Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
File: s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft (raw, json)
Hash identifier: s4wY5c28Ndp+0BPPsDM/9mbqM7u0PmmdEO++FQXDl0M=
Subject key identifier: 1F:1E:A7:AF:9D:CB:7D:D3:8C:82:4E:FB:BE:2B:E4:7F:3F:FA:A3:80
Authority key identifier: B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25
Certificate issuer: /CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25
Certificate serial: 019D389BF55DD0372F08939C244C973AABB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
Manifest number: 0DE8
Signing time: Sun 29 Mar 2026 08:00:38 +0000
Manifest this update: Sun 29 Mar 2026 08:00:38 +0000
Manifest next update: Mon 30 Mar 2026 08:00:38 +0000
Files and hashes: 1: h5TBAsD0PIrK8ZbXvXzmuZYvjfc.roa (hash: vh2mYfpn9jYyEFKZRDPA3enKaVdAJO56xPGBRHR7x4E=)
2: s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl (hash: W9wtk0LmfHsDLlgOKINLIihKCsX0c/jtFHUv7mgxppw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:f5:5d:d0:37:2f:08:93:9c:24:4c:97:3a:ab:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25
Validity
Not Before: Mar 29 08:00:38 2026 GMT
Not After : Mar 30 08:00:38 2026 GMT
Subject: CN=1f1ea7af9dcb7dd38c824efbbe2be47f3ffaa380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b5:e9:91:d5:f6:86:4f:b4:30:89:61:13:5d:
45:9f:6f:b3:0d:b2:75:0e:9d:ed:e4:f2:95:e0:80:
0e:1d:84:93:77:10:72:68:11:64:03:1f:6b:f5:b0:
e0:ad:5d:58:00:e0:a2:6e:46:38:b5:82:37:fe:7f:
2d:95:ec:c2:8c:6f:ed:e7:8b:d4:58:81:8e:2c:db:
21:c8:76:ec:35:a1:d5:d8:cf:d6:e5:ff:d2:6b:ea:
c4:b4:3e:56:ec:a7:3c:7a:d3:ef:2e:81:e4:b6:a2:
da:e1:46:86:a1:41:eb:d4:0b:da:84:2b:43:a2:04:
83:b5:47:13:88:02:4f:13:5a:36:66:29:06:3d:73:
98:1f:ed:c7:9d:4c:9e:e4:5f:28:5f:eb:d4:19:24:
d0:d8:d9:64:78:7f:c0:e1:e9:4c:44:b6:bb:78:f1:
ca:a4:16:13:41:b4:c7:3f:6a:1a:f7:06:fd:68:d2:
27:b0:79:a8:4c:da:39:4f:e2:5e:68:b8:d8:23:eb:
61:0c:d9:a4:87:44:66:1e:5d:69:8a:85:39:11:8d:
a6:08:40:e2:3c:74:3c:c9:ac:73:74:a5:7e:af:0e:
db:8b:22:88:9a:31:be:e6:ae:ce:4b:f5:ab:c3:62:
6f:15:65:e0:0e:19:58:82:15:99:12:52:b6:78:6d:
a8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1E:A7:AF:9D:CB:7D:D3:8C:82:4E:FB:BE:2B:E4:7F:3F:FA:A3:80
X509v3 Authority Key Identifier:
keyid:B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:e5:76:16:28:55:b6:9d:fb:a1:69:c8:e8:70:15:8b:04:77:
1f:05:56:6e:6f:44:ff:9e:fd:a5:1a:fb:d4:ec:56:ea:bd:fa:
ba:cf:e6:e0:ad:4a:df:7f:96:b2:4c:85:bc:78:d3:8e:be:a4:
0b:b4:4a:6c:6b:f2:59:cb:87:f1:59:f4:ce:f5:24:99:33:ad:
e4:d9:35:ae:5b:c7:ed:8f:31:1c:34:b1:55:a3:db:14:14:03:
0d:92:17:06:f7:9f:10:9f:95:22:80:0f:ed:a5:aa:ec:d5:4e:
9f:14:dd:24:c7:49:70:c7:dd:75:4e:b7:41:4f:a1:80:56:28:
e5:f2:57:f7:6c:6c:11:40:c0:b9:58:e8:86:1a:ff:c8:f9:11:
87:2c:32:37:28:b3:e9:dc:a9:de:f0:7a:b4:cd:76:9a:be:22:
28:46:db:98:91:9b:30:05:d8:22:36:a0:a9:67:30:74:f4:bc:
75:f8:39:5c:39:b7:ad:c4:1b:2f:d0:e0:df:cf:b3:09:3a:cc:
61:b0:d2:13:d8:72:99:52:85:f1:d1:0b:50:75:60:b2:a2:18:
cb:5c:cb:1f:34:3d:76:3f:82:da:75:40:00:42:d9:92:cb:03:
63:89:84:4f:46:79:0f:11:06:4d:16:93:c1:49:61:1f:d9:90:
b3:95:b3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:07 2026 by rpki-client