Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
File: R7lNsbPetIBa0mFVS65rpfp0CMs.mft (raw, json)
Hash identifier: E+sAueG/Emd0pqCIb7MN5EY1eUGZJnPPJxveZmeGg88=
Subject key identifier: CA:7D:C2:C6:15:37:4E:CF:4F:17:70:84:CF:39:A4:4A:CD:9D:4C:DC
Authority key identifier: 47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
Certificate issuer: /CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Certificate serial: 019D3866219161AFC7BE7C315042C3147AE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
Manifest number: 188A
Signing time: Sun 29 Mar 2026 07:01:50 +0000
Manifest this update: Sun 29 Mar 2026 07:01:50 +0000
Manifest next update: Mon 30 Mar 2026 07:01:50 +0000
Files and hashes: 1: R7lNsbPetIBa0mFVS65rpfp0CMs.crl (hash: aNFfJRX+LQCGp0i+D6zJq/q3K8CLZ5e1KnHYU3UoBkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:21:91:61:af:c7:be:7c:31:50:42:c3:14:7a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Validity
Not Before: Mar 29 07:01:50 2026 GMT
Not After : Mar 30 07:01:50 2026 GMT
Subject: CN=ca7dc2c615374ecf4f177084cf39a44acd9d4cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:05:d7:2c:22:3a:68:32:b6:a6:6f:12:68:a7:
43:f0:9c:d7:c3:53:5b:17:5e:93:cc:05:62:7c:6f:
aa:f9:20:0b:1a:c2:5e:d9:5f:df:ef:be:cd:b3:02:
8f:98:ce:c7:ee:c5:43:3e:be:df:88:98:d6:44:12:
df:f8:67:53:1c:ba:7e:20:7d:da:11:ac:18:3d:1c:
1c:f6:78:47:34:57:35:57:30:2d:bc:2a:78:93:9d:
81:5d:f8:2f:99:ae:df:01:aa:09:1a:81:8b:79:dd:
2d:ef:94:c8:d4:f7:09:ad:7a:1d:41:aa:c4:de:f9:
db:2f:ab:54:ff:87:0a:a8:5d:df:c0:41:69:05:14:
16:71:ad:2f:ce:d2:12:28:c6:1a:1a:4d:c6:bd:ba:
73:7d:6d:e4:62:2d:7b:1d:6b:13:0c:3a:3a:10:2d:
fb:67:d6:75:e1:94:6c:e8:fd:5c:c4:ed:d3:4b:a7:
90:c5:8e:5f:25:be:12:0c:7e:9d:32:a6:a8:7f:ce:
59:dd:08:ad:ea:63:39:cd:ee:17:7a:c4:dd:e2:9b:
42:5c:6c:c5:1f:a7:b6:bb:4c:72:a2:24:fa:45:61:
54:6d:f4:93:03:4e:98:57:ad:f2:85:68:a8:83:76:
83:c5:41:0c:91:28:d7:48:b0:28:fa:45:19:65:45:
48:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7D:C2:C6:15:37:4E:CF:4F:17:70:84:CF:39:A4:4A:CD:9D:4C:DC
X509v3 Authority Key Identifier:
keyid:47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:8b:50:07:f5:6b:27:33:0e:3d:30:13:a7:3b:56:6d:53:18:
82:ad:eb:39:fe:1d:30:da:42:3a:4d:9c:97:55:ef:66:1d:6a:
b9:d2:21:25:46:6c:09:81:14:18:fa:fe:5d:ac:0c:4f:93:56:
fa:37:00:eb:f0:09:fa:7f:95:50:b0:a2:2a:89:e6:bc:1c:d6:
aa:ef:c0:b8:06:b7:2e:09:87:23:0b:f6:84:0d:6d:fc:1d:1a:
32:fa:a9:22:54:63:76:48:5d:22:56:53:fd:01:13:66:90:45:
30:5a:c9:37:26:f4:46:9f:1b:c4:fc:57:95:72:69:b7:bc:6a:
3b:56:cf:db:c2:94:60:45:b7:ad:33:01:75:60:18:1c:a3:b1:
26:25:98:b5:48:b6:b7:db:7c:25:0b:b2:7e:24:08:07:26:f8:
19:ca:52:23:75:b4:88:df:da:2e:f4:a9:75:e2:c0:eb:a2:a9:
e5:3f:7f:fe:53:52:65:89:91:2e:ae:bc:71:d0:5f:5f:1e:d0:
a7:7c:57:43:03:ee:0a:c6:fb:4b:ca:fc:e8:ae:6b:dd:c5:db:
d3:38:1f:f5:be:e3:bb:a7:dc:6d:38:90:29:c6:66:20:7c:a7:
6e:9d:70:1f:dd:37:f9:0a:56:9d:de:38:70:2d:f8:97:a5:f6:
3c:26:d9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:29:39 2026 by rpki-client