Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: G2A5WDsEa5cU0EWksUrJov73A6DBErRMMNWozijr+hw=
Subject key identifier: A9:E7:94:8B:A7:DF:B9:BF:CF:6D:B6:69:7B:9F:E0:0F:40:74:DC:61
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 019EBF5AED686274BA59118D6A23AC0F3175
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 1962
Signing time: Sat 13 Jun 2026 05:01:07 +0000
Manifest this update: Sat 13 Jun 2026 05:01:07 +0000
Manifest next update: Sun 14 Jun 2026 05:01:07 +0000
Files and hashes: 1: 1--FRY1CjawLnslfsBcAkrouqU6s.asa (hash: NFM53UpFWBl2wcWeqeLFtEIb13ge6QGgn48A2dxQblk=)
2: aftA-bCSN_cfnaumewln08mRqyk.roa (hash: ewCgfj5ZHQWWUV5zhZ6e7KdXcICBairndqt6imFYbD4=)
3: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: jVGkxfFLWi5Z+X1qyaycI3J0lqFatbbgCx6VOcf3QBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:ed:68:62:74:ba:59:11:8d:6a:23:ac:0f:31:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Jun 13 05:01:07 2026 GMT
Not After : Jun 14 05:01:07 2026 GMT
Subject: CN=a9e7948ba7dfb9bfcf6db6697b9fe00f4074dc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:b8:b9:34:99:e6:6f:f0:75:e9:d6:3c:cf:
69:1a:55:9d:12:dd:5f:7c:93:b4:39:99:1b:1f:71:
7c:c9:93:e6:f6:5e:51:c7:df:ea:7f:71:b2:03:fb:
99:74:db:6a:46:8c:d6:cd:04:8f:ba:1a:da:a3:9e:
2e:07:4d:4f:1d:ed:9a:85:10:d4:81:2b:0d:11:9c:
9b:8c:32:b0:20:d0:8a:f8:72:0e:06:99:1c:48:08:
3a:da:6f:a5:16:ef:ed:53:21:12:67:b7:ce:76:09:
32:0a:9b:5e:35:27:4c:01:d7:00:cc:6f:e7:c7:1d:
40:d6:63:3a:3f:a3:e5:88:4a:59:4c:77:36:77:5c:
c6:18:72:52:f8:85:49:2d:a2:10:f2:fb:10:06:5c:
57:39:0c:98:5f:0e:dd:2d:ce:ca:f0:93:ce:75:8c:
28:e4:5f:c4:5f:7e:79:cc:5a:f3:28:ad:12:c6:c0:
f0:18:78:0d:b3:7f:2f:51:db:95:ed:0b:86:4d:ad:
f2:06:c6:b1:60:00:b6:4b:8d:d1:1f:73:c8:3f:be:
63:61:b1:36:a8:66:fb:5c:22:81:e5:95:ee:ac:53:
fe:c0:4a:2d:b5:1e:1e:24:02:da:50:1a:73:e0:4d:
b2:eb:39:3a:dc:3f:4c:01:22:44:80:79:e9:2b:c5:
e0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E7:94:8B:A7:DF:B9:BF:CF:6D:B6:69:7B:9F:E0:0F:40:74:DC:61
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:c9:70:dc:11:d6:81:90:c9:01:4c:f9:ee:bd:24:6a:0a:d1:
96:95:b4:f6:18:ed:d6:a2:bc:6e:01:8e:f8:3f:a1:28:83:7c:
32:19:19:54:52:fd:5b:d0:68:b1:ac:ca:42:3d:2d:67:c4:5b:
58:6a:96:20:16:52:af:21:6c:66:8d:e9:e3:db:c3:b4:3d:91:
b6:37:4f:e3:73:d8:65:a9:ed:4c:3b:8c:3f:72:af:d6:cc:78:
88:6a:48:50:27:99:86:a6:b5:fe:a6:7c:90:3e:41:81:d2:e1:
25:c4:8e:c5:2a:6f:d7:af:9e:83:d0:a2:65:de:1e:c3:0a:61:
67:76:03:09:9e:8b:50:19:72:ab:86:e8:3a:6f:9a:aa:7c:ad:
9c:63:0f:17:e1:95:6f:98:01:d0:5a:35:db:be:04:bd:5b:c4:
ee:3e:2b:44:bd:cb:5b:8f:95:62:aa:1e:59:d1:f9:88:c3:5a:
f9:0f:90:da:7a:60:78:5c:a9:0c:70:ad:db:49:b7:7d:cd:64:
d9:69:af:9c:1b:0e:cc:58:f0:e7:2e:0c:f9:2c:5e:b8:ca:f8:
99:3a:c2:96:21:d3:81:93:de:f9:be:4e:ae:eb:6a:96:14:6c:
e2:95:38:9b:ff:43:1b:d0:43:f5:cc:7e:0d:9e:ad:74:f1:8e:
52:bb:eb:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:28:19 2026 by rpki-client