Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: pMKDVC1nZbRoPIDlUWJWcbqKo68gxY0xnnfsdwxqmWc=
Subject key identifier: 1A:FD:F2:06:3A:11:84:27:7C:65:07:B0:F4:F5:CB:CD:CA:C0:59:84
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019D389BE459CD47C0863DFA028431B67CD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 1897
Signing time: Sun 29 Mar 2026 08:00:33 +0000
Manifest this update: Sun 29 Mar 2026 08:00:33 +0000
Manifest next update: Mon 30 Mar 2026 08:00:33 +0000
Files and hashes: 1: aftA-bCSN_cfnaumewln08mRqyk.roa (hash: ewCgfj5ZHQWWUV5zhZ6e7KdXcICBairndqt6imFYbD4=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: NPX5z2P/wsNM+kgpaWbZ9PBnM6P5Vc7b1YocxXxAZR8=)
3: sHSL6KeWD6muqNxIvHz053KucUs.asa (hash: Dii9+VgXhOO/o5gmGbq2K3cC3ucJXOQeg7Dp4dNWbSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:e4:59:cd:47:c0:86:3d:fa:02:84:31:b6:7c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Mar 29 08:00:33 2026 GMT
Not After : Mar 30 08:00:33 2026 GMT
Subject: CN=1afdf2063a1184277c6507b0f4f5cbcdcac05984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6b:3c:f4:6d:87:17:c7:a1:a8:a3:01:d4:e6:
a0:b1:36:fb:40:15:7d:af:08:eb:6a:83:fc:8b:ca:
60:ce:1b:47:52:6f:36:f6:db:96:e0:83:44:ef:64:
b5:6c:4f:48:d2:a4:36:31:f1:a3:1f:98:da:b3:60:
d9:e9:d0:e7:73:e7:fd:49:8b:44:76:6b:0b:dd:88:
99:96:93:c2:25:01:cc:cf:e3:e3:a8:8f:1b:8b:34:
46:53:89:cb:d8:d7:eb:76:94:2c:1d:3d:68:a9:48:
7b:ad:24:7b:e0:2f:e2:65:64:9d:30:9b:1f:63:67:
32:24:96:75:fd:1b:2d:28:13:2a:84:8f:b7:18:84:
60:a1:17:2e:ec:d8:19:77:57:7e:f4:c2:d8:18:ee:
18:2c:c0:8c:aa:01:7a:42:85:dc:65:3e:14:14:dc:
f2:5e:82:3a:db:f7:e3:04:54:2b:c9:a3:c6:45:20:
bd:8b:ea:fb:8b:bf:6d:e6:8d:8b:a7:3b:b0:2f:5b:
56:a1:d5:86:75:45:17:c7:33:9f:1e:37:64:9f:a0:
0c:ef:89:18:21:86:e5:d9:b5:78:5d:d2:dd:9b:a6:
03:a6:19:0c:bb:f0:44:82:38:ed:49:6a:62:8f:1f:
aa:a3:ab:fd:76:7d:92:87:75:3a:81:72:4c:2c:f9:
14:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FD:F2:06:3A:11:84:27:7C:65:07:B0:F4:F5:CB:CD:CA:C0:59:84
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:29:71:6f:64:3d:2e:f6:90:68:0a:e0:d1:4e:10:cd:1b:98:
f5:47:a6:49:59:0d:f5:51:95:3e:22:7e:7f:1a:8a:ea:d9:1f:
48:0e:e4:75:cd:90:86:cc:2a:8c:d3:63:22:66:62:a3:cc:c8:
38:36:82:91:45:db:04:8f:d0:07:a5:52:05:bd:a9:51:6c:64:
f7:e7:ad:20:77:f9:18:3e:46:d6:f5:69:03:94:ba:cc:3e:31:
a2:c3:bc:05:d8:71:1f:4b:f7:93:53:36:07:78:01:56:24:d6:
5b:b7:20:ba:a9:91:b3:c0:31:89:a0:31:72:fa:ef:32:a5:40:
e6:a8:42:93:50:5f:94:f0:7f:08:02:48:d8:a6:4a:b8:87:a5:
24:5d:c9:77:65:30:9f:4d:8b:50:d6:cc:a1:88:9c:40:4b:2f:
67:6a:6b:92:1c:61:a7:8d:62:f6:76:c0:69:9c:db:2d:0c:15:
5f:df:73:6f:8c:cd:65:5e:6d:a0:1d:c6:22:db:85:4d:a1:17:
81:b5:0b:6b:ce:aa:56:f5:f9:f9:71:64:ff:21:24:c0:a1:91:
87:25:75:0d:38:cb:a8:08:7e:19:e2:5a:57:0e:de:1b:a4:aa:
eb:7d:6f:78:0b:e2:9a:ce:a1:dc:eb:1f:6e:3f:a5:6a:7a:f8:
a2:a4:b6:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:35 2026 by rpki-client