Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
File: h7-ak2z5rSjsWNt5imD9cd9sN_M.mft (raw, json)
Hash identifier: sHRI74kSFZNVT4HGbxqjokHJEjKmjTHN+iA/TPlzZrs=
Subject key identifier: 82:24:94:F5:FA:10:13:59:B1:D7:AA:7F:3E:0E:60:F7:6B:94:9F:87
Authority key identifier: 87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
Certificate issuer: /CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Certificate serial: 019CAB6AE76AD71918ECC10983DC55FE76AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
Manifest number: 1107
Signing time: Sun 01 Mar 2026 22:00:35 +0000
Manifest this update: Sun 01 Mar 2026 22:00:35 +0000
Manifest next update: Mon 02 Mar 2026 22:00:35 +0000
Files and hashes: 1: h7-ak2z5rSjsWNt5imD9cd9sN_M.crl (hash: 97MhR0kvWyNdBTN0z85EhpcPItJBN2oIYgQDHUeHiYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:e7:6a:d7:19:18:ec:c1:09:83:dc:55:fe:76:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Validity
Not Before: Mar 1 22:00:35 2026 GMT
Not After : Mar 2 22:00:35 2026 GMT
Subject: CN=822494f5fa101359b1d7aa7f3e0e60f76b949f87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2d:2c:07:da:94:e1:57:cd:b2:32:5f:7e:30:
e7:a2:36:d8:61:4c:52:df:af:9a:aa:01:cf:d3:4d:
9f:ab:72:16:25:5e:01:fa:ba:43:40:dd:bb:1b:4d:
a7:47:a4:aa:4a:9e:0c:1e:59:62:ea:da:83:f4:a3:
00:2e:a1:dc:12:e9:f4:9e:ba:0d:b2:8c:8e:9e:0e:
09:f6:df:16:2e:4f:b0:ea:3a:e3:17:ea:61:a3:44:
14:92:34:86:8f:8e:0d:85:00:b2:a2:1f:d1:40:3c:
9c:2c:2e:54:63:26:62:d2:4a:72:2e:aa:38:02:bd:
4c:ae:cb:02:e4:fe:98:42:d6:ab:c0:a5:f6:89:46:
da:20:fa:64:d0:ed:ff:1d:73:68:b6:91:ae:d6:f7:
a2:ff:b0:3a:6a:88:f4:fd:63:0e:92:83:a7:73:37:
5d:a0:e3:ae:b9:fa:b5:2d:9c:ea:38:e2:e9:33:9c:
06:c0:6c:0d:e0:8c:2d:e5:63:69:d2:c0:af:96:53:
0b:7e:2b:57:ca:b3:64:c8:52:ba:4e:5b:b9:cb:c9:
05:17:db:7a:80:76:07:6e:08:ae:e1:49:dc:5f:dd:
d4:c1:15:e9:e1:11:94:f5:bd:9c:1a:37:1b:6e:d7:
02:6c:79:a0:69:2f:c5:d7:5e:46:6e:6d:a9:fc:fa:
48:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:24:94:F5:FA:10:13:59:B1:D7:AA:7F:3E:0E:60:F7:6B:94:9F:87
X509v3 Authority Key Identifier:
keyid:87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:e2:28:29:b0:5a:8e:33:78:3c:fc:78:38:94:3b:7b:c8:a1:
05:95:21:f3:4b:36:20:68:2a:6d:ad:99:b5:3c:07:0b:a7:b6:
23:35:51:e8:52:1e:e6:2b:db:37:00:99:0b:de:08:44:2e:11:
74:02:00:cd:6b:3f:b4:c8:9f:7b:13:b0:06:ca:85:1c:20:62:
80:e6:c3:62:d4:16:86:4c:22:92:43:6d:ae:66:ef:13:17:73:
e9:88:cb:11:2a:f8:77:76:f8:be:ef:12:1b:86:b4:e1:42:37:
2a:2f:3e:1e:11:76:3f:22:de:74:a0:0b:05:fd:d8:14:d2:70:
87:40:9c:45:4d:10:ae:f4:5b:62:17:e6:a6:4d:93:23:40:52:
be:30:21:93:f0:35:c2:11:0c:6b:40:8a:99:bf:e6:fa:a1:38:
97:55:c6:e6:50:1d:1d:66:de:9d:45:19:de:87:5c:41:b8:ae:
a2:14:30:16:5c:d6:9f:47:6c:06:0c:44:d3:a3:8d:b5:04:d7:
f5:c8:c7:14:bd:b7:e1:a0:d4:c6:34:cd:d7:8a:aa:52:03:6c:
79:25:fc:b6:85:db:fc:e5:f0:86:a7:1e:b8:f4:74:b2:cd:63:
dd:fb:58:22:3a:cf:64:d9:91:35:d8:aa:42:f9:28:fe:9c:c8:
e4:2d:12:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:50:05 2026 by rpki-client