Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json)
Hash identifier: AzvwQBtfvUbQY1qXbQvpKucVJw7uvc1PwJ9kEvkjP5E=
Subject key identifier: E7:17:CF:E0:AB:5C:F5:BF:F6:AE:DA:81:19:49:6F:C1:0C:03:9B:09
Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Certificate serial: 019E9AA960C1127806984633F0CF9675191F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
Manifest number: 170A
Signing time: Sat 06 Jun 2026 02:00:52 +0000
Manifest this update: Sat 06 Jun 2026 02:00:52 +0000
Manifest next update: Sun 07 Jun 2026 02:00:52 +0000
Files and hashes: 1: 8vMvZJ6S4wIvSeidLWIqXdB2xEU.roa (hash: YSfZ6yHjbJE8NoHQ6iqadOGUmWSZLkJjEKtjGtKNsbU=)
2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: cLBnRr7kSmbNY6fLRIKKjPeUSeHo/TnKf1N07dajuQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9a:a9:60:c1:12:78:06:98:46:33:f0:cf:96:75:19:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Validity
Not Before: Jun 6 02:00:52 2026 GMT
Not After : Jun 7 02:00:52 2026 GMT
Subject: CN=e717cfe0ab5cf5bff6aeda8119496fc10c039b09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c8:9f:6e:40:cc:5a:fb:14:86:c9:9e:e0:e4:
b8:34:b2:82:91:d8:da:0f:e6:66:97:79:3d:c4:98:
32:ab:77:11:f2:19:09:b6:93:a4:27:24:99:50:64:
cd:77:52:f7:67:9f:9f:78:c6:e0:e6:61:36:9f:1f:
2f:00:d9:08:7e:50:fd:90:ae:c2:2c:d2:7f:14:80:
81:d2:9f:76:38:4c:19:7c:79:8a:46:14:ae:80:06:
52:37:d9:d5:67:ef:85:e0:03:9c:f0:e5:2f:c2:9a:
d2:18:56:ed:1d:08:05:59:f8:77:06:17:98:79:f2:
94:9b:12:d5:10:2d:30:3b:5c:ee:43:85:f7:29:52:
30:a4:66:5b:44:bf:8a:27:e2:d3:4b:53:0d:b6:c1:
a2:03:04:dc:cb:c2:23:9a:d6:cf:cb:d4:09:a1:a7:
40:0a:c0:ff:e9:7c:83:62:e4:32:14:d8:c3:01:98:
b7:2f:8c:cd:b4:46:36:12:c6:8f:88:f4:c3:f4:dc:
c5:9c:38:7e:da:89:9b:75:f6:dc:4c:6c:7a:e9:e2:
22:75:f2:13:82:85:84:3d:24:c2:b4:7d:3e:b8:95:
e7:c6:27:2e:22:70:02:31:b6:c6:63:bb:fb:6b:fb:
8d:1f:30:b3:72:b2:98:53:08:94:34:45:ff:ad:d7:
e0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:17:CF:E0:AB:5C:F5:BF:F6:AE:DA:81:19:49:6F:C1:0C:03:9B:09
X509v3 Authority Key Identifier:
keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:12:62:23:52:75:de:7d:a4:57:ee:7a:15:13:88:eb:5f:1b:
4c:e0:bf:bc:2f:2e:a0:dc:e4:02:01:88:9b:d3:6f:be:9d:59:
f3:e6:df:86:42:d2:cb:97:d3:dd:66:52:5f:81:39:23:2e:06:
e3:71:a0:0d:46:81:49:09:a7:13:15:f8:8a:b3:64:5a:cb:26:
2c:45:70:ee:ad:10:c6:6a:e1:88:7c:d3:41:99:62:59:35:ea:
c5:73:57:09:37:ba:94:b9:73:4f:88:cc:f3:44:0a:56:af:4b:
eb:48:6f:3a:8b:11:07:f6:6e:7f:a4:8f:e4:d5:e8:6a:5e:f2:
5d:d1:04:47:52:79:59:c9:6d:10:00:4f:ac:bf:1c:dd:b6:2c:
94:8c:82:10:dc:0a:04:ef:cd:95:26:4b:e2:89:5e:73:c4:2e:
8f:0a:66:ad:9a:62:d4:ce:93:c3:c9:78:19:10:1b:34:41:33:
bf:1d:b3:8b:54:ca:b5:1b:ac:62:34:58:ce:23:70:91:29:7f:
3c:4f:6f:76:34:7f:a8:bf:97:eb:f5:cd:e9:7c:01:b5:a3:30:
c3:75:a6:36:eb:01:ad:d8:b0:6f:ac:c2:56:cc:a1:5b:8d:e7:
2c:89:53:df:9c:e8:90:38:2f:75:9e:f5:56:62:5d:fb:75:ef:
ae:25:78:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 06:27:34 2026 by rpki-client