Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json)
Hash identifier: sBgIl1BRw8VOjBwMRMQtJDA3u6dVYJNGuXaq0TqvatQ=
Subject key identifier: 2C:78:7A:18:FD:20:FD:EF:AB:20:DC:6A:66:70:6E:CF:0D:26:7B:94
Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Certificate serial: 019CAA5894C2DE493A4CD0E7FD8F57CEF269
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
Manifest number: 1609
Signing time: Sun 01 Mar 2026 17:00:57 +0000
Manifest this update: Sun 01 Mar 2026 17:00:57 +0000
Manifest next update: Mon 02 Mar 2026 17:00:57 +0000
Files and hashes: 1: 8vMvZJ6S4wIvSeidLWIqXdB2xEU.roa (hash: YSfZ6yHjbJE8NoHQ6iqadOGUmWSZLkJjEKtjGtKNsbU=)
2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: eQX8g1ZbNVOJ/+Rc4F8sC6633NW4TiDgjzF1ISsO43I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:94:c2:de:49:3a:4c:d0:e7:fd:8f:57:ce:f2:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Validity
Not Before: Mar 1 17:00:57 2026 GMT
Not After : Mar 2 17:00:57 2026 GMT
Subject: CN=2c787a18fd20fdefab20dc6a66706ecf0d267b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ff:39:4f:e6:3f:62:f9:90:4f:09:4c:1f:ee:
25:0b:41:77:78:60:ab:ff:85:35:15:c9:88:16:e5:
5b:4e:69:ef:f5:da:9b:59:6b:b4:ff:6b:bb:ce:9e:
18:07:3a:c0:69:ab:0b:00:23:39:fd:3c:21:da:3a:
55:32:b0:33:5a:0f:f0:e4:cf:ea:5b:15:78:6b:49:
cb:f0:99:6a:2e:f9:7f:bd:f7:40:bf:bb:a4:9d:07:
9e:e8:54:ff:78:69:85:bc:f5:03:1f:73:f6:7b:29:
91:d9:55:1e:4e:e5:22:3a:37:cd:27:d6:e7:12:c6:
1a:a0:da:c6:cb:0d:23:3c:01:b9:08:43:f3:c6:74:
fd:ec:95:37:19:2e:9d:d7:c1:65:7b:bd:ce:af:d0:
01:81:f5:85:42:06:b1:c7:f0:97:da:f6:e9:1b:f3:
83:3e:65:63:01:49:6e:9f:17:7f:bc:9d:2b:28:33:
e6:da:4c:c8:1a:42:59:dd:7f:1d:08:0a:7d:28:eb:
66:47:26:f7:ae:55:b0:74:4b:83:9b:64:99:a5:6c:
29:70:9d:b5:5d:e3:27:0d:39:3c:ab:b2:05:31:03:
f4:b2:e3:c2:bb:5d:fe:db:c9:e9:43:b4:46:29:08:
e6:68:02:dc:d9:e7:fe:65:ab:62:bf:07:a7:f2:5a:
78:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:78:7A:18:FD:20:FD:EF:AB:20:DC:6A:66:70:6E:CF:0D:26:7B:94
X509v3 Authority Key Identifier:
keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:3a:34:49:8e:88:5a:37:a7:de:5b:3f:48:7b:e3:3b:f8:5c:
46:25:2e:d8:e5:07:5e:fe:00:e3:fa:29:77:88:ef:4f:95:b9:
a1:c1:41:8e:e7:02:13:07:54:c9:8d:7c:7e:9b:c6:e5:d9:53:
fb:da:f3:7f:11:b2:e4:24:ac:6d:c8:b2:1c:13:91:65:3b:ee:
95:ac:9f:2a:ba:b0:f5:76:56:b4:44:a8:1d:f8:0b:73:17:e2:
10:7b:fb:8c:f7:b3:72:60:be:10:43:a9:2c:de:08:13:6a:78:
a5:fe:d8:c2:a7:dc:1f:05:82:c6:11:21:17:a8:79:3e:96:b9:
10:a7:e8:c0:f2:9c:25:a6:22:98:bc:ca:84:1d:b0:b1:54:f4:
43:96:52:6d:cc:20:dd:48:38:2f:e8:0d:0a:b3:7f:8f:5d:00:
f3:59:e0:85:c9:d2:91:80:b9:7c:1d:39:be:32:f0:11:c0:d8:
18:6e:a6:67:86:ac:72:9a:f2:c7:b9:d7:ba:b2:f4:c2:8e:a8:
4c:ed:9f:cf:c6:1b:a2:3b:8b:8f:f3:1a:87:68:74:c9:31:bc:
74:c6:8d:6e:46:53:f4:71:11:bc:d7:c4:48:47:14:d4:ca:39:
af:14:dd:c5:bc:1f:01:94:1d:ab:99:6b:21:dc:12:d0:ae:34:
a1:d4:44:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:04:35 2026 by rpki-client