Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
File: 7pzNOKXWSWiAvAlHBuaPoE-izZY.mft (raw, json)
Hash identifier: a2Roct2cfJpphPo9GOZn/J//YodkW/d5Vb/VlZWtqyw=
Subject key identifier: 54:B6:EB:1F:87:83:59:56:24:79:02:B0:03:35:59:CE:C5:43:C1:87
Authority key identifier: EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
Certificate issuer: /CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Certificate serial: 019D382E729BDA612BAA48F2251F551BDBF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
Manifest number: 044B
Signing time: Sun 29 Mar 2026 06:01:01 +0000
Manifest this update: Sun 29 Mar 2026 06:01:01 +0000
Manifest next update: Mon 30 Mar 2026 06:01:01 +0000
Files and hashes: 1: 7pzNOKXWSWiAvAlHBuaPoE-izZY.crl (hash: wcyIMi9qkU/XV3GVPTh/WU0WvSFAF2ILY5lv6zJccjI=)
2: KnWPKh7vBsCWw3P3QjUnnKOMfRQ.roa (hash: S6KoJEkh3kj6VhNs+5jJEnoThmoK6o74Ufogas8E/6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:72:9b:da:61:2b:aa:48:f2:25:1f:55:1b:db:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Validity
Not Before: Mar 29 06:01:01 2026 GMT
Not After : Mar 30 06:01:01 2026 GMT
Subject: CN=54b6eb1f87835956247902b0033559cec543c187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8c:5e:43:17:7e:c3:32:1b:89:d4:25:51:55:
c9:17:43:88:62:ef:56:bb:61:3a:06:a8:9a:95:82:
68:69:7c:4b:8e:74:cb:a2:41:65:0e:03:1b:1c:7e:
e1:dd:fc:3a:31:fb:5c:27:b0:4b:b1:a6:0d:40:26:
5d:1d:cb:d9:68:06:18:36:3a:14:24:6c:75:97:e3:
a2:06:85:53:8e:74:38:b2:e5:ae:de:bb:23:4a:39:
e3:e0:0e:9c:62:63:5e:2d:0f:c3:32:0a:46:a4:d1:
8c:0b:e8:ab:0e:09:e6:03:a6:5e:e5:b7:39:c5:2f:
17:3b:5d:94:74:ea:bf:ef:77:71:d5:21:f2:3b:95:
88:36:fe:07:34:7e:42:2c:08:6a:44:f5:06:23:34:
9e:6a:a6:e0:9b:e3:a6:57:f8:15:6e:5a:c2:3d:7a:
44:46:43:76:e3:1f:75:25:b1:8a:cb:18:d5:bd:d4:
b7:92:1d:3f:dc:7c:fe:ae:60:ec:bd:76:be:eb:7e:
46:83:43:8d:6b:bf:4e:5b:71:e0:98:a5:1c:9e:f8:
4f:98:5b:1d:5e:bf:9c:40:d0:69:b2:d1:70:ee:9e:
11:98:d8:77:03:61:b8:66:c2:1f:34:61:9e:18:0d:
7b:a8:97:af:6d:d9:4a:a1:72:f1:a5:20:7d:51:31:
fa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B6:EB:1F:87:83:59:56:24:79:02:B0:03:35:59:CE:C5:43:C1:87
X509v3 Authority Key Identifier:
keyid:EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:1a:ce:92:0a:b1:f9:1c:f4:db:e5:12:57:1d:f0:2b:08:90:
09:20:30:22:96:24:f7:29:46:3e:4e:07:22:51:ce:f9:b7:33:
5c:5a:28:68:24:d6:0b:30:a9:bb:0b:45:3b:a5:d9:df:42:3e:
cc:05:8d:d5:67:22:e9:93:9c:f5:91:18:0a:ec:99:88:db:d5:
3b:c8:af:89:ba:50:83:5e:ef:40:65:cb:96:83:ec:52:b4:93:
4b:22:43:a0:44:a3:aa:0e:71:2f:77:75:d0:64:71:bb:b8:2f:
f1:e7:11:87:93:ae:51:2d:a8:dd:8e:f6:57:b5:cb:c9:bd:1c:
a1:04:7a:91:b9:7c:2f:e1:57:16:a8:7e:d6:86:85:c7:e8:db:
a0:79:92:e1:13:90:87:e6:b8:ff:b5:1a:5e:29:26:67:3e:85:
26:44:24:57:31:07:79:81:c6:f3:33:97:2e:8e:a9:6b:50:68:
ec:11:08:a3:91:30:db:e4:51:01:2e:c0:28:6d:2b:59:a5:b2:
1a:6c:87:91:9b:fc:ac:77:4a:54:8f:bc:57:a8:ac:91:11:c5:
57:f0:17:69:a3:ce:f1:c2:42:da:ce:86:03:83:e2:c2:f7:9e:
14:9f:9b:02:b0:dd:91:10:3d:08:fc:f5:0b:4f:73:c1:8b:04:
1c:5d:79:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LnKb2mErqkjyJR9VG9v4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlOWNjZDM4YTVkNjQ5Njg4MGJjMDk0NzA2ZTY4ZmEwNGZh
MmNkOTYwHhcNMjYwMzI5MDYwMTAxWhcNMjYwMzMwMDYwMTAxWjAzMTEwLwYDVQQD
Eyg1NGI2ZWIxZjg3ODM1OTU2MjQ3OTAyYjAwMzM1NTljZWM1NDNjMTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oxeQxd+wzIbidQlUVXJF0OIYu9W
u2E6BqialYJoaXxLjnTLokFlDgMbHH7h3fw6MftcJ7BLsaYNQCZdHcvZaAYYNjoU
JGx1l+OiBoVTjnQ4suWu3rsjSjnj4A6cYmNeLQ/DMgpGpNGMC+irDgnmA6Ze5bc5
xS8XO12UdOq/73dx1SHyO5WINv4HNH5CLAhqRPUGIzSeaqbgm+OmV/gVblrCPXpE
RkN24x91JbGKyxjVvdS3kh0/3Hz+rmDsvXa+635Gg0ONa79OW3HgmKUcnvhPmFsd
Xr+cQNBpstFw7p4RmNh3A2G4ZsIfNGGeGA17qJevbdlKoXLxpSB9UTH6TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFS26x+Hg1lWJHkCsAM1Wc7FQ8GHMB8GA1UdIwQY
MBaAFO6czTil1klogLwJRwbmj6BPos2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xNWY5NWMtYjBiNi00NTIyLThlYTAt
NTViZWFmYTRiYjI5LzEvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8xNWY5NWMtYjBiNi00NTIyLThlYTAtNTViZWFmYTRiYjI5
LzEvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJxrOkgqx
+Rz02+USVx3wKwiQCSAwIpYk9ylGPk4HIlHO+bczXFooaCTWCzCpuwtFO6XZ30I+
zAWN1Wci6ZOc9ZEYCuyZiNvVO8ivibpQg17vQGXLloPsUrSTSyJDoESjqg5xL3d1
0GRxu7gv8ecRh5OuUS2o3Y72V7XLyb0coQR6kbl8L+FXFqh+1oaFx+jboHmS4ROQ
h+a4/7UaXikmZz6FJkQkVzEHeYHG8zOXLo6pa1Bo7BEIo5Ew2+RRAS7AKG0rWaWy
GmyHkZv8rHdKVI+8V6iskRHFV/AXaaPO8cJC2s6GA4PiwveeFJ+bArDdkRA9CPz1
C09zwYsEHF15tQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:35 2026 by rpki-client