Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
File: 7N0ioeDFuwAoDxkz7uz4HNig5rI.mft (raw, json)
Hash identifier: yy0aDPgqp3PRET5+dQdI9yQkx4/gTdKQPk6ryGgUfXo=
Subject key identifier: CF:69:6B:C5:E7:E9:5A:18:40:6F:45:35:A6:47:D3:6E:DC:8B:AA:24
Authority key identifier: EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
Certificate issuer: /CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Certificate serial: 019E3185D39E55089D56988F198DE14BBA91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
Manifest number: 18A0
Signing time: Sat 16 May 2026 16:01:54 +0000
Manifest this update: Sat 16 May 2026 16:01:54 +0000
Manifest next update: Sun 17 May 2026 16:01:54 +0000
Files and hashes: 1: 7N0ioeDFuwAoDxkz7uz4HNig5rI.crl (hash: 5aNnsIcJFmxfG/+9/KHwwukBNF1pjsRTcMeueA4SmzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:d3:9e:55:08:9d:56:98:8f:19:8d:e1:4b:ba:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Validity
Not Before: May 16 16:01:54 2026 GMT
Not After : May 17 16:01:54 2026 GMT
Subject: CN=cf696bc5e7e95a18406f4535a647d36edc8baa24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:32:7a:66:2a:90:a0:e3:45:f9:a6:9f:ee:
16:08:47:47:78:e2:ab:d8:f1:a9:28:9a:83:e5:b5:
58:cf:79:11:e4:0b:71:62:c0:74:d4:1f:ee:d6:ea:
8d:59:7b:d3:f0:2d:cc:2b:ec:85:e3:c6:59:7d:61:
f0:9e:30:03:51:1e:68:7b:f1:b2:e6:f2:60:54:da:
55:97:62:3d:94:79:af:5b:a5:ea:c9:6e:60:6a:8d:
5a:45:fc:00:60:de:23:84:66:94:4d:cb:96:a1:78:
77:5c:a6:d7:31:25:e6:b3:6a:d2:0d:9a:d3:c8:fc:
73:b8:fd:2d:3f:fa:96:0e:f0:fc:fa:e7:64:c9:65:
42:49:b6:e8:1f:86:29:62:a7:72:90:e4:a7:74:d2:
68:ab:fe:8f:4e:4f:cb:84:ff:43:76:54:16:ff:b4:
b4:eb:15:c5:2c:58:49:1d:07:09:04:e3:1f:cf:71:
ac:9a:60:9e:c4:64:57:95:8f:58:ca:e3:3d:c5:f1:
7f:47:2b:bc:80:b7:13:0e:96:3d:f9:34:f1:54:6b:
8e:87:ed:b0:41:fa:17:4c:7f:8c:b1:12:24:ff:2a:
0b:df:9f:c8:29:39:45:bd:cb:7b:e6:c5:1d:c6:3a:
08:13:b3:c0:9c:93:ac:d1:b1:fc:cf:8f:05:ee:64:
ac:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:69:6B:C5:E7:E9:5A:18:40:6F:45:35:A6:47:D3:6E:DC:8B:AA:24
X509v3 Authority Key Identifier:
keyid:EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:99:56:ad:03:30:a2:a5:82:a8:08:85:a0:cd:ee:d6:a7:4c:
bc:f5:28:36:c0:7e:ef:11:46:d6:51:93:2e:11:4a:db:3a:c4:
41:e5:30:02:c0:db:9b:ee:e3:75:3b:e9:55:cd:0f:40:3d:44:
ec:02:c2:c4:d7:48:66:5e:71:79:2a:27:dd:ae:b7:ae:d8:6e:
39:06:75:85:89:95:da:eb:b3:e3:6f:5a:f2:f1:c0:c3:d5:35:
a6:7a:93:9e:d5:38:79:3f:da:43:bb:17:c9:c4:36:39:d4:62:
37:f0:bc:8b:34:11:53:ca:c0:5d:e0:4f:ed:25:b6:ad:4a:6e:
bc:6d:c3:38:30:54:db:de:b2:fa:98:a5:b6:98:7c:59:8f:e1:
d9:77:e5:94:af:a4:0d:d7:57:17:d8:eb:c0:c7:31:47:a7:6e:
87:df:8d:11:28:32:35:0d:7a:ee:c7:59:b6:d1:5c:c1:2a:15:
e9:3f:93:b9:bf:15:d3:4a:21:72:93:04:af:47:32:e7:45:32:
f5:bc:af:ad:d6:5c:98:db:83:77:21:11:a8:49:59:6e:df:33:
09:5d:f9:c9:e3:b6:60:12:bd:54:44:54:87:36:10:ae:37:10:
51:35:4e:7b:83:76:d7:89:5b:7f:5b:9c:fd:2d:bd:1a:e0:7b:
65:f7:66:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:49 2026 by rpki-client