Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6e10f0-46a7-4b5b-9805-30d45ee2d237/1/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.mft
File: 7zKrAfjJZiuJKQO9tXGaLK0J_TQ.mft (raw, json)
Hash identifier: oUonDbIJvpWTCj0tJe8qWBVaN927A//TZcXqmW4qjqY=
Subject key identifier: 60:D5:76:87:CD:D0:55:0E:9E:3D:EC:5D:74:DF:D7:04:F4:09:FE:5F
Authority key identifier: EF:32:AB:01:F8:C9:66:2B:89:29:03:BD:B5:71:9A:2C:AD:09:FD:34
Certificate issuer: /CN=ef32ab01f8c9662b892903bdb5719a2cad09fd34
Certificate serial: 019D378940174B8E11A1BA54CCC4B17125B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6e10f0-46a7-4b5b-9805-30d45ee2d237/1/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.mft
Manifest number: 21
Signing time: Sun 29 Mar 2026 03:00:34 +0000
Manifest this update: Sun 29 Mar 2026 03:00:34 +0000
Manifest next update: Mon 30 Mar 2026 03:00:34 +0000
Files and hashes: 1: 7zKrAfjJZiuJKQO9tXGaLK0J_TQ.crl (hash: JN3rp+vpwPa6AH3eMhUTUX6fXw8WcsqLlo6GPiO1kzQ=)
2: isDHjLZi5e7PjA-RQURpNt9I86M.roa (hash: yVhhgdkZ5w0XiZKF+zDh4Ntak4NYBkV3G6ArzCghqPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/6e10f0-46a7-4b5b-9805-30d45ee2d237/1/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/6e10f0-46a7-4b5b-9805-30d45ee2d237/1/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:40:17:4b:8e:11:a1:ba:54:cc:c4:b1:71:25:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef32ab01f8c9662b892903bdb5719a2cad09fd34
Validity
Not Before: Mar 29 03:00:34 2026 GMT
Not After : Mar 30 03:00:34 2026 GMT
Subject: CN=60d57687cdd0550e9e3dec5d74dfd704f409fe5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:73:78:36:8b:49:ab:42:d0:d7:68:6b:d9:ed:
3d:a9:99:a4:b4:d2:93:85:38:e3:f3:53:4e:cf:65:
9a:ee:c8:30:70:ee:f5:f1:20:65:76:5b:07:be:68:
ad:db:8f:b7:c3:dc:83:41:aa:be:0e:bd:97:85:f0:
1a:38:e4:f8:af:14:08:5c:23:7d:db:d0:f3:0d:28:
95:7e:dc:8d:52:5c:12:44:2f:45:11:f5:c1:36:74:
47:82:1f:57:e9:79:4d:fe:0a:27:42:33:fa:f7:b5:
77:df:63:e6:31:b9:77:26:db:58:ea:0a:63:b2:6a:
1d:c8:70:5d:f1:25:55:b7:ec:38:1f:b6:a7:26:f9:
bf:f8:32:e4:1c:1f:b3:56:6d:32:2e:86:b7:36:69:
96:2f:8f:f4:ce:1e:07:2d:57:02:fe:1d:46:6c:fa:
b0:62:8e:99:04:b9:d1:00:66:88:13:60:31:33:89:
b0:f0:26:9d:7f:95:5b:00:cc:07:a2:2c:a7:3f:fd:
f4:71:61:8a:a6:0c:a3:b6:e4:ec:32:bf:b0:e8:d4:
34:4d:1e:b5:92:c4:4b:b1:8e:b3:8a:6f:28:12:27:
f2:ef:34:ea:b6:fe:38:60:67:0d:bc:29:85:bd:c9:
83:bb:66:d3:0e:e5:d9:f6:fa:65:b7:c8:d9:24:47:
ee:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D5:76:87:CD:D0:55:0E:9E:3D:EC:5D:74:DF:D7:04:F4:09:FE:5F
X509v3 Authority Key Identifier:
keyid:EF:32:AB:01:F8:C9:66:2B:89:29:03:BD:B5:71:9A:2C:AD:09:FD:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6e10f0-46a7-4b5b-9805-30d45ee2d237/1/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6e10f0-46a7-4b5b-9805-30d45ee2d237/1/7zKrAfjJZiuJKQO9tXGaLK0J_TQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:74:c2:06:25:2c:1d:b1:25:38:bb:d7:94:c2:3d:54:46:5e:
77:14:93:3f:94:a5:0b:e7:2a:9b:72:5e:59:73:77:ee:c4:22:
cf:16:82:a4:25:da:eb:41:3c:23:b8:36:a1:84:f5:cc:a4:3d:
86:79:5c:4a:4e:4e:45:ad:56:0a:03:86:b4:73:c1:c9:8f:75:
5b:9c:71:53:31:06:99:ce:c8:b3:14:0a:75:67:8c:da:bf:32:
19:f8:86:15:39:55:df:b5:c8:31:66:1c:9a:bd:7c:05:18:e0:
f1:a7:0a:d8:50:a1:cb:c1:e0:53:bc:c0:4c:5b:fa:8b:49:f2:
5d:4f:9c:b2:4b:03:ad:c3:b6:37:3a:44:2e:4d:35:5f:c6:8d:
b0:c4:9d:d5:69:54:31:10:98:2d:f0:2d:fb:a4:9a:e6:11:ea:
54:31:45:b3:ed:b2:4a:13:c8:12:e4:47:15:fd:ce:bf:4f:8c:
62:2a:38:94:52:94:d8:df:f0:b1:4b:75:a2:f6:ad:95:ae:b0:
5c:40:0d:cb:39:6a:f2:d6:24:24:11:98:91:27:46:ae:c6:87:
d1:fb:19:29:3f:d0:eb:4b:94:22:94:69:32:83:24:cc:bc:c2:
0a:6b:49:0d:a5:7f:86:4a:df:9a:9e:60:51:8a:d6:8e:1b:62:
04:e9:b4:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:07:16 2026 by rpki-client