Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: 1V6e6vHEBuW+MLzUOQ3568i5c0MtRf+JiRqzZDgC3ZA=
Subject key identifier: 1B:DB:E2:73:95:3E:07:4E:BC:EF:F4:4D:22:CC:87:99:19:BD:E9:5E
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019DA2D391B324D8B99FB7C5D652831AA15A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 18CE
Signing time: Sat 18 Apr 2026 23:01:07 +0000
Manifest this update: Sat 18 Apr 2026 23:01:07 +0000
Manifest next update: Sun 19 Apr 2026 23:01:07 +0000
Files and hashes: 1: aftA-bCSN_cfnaumewln08mRqyk.roa (hash: ewCgfj5ZHQWWUV5zhZ6e7KdXcICBairndqt6imFYbD4=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: Xiz+aePdWd9b3/AMj4smODgBF7VxlvTg70HOsUlci7M=)
3: sHSL6KeWD6muqNxIvHz053KucUs.asa (hash: Dii9+VgXhOO/o5gmGbq2K3cC3ucJXOQeg7Dp4dNWbSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d3:91:b3:24:d8:b9:9f:b7:c5:d6:52:83:1a:a1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Apr 18 23:01:07 2026 GMT
Not After : Apr 19 23:01:07 2026 GMT
Subject: CN=1bdbe273953e074ebceff44d22cc879919bde95e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:92:b3:f1:3f:13:96:b3:b8:f0:d5:77:21:47:
16:64:2d:3b:57:22:be:a2:ad:c2:17:ad:67:e7:4c:
d8:53:66:e9:de:94:8a:f8:14:e3:1f:b1:f1:ca:5c:
81:26:72:e2:60:bc:fa:74:15:71:64:b0:6d:54:31:
2c:63:1f:7d:e4:f2:07:0c:b3:7e:93:89:c2:10:f1:
a0:e0:f6:6c:d6:9d:10:16:9f:a0:7e:49:35:4e:63:
b9:8a:08:27:40:2f:f2:a1:06:85:96:3f:be:8f:cc:
96:21:39:5e:fd:6b:96:0e:1b:97:3b:6c:bd:b5:4a:
bd:ef:d6:4e:9c:90:0f:0b:3c:cb:51:32:07:f1:a2:
7d:02:fe:bb:ad:2b:d0:fb:1d:88:68:73:a7:7f:be:
42:0e:4a:2a:5a:c9:04:a4:8c:27:fb:ef:8c:b2:c4:
1f:73:5d:21:91:22:3d:c2:f7:5c:c7:81:9c:79:d3:
62:83:d8:aa:fa:58:c0:82:fb:06:3c:f8:85:69:bb:
ad:4a:a6:60:10:d4:2a:9b:cf:a6:fa:ef:5a:7b:34:
f8:07:fd:b9:e1:13:d1:a9:91:76:fd:89:e9:b1:0c:
23:5d:00:30:8f:ca:f7:f5:64:81:ec:21:8f:39:0f:
93:38:e7:30:b7:e4:f2:5f:65:18:c2:dd:f7:89:0e:
71:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:DB:E2:73:95:3E:07:4E:BC:EF:F4:4D:22:CC:87:99:19:BD:E9:5E
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:60:a2:3e:ec:df:fa:91:6c:8c:9f:f1:47:5a:61:fb:11:82:
ed:48:f0:81:31:f2:67:5e:59:68:59:34:e6:fc:b8:c4:fa:c3:
36:5c:e4:f1:26:0a:ed:6a:a3:6a:93:2e:23:14:b5:5d:4e:44:
c0:3e:e4:28:a3:07:db:37:ab:b1:b5:61:d0:ab:4c:82:94:9e:
5e:6d:c9:10:47:ae:ac:30:ce:71:e5:aa:e6:12:f9:d7:7f:6b:
80:9e:58:e1:90:3e:04:78:46:46:a7:cd:f1:93:73:55:41:58:
5a:3f:1e:4b:b9:5b:b7:f7:12:01:27:1e:a4:97:5b:da:25:98:
27:7d:32:60:ac:aa:c5:27:aa:38:c4:21:11:47:25:4a:d3:70:
b1:7e:01:d3:4e:a6:b2:bb:f0:4c:de:aa:89:de:7a:94:fa:d2:
d3:0e:6f:55:36:88:12:24:e4:54:97:44:b8:e3:ac:32:79:b4:
28:99:8c:90:20:b7:42:64:2b:e8:c0:b2:db:07:29:e3:ec:8e:
93:0a:d7:a3:6c:aa:1a:b2:84:0b:2d:13:2f:c3:a2:60:a9:84:
4b:8a:15:66:52:e9:ff:da:d4:49:a2:00:09:6a:44:f2:71:d4:
79:68:3f:ca:72:3c:a2:16:49:1b:a3:75:e7:12:59:24:8a:6a:
a0:5b:58:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:54:24 2026 by rpki-client