Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: WY3NNxYKx2h8z5X9qOBLKS3KfhDHF6I3X1u4jdkqpE0=
Subject key identifier: 74:CE:8A:9B:0C:AF:F8:96:ED:5F:03:5E:21:41:D3:5A:A3:A5:97:AC
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019CA9B3EA38A73B5FBD2DFD36C4E1220D22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 184D
Signing time: Sun 01 Mar 2026 14:01:06 +0000
Manifest this update: Sun 01 Mar 2026 14:01:06 +0000
Manifest next update: Mon 02 Mar 2026 14:01:06 +0000
Files and hashes: 1: aftA-bCSN_cfnaumewln08mRqyk.roa (hash: ewCgfj5ZHQWWUV5zhZ6e7KdXcICBairndqt6imFYbD4=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: MQsNwCYZ8DYL5k9bLiqj6mJCEnK+LHx5ffLONkdgn9M=)
3: sHSL6KeWD6muqNxIvHz053KucUs.asa (hash: Dii9+VgXhOO/o5gmGbq2K3cC3ucJXOQeg7Dp4dNWbSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:ea:38:a7:3b:5f:bd:2d:fd:36:c4:e1:22:0d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Mar 1 14:01:06 2026 GMT
Not After : Mar 2 14:01:06 2026 GMT
Subject: CN=74ce8a9b0caff896ed5f035e2141d35aa3a597ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:70:bc:8d:52:2f:96:9b:e3:96:1d:de:3d:e5:
85:d8:5a:7a:6a:a9:c9:32:0c:8f:4a:3e:56:cd:30:
b2:b2:2a:40:a9:b3:25:43:43:bc:ce:2c:b7:7e:c5:
1a:5f:f8:5c:26:b7:f6:97:da:86:77:81:5a:da:7b:
97:99:60:80:1a:bf:77:8f:e9:78:df:51:28:c7:5e:
74:e3:63:a9:af:64:24:85:65:e9:2c:a9:f5:b9:02:
e0:7f:ad:e8:c6:fe:e5:f6:2c:52:b3:ec:e9:b0:b1:
79:90:c3:e3:f4:ff:2a:0f:b2:ff:4e:35:69:3f:20:
94:47:04:87:85:10:f6:1d:86:6d:a6:22:ce:20:63:
03:d6:bb:35:27:de:ba:4d:21:14:6b:2b:19:d8:ba:
cc:19:8d:4a:8f:f7:0b:fc:f9:6f:e3:9b:58:de:2a:
8b:81:68:9d:bf:d5:dc:f2:7b:4d:08:e9:35:01:20:
66:fc:46:df:15:39:36:7b:49:47:78:8e:ac:5c:02:
46:03:5e:18:72:ba:ea:5c:e9:c1:7b:00:ec:51:e2:
6a:c1:42:1c:99:3f:e0:02:f7:85:cb:bd:0d:39:6a:
f6:1e:3e:31:e4:c0:59:8f:3d:42:69:51:d5:a3:32:
61:cd:ee:a6:6d:43:87:9c:c9:8d:80:db:6a:b3:3e:
6b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CE:8A:9B:0C:AF:F8:96:ED:5F:03:5E:21:41:D3:5A:A3:A5:97:AC
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:cf:1f:5d:a5:07:37:83:1e:42:bb:39:97:fe:ad:9c:5f:12:
40:1f:60:9f:09:d9:52:57:12:9f:46:fd:06:50:9f:ad:fa:ae:
95:79:20:15:ce:ac:e7:02:a0:b0:66:90:d4:85:91:e2:74:7e:
91:95:54:0e:7e:4f:2a:6a:7c:b2:04:d8:bd:6d:39:c4:0c:d0:
a8:19:64:66:03:a0:4f:a6:c6:de:f2:6d:ea:96:9f:59:03:e3:
d4:d7:4e:33:8a:ed:e0:9a:9a:6c:da:15:18:55:43:64:11:c9:
bf:3b:3e:a8:e6:23:1e:e4:4a:0b:26:73:05:fe:42:d4:e0:df:
c5:3a:92:f4:e2:81:5b:b0:b7:85:14:35:6e:ed:8a:00:bb:f8:
db:02:b5:29:3e:e3:8b:a0:3a:49:df:02:16:21:5b:0f:50:18:
23:c1:b5:8b:b7:7c:d7:da:ca:4a:f7:83:c7:75:97:5e:17:0c:
da:c4:56:54:26:27:a7:61:51:bf:16:98:2c:66:50:68:02:d6:
22:d8:33:74:f7:1e:56:c8:2f:33:4b:14:94:95:5e:8b:c5:78:
c5:0e:37:a1:20:c2:cb:97:53:a1:34:85:77:87:2a:56:89:3b:
b7:f2:d4:26:7a:5b:61:f3:05:29:09:7e:e4:cc:bb:9c:74:b9:
08:ca:bd:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:26:01 2026 by rpki-client