0:34:d8:5e:50:d5:e1:75:0b:64:e1:c5:4f:51:1a:83:c9:b3:
4c:b9:08:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:53:31 2026 by rpki-client