Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
File: 7nwowZyp0nBozrxpyBVBZ13BLN8.mft (raw, json)
Hash identifier: ALXJIy/Q4RN4dY5gFoRVyOkK0HlGlKT2nyf1k7OHCSw=
Subject key identifier: C2:DB:42:E2:EC:F0:B3:5C:F4:1F:0B:6E:58:B9:D5:B9:C6:4F:8B:FD
Authority key identifier: EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF
Certificate issuer: /CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
Certificate serial: 019D3A54AF52067A933BC03C0FDDAD4B1685
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 16:02:01 +0000
Manifest this update: Sun 29 Mar 2026 16:02:01 +0000
Manifest next update: Mon 30 Mar 2026 16:02:01 +0000
Files and hashes: 1: 7nwowZyp0nBozrxpyBVBZ13BLN8.crl (hash: 3h+F/O0BeptuiDqmu9wBS+e9wxAqjZzx+6IbIraoGhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:af:52:06:7a:93:3b:c0:3c:0f:dd:ad:4b:16:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
Validity
Not Before: Mar 29 16:02:01 2026 GMT
Not After : Mar 30 16:02:01 2026 GMT
Subject: CN=c2db42e2ecf0b35cf41f0b6e58b9d5b9c64f8bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1a:f5:4f:f6:9c:5f:b4:73:cf:4c:7d:78:c7:
81:e8:32:de:04:8b:a2:37:31:e4:cc:5b:4b:28:21:
a4:2c:cf:c1:f2:44:cb:17:ec:0f:f9:65:ec:85:f5:
c8:37:b8:9c:ce:72:41:4f:ae:4e:77:2a:21:39:c2:
50:a0:24:c8:ee:8e:2e:af:0b:91:f0:f0:f6:3b:2e:
ae:f5:10:1b:b7:38:9f:53:0b:bf:f5:04:fc:c8:95:
d6:a9:4e:e3:86:d9:e7:11:41:a0:0d:98:2c:cc:01:
19:4d:5e:f4:61:0e:f7:69:ce:6e:cd:1f:13:fa:ee:
b4:8e:73:7f:f9:c9:a9:bf:3e:fa:d5:29:cd:bc:77:
fe:c6:6a:88:2a:59:39:93:8d:85:be:de:53:0f:68:
3b:2c:1d:ff:89:96:b5:a2:88:76:c9:07:de:c1:e8:
dd:4b:e6:c8:cf:59:f0:bf:27:89:7a:36:81:a5:db:
fc:d3:fd:6e:cd:ad:39:ad:b0:bc:1e:48:38:b8:80:
4e:72:8b:d6:8c:19:43:77:53:ea:71:04:5d:21:bd:
d8:61:59:79:af:66:36:ee:c1:4b:62:3a:ac:12:5c:
f6:38:a8:95:0a:fa:f9:12:2b:b7:a7:40:91:49:ce:
23:35:40:84:1e:ce:0f:e3:e4:91:4b:b5:bc:b8:d0:
c3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DB:42:E2:EC:F0:B3:5C:F4:1F:0B:6E:58:B9:D5:B9:C6:4F:8B:FD
X509v3 Authority Key Identifier:
keyid:EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:1b:c2:87:d9:4f:07:66:91:9a:fe:e0:04:58:ce:cb:14:9b:
1e:28:b1:c6:f6:5e:93:59:2e:65:bd:25:41:da:37:4a:7f:6a:
52:9e:6e:ed:fe:71:e2:24:39:cd:e4:3a:60:9c:6a:19:49:43:
d0:ed:97:d0:f2:5d:45:31:9e:4f:c5:d7:ba:e6:e1:21:5a:38:
83:e3:8d:9a:a5:40:03:9e:4a:e1:f9:4f:1b:4c:4b:75:17:c5:
ec:16:f8:1f:ff:0d:6e:49:a9:b4:09:1c:b6:cc:97:01:7e:5c:
3c:f0:18:5b:03:de:f6:3a:ac:d3:07:60:ff:01:df:39:da:6f:
b5:b7:d5:95:82:57:cd:c5:9b:23:6d:89:e1:9d:7e:e9:8c:fd:
51:18:a8:d5:fd:b1:13:d3:da:8b:85:4f:3c:4d:c9:39:b2:89:
61:ea:b0:16:74:2b:26:52:bd:8d:dc:d2:22:58:a9:a6:b5:ba:
e2:1c:65:47:0e:db:b0:df:bc:3b:c7:a3:95:50:49:e1:6e:45:
55:5e:c9:1d:c8:5c:b9:07:b0:93:d8:c6:90:69:37:5c:b7:30:
3b:e5:27:ac:71:e9:54:1d:90:f6:0f:08:19:a7:82:b0:47:e3:
68:82:05:9b:73:06:fc:c1:78:c6:58:fe:20:78:d1:2e:d4:57:
9b:2c:b8:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:46:23 2026 by rpki-client