Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
File: 7N0ioeDFuwAoDxkz7uz4HNig5rI.mft (raw, json)
Hash identifier: Xs2la4OwTavTmF9OHj3gSPfATtDvKyZh8w7YjqjED1Y=
Subject key identifier: B1:5C:4D:BF:76:4E:4C:A3:E2:D8:A9:C6:8E:14:1A:81:19:B4:65:B8
Authority key identifier: EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
Certificate issuer: /CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Certificate serial: 019D3865B6DD1EDC0BB776EF91CBD08DE3E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
Manifest number: 181F
Signing time: Sun 29 Mar 2026 07:01:23 +0000
Manifest this update: Sun 29 Mar 2026 07:01:23 +0000
Manifest next update: Mon 30 Mar 2026 07:01:23 +0000
Files and hashes: 1: 7N0ioeDFuwAoDxkz7uz4HNig5rI.crl (hash: a/4SESw0JR9XNdCDbNu7LyVQyFqIso7S6n8aaB5eDg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:b6:dd:1e:dc:0b:b7:76:ef:91:cb:d0:8d:e3:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Validity
Not Before: Mar 29 07:01:23 2026 GMT
Not After : Mar 30 07:01:23 2026 GMT
Subject: CN=b15c4dbf764e4ca3e2d8a9c68e141a8119b465b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:92:0d:7f:49:ed:6d:6d:25:b0:30:3d:11:a2:
38:a2:e8:26:22:b2:37:4e:13:2d:24:8c:d1:1e:21:
d0:76:ef:26:29:31:7c:6e:87:96:ad:a8:48:45:4f:
75:e4:f8:f2:80:cc:d7:ce:4e:81:96:b6:d0:68:1b:
80:21:96:ff:48:bb:69:30:6b:f6:42:23:98:0f:a5:
0b:1f:ba:56:41:9b:bd:47:14:3f:95:77:2d:38:9f:
05:a8:b0:cf:04:0b:04:b2:a3:b1:44:b9:81:53:21:
f8:46:64:4e:9f:cc:7c:f8:9c:c9:98:ce:20:ab:45:
37:5c:cf:49:5e:57:9c:20:cf:67:3b:39:0e:f9:38:
0d:81:34:ba:4a:e9:90:2e:c6:6f:05:92:34:2f:1f:
26:36:21:e4:11:d8:ba:6d:67:cc:66:f9:b1:55:1b:
81:bb:c0:81:7e:ee:c1:d7:03:74:be:4a:9c:98:59:
a1:d1:23:0b:f6:f7:7a:6e:a6:25:aa:b0:a3:3d:01:
03:32:b2:54:6b:79:b3:17:8c:01:46:c1:7d:67:0b:
3a:12:78:1f:1f:66:06:d0:91:60:52:e9:95:ff:bc:
f1:1e:36:ea:6e:a4:c4:75:0a:8f:e7:45:c6:9f:b8:
39:21:e5:53:35:7a:06:9a:60:44:ad:48:a5:11:4d:
f5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5C:4D:BF:76:4E:4C:A3:E2:D8:A9:C6:8E:14:1A:81:19:B4:65:B8
X509v3 Authority Key Identifier:
keyid:EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:c1:a4:a2:04:6a:23:47:8f:32:4b:49:24:84:9c:97:70:24:
d0:1a:b0:c4:85:62:f5:eb:cc:52:54:97:44:49:1e:f9:3f:0b:
58:fc:aa:39:62:cc:60:23:fc:d4:54:6c:df:fe:44:c7:1f:49:
36:4b:c5:c9:66:2e:0f:b3:8c:fa:46:cf:d0:fd:35:32:2d:78:
10:0b:54:f0:cf:c8:fe:4d:99:16:1d:ef:97:53:78:d0:56:29:
bd:57:a7:fd:31:62:66:0b:15:47:65:b5:f9:ea:35:26:23:2e:
54:0c:6a:db:7b:49:fe:3d:6e:29:34:52:89:c5:20:ce:05:5b:
ca:de:45:3c:c1:76:d2:8a:bb:be:fd:8a:98:46:36:1f:95:c0:
11:0e:df:ba:7f:f7:2d:c2:7b:92:02:e3:90:6d:86:8d:0b:42:
08:e7:ef:66:a6:64:e8:2d:2f:d0:ca:02:c9:7a:47:68:11:59:
66:9b:62:57:db:0c:fc:af:a4:4d:f7:37:c4:f6:e0:c0:c8:81:
52:6e:11:d2:89:af:1f:b5:ea:9b:54:48:5a:39:26:a9:40:38:
63:85:c6:e7:d4:7b:31:50:d7:62:c5:d1:bb:1a:f2:51:de:d2:
69:ef:6a:15:76:b2:2c:e4:84:fa:ac:5c:17:9d:2a:3e:30:e0:
0a:66:24:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:06 2026 by rpki-client