Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: +yxQw7Zlf6s1ti0xGqmnAkJl2sw1UOXdDtoPZiIepk0=
Subject key identifier: EA:FD:1B:EF:F8:2F:34:59:A5:D8:0C:FE:5D:B6:D2:77:70:95:52:06
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019F1265E7A29D96F3786F846983673137DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 198D
Signing time: Mon 29 Jun 2026 08:01:36 +0000
Manifest this update: Mon 29 Jun 2026 08:01:36 +0000
Manifest next update: Tue 30 Jun 2026 08:01:36 +0000
Files and hashes: 1: 1--FRY1CjawLnslfsBcAkrouqU6s.asa (hash: NFM53UpFWBl2wcWeqeLFtEIb13ge6QGgn48A2dxQblk=)
2: aftA-bCSN_cfnaumewln08mRqyk.roa (hash: ewCgfj5ZHQWWUV5zhZ6e7KdXcICBairndqt6imFYbD4=)
3: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: vSG2AumPWd7P/cfO3Br3rkWj8CVdYljaz126G2s/NrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:e7:a2:9d:96:f3:78:6f:84:69:83:67:31:37:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Jun 29 08:01:36 2026 GMT
Not After : Jun 30 08:01:36 2026 GMT
Subject: CN=eafd1beff82f3459a5d80cfe5db6d27770955206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:7f:d9:4a:a0:73:d2:bd:3d:16:f2:aa:99:
b3:0e:7c:5f:7e:bb:6e:e8:ae:57:00:25:aa:2c:ea:
e8:7a:e5:0d:ff:c3:2f:cc:de:64:16:53:58:6a:a1:
d9:d6:05:3f:a6:49:a8:ee:8d:1d:47:39:aa:b2:9b:
86:20:36:3b:b0:89:3e:42:83:7d:b0:3d:9e:dc:c5:
d2:fe:81:35:bf:23:1a:2d:4d:3e:76:d8:3e:44:2b:
79:87:0b:00:2f:82:4b:29:30:45:7c:06:bc:4e:f6:
2d:55:1a:7b:56:e4:20:d4:58:bd:15:72:44:c4:c2:
8d:81:4b:c4:c9:5e:f7:71:a8:a7:5f:ae:97:e1:52:
ef:5c:9e:b8:a8:6f:f0:6a:5f:a7:1e:c8:18:24:d4:
dc:b6:17:45:1c:f9:d4:2e:de:14:ee:0d:cb:4b:82:
c5:06:a5:1c:fe:0d:5a:8d:e1:c0:32:28:ba:84:31:
af:a3:5b:af:4b:e6:66:4c:a6:c6:1c:d7:bd:e8:00:
fd:5c:8b:39:ce:80:fc:09:c2:8f:31:38:52:19:7a:
51:c5:5f:02:9a:0d:db:11:3d:cb:ed:7a:00:96:d5:
96:44:18:45:04:ef:9b:2c:39:90:07:de:13:11:48:
1f:b5:a9:97:4c:3d:2e:06:2b:18:75:34:fd:c1:c9:
71:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:FD:1B:EF:F8:2F:34:59:A5:D8:0C:FE:5D:B6:D2:77:70:95:52:06
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:07:f8:e9:81:0c:d7:c6:4f:4e:d1:b5:4f:81:6a:6c:53:b6:
dc:2a:4c:97:33:d2:63:b3:70:19:f9:7e:53:9b:ac:ca:cc:f1:
e9:10:2b:ed:ba:92:54:7b:23:a4:c9:72:1f:9a:03:a5:ee:99:
11:a6:6f:53:84:e8:b6:b0:f7:8c:8a:bb:eb:27:97:78:47:d5:
dc:66:10:97:d2:7f:36:d5:a8:a5:0b:3b:0a:83:52:b5:61:fa:
63:a4:a5:1d:03:74:47:85:ee:a3:f6:55:57:99:4d:8e:3c:4d:
e3:c5:e7:e2:a5:36:fa:69:52:30:4a:92:c8:90:f3:b4:ac:28:
24:04:8d:c4:8e:e5:81:35:79:06:cf:42:d2:4d:4d:37:9a:fd:
7e:9c:d5:7f:f6:3c:ea:fb:bd:66:7f:2e:91:a1:0d:a2:30:a2:
ab:e3:9c:32:e3:3b:92:d7:00:60:83:78:ab:c7:c8:af:11:6f:
5b:ae:bb:e7:7f:40:67:44:60:82:6a:90:60:c1:da:59:17:09:
3d:11:fe:22:de:12:c2:27:e5:57:67:78:19:39:d5:c2:4f:f9:
01:c3:f6:94:6c:27:b4:02:c9:92:8d:14:54:76:84:3c:60:9e:
21:53:e0:94:49:b5:e7:b0:9e:aa:58:9c:f5:84:19:94:b1:b4:
bc:4e:ed:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8SZeeinZbzeG+EaYNnMTfcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzYjZmNTRlYTliMTVhOGJkNGYzMzgyNTM4NmNiMjc3YjAz
NDM5ZGQwHhcNMjYwNjI5MDgwMTM2WhcNMjYwNjMwMDgwMTM2WjAzMTEwLwYDVQQD
EyhlYWZkMWJlZmY4MmYzNDU5YTVkODBjZmU1ZGI2ZDI3NzcwOTU1MjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeh/2Uqgc9K9PRbyqpmzDnxffrtu
6K5XACWqLOroeuUN/8MvzN5kFlNYaqHZ1gU/pkmo7o0dRzmqspuGIDY7sIk+QoN9
sD2e3MXS/oE1vyMaLU0+dtg+RCt5hwsAL4JLKTBFfAa8TvYtVRp7VuQg1Fi9FXJE
xMKNgUvEyV73cainX66X4VLvXJ64qG/wal+nHsgYJNTcthdFHPnULt4U7g3LS4LF
BqUc/g1ajeHAMii6hDGvo1uvS+ZmTKbGHNe96AD9XIs5zoD8CcKPMThSGXpRxV8C
mg3bET3L7XoAltWWRBhFBO+bLDmQB94TEUgftamXTD0uBisYdTT9wclxfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOr9G+/4LzRZpdgM/l220ndwlVIGMB8GA1UdIwQY
MBaAFLO29U6psVqL1PM4JThssnewNDndMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84ZGU0YTMtOGQ1YS00NmIxLWE3MzUt
MmY0NmU5MzE3Y2M2LzEvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi84ZGU0YTMtOGQ1YS00NmIxLWE3MzUtMmY0NmU5MzE3Y2M2
LzEvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgQf46YEM
18ZPTtG1T4FqbFO23CpMlzPSY7NwGfl+U5usyszx6RAr7bqSVHsjpMlyH5oDpe6Z
EaZvU4TotrD3jIq76yeXeEfV3GYQl9J/NtWopQs7CoNStWH6Y6SlHQN0R4Xuo/ZV
V5lNjjxN48Xn4qU2+mlSMEqSyJDztKwoJASNxI7lgTV5Bs9C0k1NN5r9fpzVf/Y8
6vu9Zn8ukaENojCiq+OcMuM7ktcAYIN4q8fIrxFvW667539AZ0RggmqQYMHaWRcJ
PRH+It4SwiflV2d4GTnVwk/5AcP2lGwntALJko0UVHaEPGCeIVPglEm157Ceqlic
9YQZlLG0vE7t4Q==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:37:41 2026 by rpki-client