Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
File: i7i2EnIdTUwtB8v-LklemGoPAm0.mft (raw, json)
Hash identifier: E34PuIcTGm2GC6oLhSFk1ZwUEN9IqQWg22w2tpMdfgI=
Subject key identifier: 0C:0A:DF:18:C2:29:91:FD:83:D4:FE:C0:7A:95:9D:35:6E:2B:8D:AF
Authority key identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
Certificate issuer: /CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Certificate serial: 019D394160604040645A084680E815E9B5C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
Manifest number: 0871
Signing time: Sun 29 Mar 2026 11:01:18 +0000
Manifest this update: Sun 29 Mar 2026 11:01:18 +0000
Manifest next update: Mon 30 Mar 2026 11:01:18 +0000
Files and hashes: 1: BN6g_D94xKyP47gk6IfNIcBTfDQ.roa (hash: 3HzJpZ8HtfAFz7+UBD2zP1SoqdzFz5KbeKPs56DQawc=)
2: i7i2EnIdTUwtB8v-LklemGoPAm0.crl (hash: doJrxIr2ZsnYRvJTb7TYLG2C61Quj/VSRss/6EnoqLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:60:60:40:40:64:5a:08:46:80:e8:15:e9:b5:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Validity
Not Before: Mar 29 11:01:18 2026 GMT
Not After : Mar 30 11:01:18 2026 GMT
Subject: CN=0c0adf18c22991fd83d4fec07a959d356e2b8daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f1:f7:33:0f:ca:16:e9:c3:8c:65:b5:54:6b:
13:94:af:a5:7b:a5:69:c4:1d:79:35:dd:33:65:0c:
bd:fb:6d:d4:c6:8c:4e:5b:69:15:0e:4c:7e:de:65:
2e:25:ab:e4:6e:55:2c:c8:29:2b:15:79:02:41:ea:
67:36:5c:bd:a2:e4:dd:6d:fa:e6:a3:73:c4:77:78:
94:88:68:dd:27:94:d0:4b:7d:a0:c8:2d:24:07:03:
06:0c:cd:a2:f5:2c:d6:8b:f2:51:69:1c:ca:60:18:
f7:2c:cd:82:44:fc:dc:bf:10:8b:94:fd:74:5d:46:
7c:4c:06:c6:b4:8f:24:89:24:c9:5a:aa:e0:35:a8:
e2:0d:7e:c3:a2:a2:18:10:4e:33:bc:ad:25:0e:aa:
36:f9:fb:0f:6f:29:d2:3b:ea:53:fe:c6:a1:e5:03:
f1:0f:68:99:d8:3a:c3:74:39:ca:10:49:ef:dd:e7:
f7:6d:22:af:b9:fc:e8:e9:2f:1f:93:75:fd:81:e8:
c1:74:b2:7e:a4:77:27:7e:e8:d7:02:3d:49:52:c4:
b5:83:b9:18:2f:93:bb:48:bc:2b:31:3f:76:69:c2:
69:48:28:0c:df:73:bb:ce:f0:83:da:bc:c3:6e:f9:
c8:cb:fb:34:93:60:b0:65:56:1a:d2:ad:6f:c2:fe:
31:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0A:DF:18:C2:29:91:FD:83:D4:FE:C0:7A:95:9D:35:6E:2B:8D:AF
X509v3 Authority Key Identifier:
keyid:8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:67:18:72:87:4e:dd:0d:1c:39:10:27:60:0f:c4:87:fd:66:
2c:f5:2f:18:07:bd:27:9b:1d:ef:ce:6e:db:97:5d:1f:60:12:
ca:f3:2f:25:70:7f:2c:73:5a:f7:82:86:5e:b3:d2:02:32:f9:
85:46:b3:1e:bf:18:b4:69:57:5a:eb:52:f6:7a:09:f2:ad:1a:
c7:a6:53:5f:02:e8:97:59:4b:3f:7f:4b:02:79:71:5d:d3:06:
8d:7a:ca:ba:5a:e4:b0:8d:a8:4c:d4:0d:56:a8:34:0b:1d:08:
61:83:83:9b:5a:8b:9b:59:e0:bb:c0:8a:7b:22:dd:e4:a3:9d:
f6:9e:19:7e:72:89:e8:98:55:6a:8a:1a:da:d9:38:1b:c7:fe:
7d:29:ad:2d:fe:1e:ee:7f:88:04:7a:cf:95:bc:a1:c2:e7:0d:
2d:f0:5a:06:1f:2d:8c:d2:7f:b4:6e:53:b9:2a:3e:fc:5d:bc:
f0:ed:1a:d7:67:61:25:e1:ad:61:f2:a7:5e:6e:bf:b3:8f:d0:
65:33:5d:ca:14:4d:4c:3e:e1:88:1d:d6:57:e3:9f:aa:65:e8:
51:45:f0:e9:ab:06:75:cf:a3:30:e0:8b:80:bc:dd:06:4f:bd:
68:0a:ff:9f:60:57:2e:ed:b3:fe:44:75:62:4a:ff:b0:3c:12:
49:9f:68:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:45 2026 by rpki-client