Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: DYmUZNg0oogMeGqw9koKJRQIvZe3GH/xGBgDfyr3QiU=
Subject key identifier: B4:93:83:F4:CA:D5:AE:7F:1E:38:B7:D5:92:AA:B1:46:2E:60:9C:33
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 019D39413426E6D004B9020F2D2562DF1F69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:01:07 +0000
Manifest this update: Sun 29 Mar 2026 11:01:07 +0000
Manifest next update: Mon 30 Mar 2026 11:01:07 +0000
Files and hashes: 1: WMBlv5TYOFhb5nmDTbMHQgVvFpc.roa (hash: aKDzW6jTAaiYbIZ5LNCccfbLrCredMGyDoJe0MXZVlA=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: BMZpzGJ5Y79Poyy5kDLMcxSTBRzwMXYG2V0/Mz0swzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:34:26:e6:d0:04:b9:02:0f:2d:25:62:df:1f:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Mar 29 11:01:07 2026 GMT
Not After : Mar 30 11:01:07 2026 GMT
Subject: CN=b49383f4cad5ae7f1e38b7d592aab1462e609c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b2:74:40:65:98:55:c9:dd:6c:b5:7d:55:68:
04:a8:50:dc:5f:8a:02:42:6c:d6:a5:4d:18:69:79:
7f:e9:4e:88:ea:76:b8:18:c3:c9:4e:9c:88:91:76:
0e:bd:08:ea:bf:72:12:22:79:44:e3:ac:f8:d9:21:
02:a9:60:01:b7:ee:98:d7:58:13:28:6e:a6:7a:ac:
95:42:3b:aa:19:58:2c:71:61:5c:fd:b7:5b:7c:d2:
b1:f4:58:44:a7:9e:b8:9f:bb:94:df:40:69:0f:30:
b9:20:47:14:1b:cb:7d:5f:d1:6c:2c:70:82:fe:6c:
27:61:65:19:e3:29:28:41:d9:c6:3e:ff:1d:c4:82:
c0:e5:7a:7b:6c:cb:2a:4c:56:80:14:cb:8a:2e:60:
6f:1f:27:5b:03:28:2f:87:d3:cd:09:20:66:4d:ac:
b2:88:4c:99:e5:4c:9e:d1:2f:90:b4:fa:8d:31:99:
20:2b:5a:33:88:19:b5:7d:14:d2:da:5d:49:b1:81:
b3:f6:c9:ec:62:ae:91:b2:3f:3c:64:a9:07:52:57:
3a:5a:1f:6b:69:7c:6a:58:14:e8:ec:5b:c2:2c:c6:
70:2f:b6:58:1d:ea:e6:9b:af:c5:70:5e:b9:bd:aa:
5c:73:e6:06:a8:7e:4f:e1:c7:11:38:97:af:1c:d1:
b0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:93:83:F4:CA:D5:AE:7F:1E:38:B7:D5:92:AA:B1:46:2E:60:9C:33
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:2b:b9:ff:b5:d7:26:fb:17:f1:b0:37:52:d8:c1:20:ce:a9:
98:b2:16:e1:ac:ab:c5:c5:f4:b4:a9:a3:10:6c:9c:2e:20:ff:
98:12:08:07:59:d3:e6:b7:08:33:32:5c:65:ea:7f:09:c2:a5:
b4:03:f6:a9:08:f5:f3:6d:71:ba:63:af:a1:98:05:01:c5:f8:
0f:50:53:82:1c:27:ea:36:63:a6:04:53:86:58:49:76:17:16:
42:4e:56:c1:0e:d6:34:41:29:6c:1d:9e:3d:4a:a0:bc:fb:e5:
a6:39:f6:27:98:b1:0a:56:52:a9:7b:c0:21:ab:1a:a8:66:c5:
73:24:bc:24:e3:43:53:08:08:d9:dd:cc:fe:ee:a4:91:d0:9f:
8d:9a:5e:2e:5c:9e:18:62:3e:51:a9:85:9a:bc:ee:6a:38:91:
07:f5:64:94:9d:b6:c2:e0:03:a2:a1:6a:42:6b:c4:cc:b1:f3:
a9:01:bf:ff:47:43:39:e2:49:e0:7d:8c:bb:23:f5:04:02:c5:
d8:b0:4d:26:16:56:d4:44:c1:bb:fc:81:22:f6:e0:c8:a9:a6:
86:25:ef:33:dd:d6:9d:97:80:1d:5a:62:37:44:f4:9c:c3:76:
2c:11:5a:bf:7f:d4:15:a3:08:df:ea:40:20:57:69:0f:be:f6:
b7:eb:4a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:32:19 2026 by rpki-client