Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json)
Hash identifier: ZSWhq5ruj7QshcA2ySw7K8R8aOceggU7ocWAQANkjW8=
Subject key identifier: 95:AA:34:0F:8C:B2:5B:E4:48:AC:6F:3B:AE:8E:EE:13:56:34:0C:20
Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Certificate serial: 019EC148BD351ADAFC30A8128D4DA0803E6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
Manifest number: 171E
Signing time: Sat 13 Jun 2026 14:00:29 +0000
Manifest this update: Sat 13 Jun 2026 14:00:29 +0000
Manifest next update: Sun 14 Jun 2026 14:00:29 +0000
Files and hashes: 1: 8vMvZJ6S4wIvSeidLWIqXdB2xEU.roa (hash: YSfZ6yHjbJE8NoHQ6iqadOGUmWSZLkJjEKtjGtKNsbU=)
2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: 22oVbOSDQ3nT3+sznn1JBwiM4PV+huVuCwdL13kqkE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:bd:35:1a:da:fc:30:a8:12:8d:4d:a0:80:3e:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Validity
Not Before: Jun 13 14:00:29 2026 GMT
Not After : Jun 14 14:00:29 2026 GMT
Subject: CN=95aa340f8cb25be448ac6f3bae8eee1356340c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f6:af:c4:ba:65:31:fb:f3:f9:9a:86:4e:11:
1c:7f:66:f8:15:71:d9:e1:01:8b:ed:6a:63:49:d9:
ff:10:30:8d:f5:94:8e:13:31:db:ce:f7:db:28:da:
db:1c:99:54:b6:85:1d:1e:05:31:0f:56:5b:30:b1:
9c:c0:27:dd:66:05:bc:d0:77:58:2a:c7:e9:b2:85:
d6:80:c7:64:1a:67:14:56:29:83:d3:e6:e6:e4:29:
1f:b0:67:aa:ee:1e:f7:fb:88:ff:84:d1:22:55:f7:
9a:d7:52:88:28:de:1d:c8:43:33:ee:22:59:98:3b:
c7:cb:87:2a:66:41:d1:7c:ea:e7:0f:69:2d:81:8a:
0b:2a:76:f9:fc:fe:16:d8:f5:18:5c:cb:6f:85:ff:
e8:4e:0a:e1:de:cd:04:b6:34:6a:16:ec:d4:fa:77:
72:c6:57:62:c7:93:34:a2:7f:9a:92:e4:5b:99:ff:
ee:6a:1b:fc:b3:23:f6:9e:0d:73:82:6b:54:7f:0a:
0d:13:8c:d0:2c:0e:b2:be:b3:85:64:57:47:ea:28:
0c:7e:2e:83:ac:0c:aa:60:8a:fe:ea:4e:f4:73:4b:
31:fc:59:51:94:d8:d2:da:ed:16:68:ed:7a:09:2e:
e2:92:21:e7:82:3f:39:3e:17:80:24:40:4e:af:22:
ee:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AA:34:0F:8C:B2:5B:E4:48:AC:6F:3B:AE:8E:EE:13:56:34:0C:20
X509v3 Authority Key Identifier:
keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:35:ab:96:d3:1b:8c:0d:df:f8:69:0a:7c:41:7c:6a:8a:bb:
05:52:01:6b:c8:82:a8:84:98:f5:dd:fb:ec:58:89:84:cc:f1:
eb:b3:f7:ef:fa:72:e4:6d:0d:cc:18:a9:c9:52:22:a0:d9:68:
4a:6e:ad:ea:9c:61:b9:ca:3e:c4:ff:b9:89:da:1a:45:3d:4c:
c8:04:77:36:85:01:b4:1f:6e:67:b6:b9:aa:59:d0:0a:5b:67:
a3:a4:28:bf:0e:45:4d:9c:ea:3d:be:97:cc:07:d1:6a:d5:3b:
e2:29:6d:3b:8b:6a:13:e8:2c:91:c1:af:84:cb:8c:d2:49:10:
20:96:5a:86:28:d6:45:07:2a:71:82:62:5d:18:73:b6:cd:34:
eb:49:b1:b1:1f:8b:a8:74:47:15:2f:57:31:bd:7f:8e:54:07:
b4:49:d6:65:43:9e:62:12:83:56:2c:a3:1b:7d:4c:b3:fa:43:
e0:12:29:3a:ec:63:69:00:21:3e:d6:fd:28:ec:bb:8e:14:a4:
92:36:02:e6:a2:8f:9d:15:68:cb:7b:dc:03:7e:21:68:ea:8e:
a7:57:2f:d7:75:aa:20:28:00:f6:5b:80:03:95:ff:b8:12:1f:
f4:32:ad:5d:70:9f:6c:89:8a:73:34:40:a4:40:a9:85:2d:a0:
19:45:36:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:32:16 2026 by rpki-client