Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
File: 7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft (raw, json)
Hash identifier: J/IfH6UTQuJLaPZFEULMeN6e5SVEuI0UjLyB4fVYh3M=
Subject key identifier: 9A:87:52:B2:5D:0A:BA:70:A2:3F:9B:29:B0:3F:23:E6:D9:88:E6:17
Authority key identifier: EC:E1:50:63:CB:0B:3E:78:88:8C:B4:D0:F2:2A:04:A1:93:DD:67:06
Certificate issuer: /CN=ece15063cb0b3e78888cb4d0f22a04a193dd6706
Certificate serial: 019DA4F8D2ED42A440DED9936ABF0346DE5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7OFQY8sLPniIjLTQ8ioEoZPdZwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
Manifest number: DF
Signing time: Sun 19 Apr 2026 09:01:03 +0000
Manifest this update: Sun 19 Apr 2026 09:01:03 +0000
Manifest next update: Mon 20 Apr 2026 09:01:03 +0000
Files and hashes: 1: 2gPdkQWW9jUCbizX1SsNX62y_98.roa (hash: VSRNfwKyTAYD9LB8Wv+fsBtowZBw7KWBvIp7E5dQ+Cg=)
2: 7OFQY8sLPniIjLTQ8ioEoZPdZwY.crl (hash: Hy57wDcvSB+ZV5AT6k0cuWMkKNQQgEPHWJK+xL6oqhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/7OFQY8sLPniIjLTQ8ioEoZPdZwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f8:d2:ed:42:a4:40:de:d9:93:6a:bf:03:46:de:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ece15063cb0b3e78888cb4d0f22a04a193dd6706
Validity
Not Before: Apr 19 09:01:03 2026 GMT
Not After : Apr 20 09:01:03 2026 GMT
Subject: CN=9a8752b25d0aba70a23f9b29b03f23e6d988e617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:78:76:00:72:57:68:9c:3b:f6:e1:23:cc:1a:
b3:4e:f7:a3:b3:47:b6:ad:7b:09:c7:97:19:8a:ac:
d8:6b:a6:96:7e:14:10:3e:81:ae:49:bd:9d:01:ee:
48:7a:43:1d:fb:00:ec:f6:1d:de:94:58:84:5b:8c:
73:bf:a6:bb:a2:61:0a:10:fa:f6:57:2b:64:92:ff:
d4:2c:df:df:bc:76:00:98:19:e9:08:89:31:ec:cd:
ed:90:8f:4b:4d:d4:e6:3b:f6:18:b1:80:dd:81:f4:
64:10:db:14:65:c3:81:b0:f6:91:9a:a2:0e:dd:94:
67:66:43:c9:95:c4:ff:5c:2d:e3:23:9e:2b:4a:a7:
85:24:1f:61:bb:4b:1b:29:a3:50:49:88:8e:bf:c0:
b9:a7:6d:1c:6b:86:eb:cb:0b:5b:c9:36:c3:5f:7b:
09:fe:d3:ae:41:e7:c1:ea:a4:bc:6a:f3:9a:a6:28:
08:7d:31:6d:ee:1d:60:7f:01:17:e7:4d:b1:a7:3c:
2c:f0:68:89:f7:59:5d:64:15:95:f6:7e:39:15:46:
ef:ba:d5:2a:83:5a:3a:b5:16:5f:5b:87:78:67:43:
c7:6f:d2:66:34:bc:9e:74:16:91:62:df:4c:86:96:
e5:29:13:1f:b3:6d:c5:32:44:6b:27:37:bf:4b:ec:
9f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:87:52:B2:5D:0A:BA:70:A2:3F:9B:29:B0:3F:23:E6:D9:88:E6:17
X509v3 Authority Key Identifier:
keyid:EC:E1:50:63:CB:0B:3E:78:88:8C:B4:D0:F2:2A:04:A1:93:DD:67:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7OFQY8sLPniIjLTQ8ioEoZPdZwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:40:d8:45:59:01:05:94:ae:5f:bd:6d:4e:60:78:55:ff:17:
0d:ca:07:55:de:d1:e8:1b:2a:89:34:ad:6c:0d:81:11:ee:ef:
54:c5:af:6a:8a:98:5f:b4:86:91:ee:94:fb:0c:7d:fd:b4:21:
4a:5d:3f:32:6d:db:1c:36:15:5c:7d:41:4d:31:88:33:f6:d3:
0b:29:88:1a:4b:f6:fe:87:ea:0d:5d:d8:18:40:73:f1:d2:96:
60:a4:5d:91:05:91:d2:a9:06:5b:ca:a6:97:0b:5c:c7:fc:73:
3d:4f:25:d4:0f:d1:0e:91:e9:aa:63:b4:88:24:7c:46:8b:e7:
14:ee:9d:96:22:c4:75:60:d4:c7:3c:33:3a:17:e4:32:bc:d1:
6b:c1:e6:b5:10:21:0a:4e:17:44:cb:01:64:9e:24:3b:6c:97:
ed:2d:fa:2b:a1:d0:29:ef:8a:14:89:37:68:71:6b:a3:5e:be:
d2:45:75:e6:9f:8c:a0:a0:cc:49:d5:e7:d4:a8:96:4f:ec:dd:
da:c4:e2:6a:70:29:bf:40:0d:eb:98:ec:be:c0:f7:eb:1f:46:
3f:4a:a1:1e:89:07:87:03:bf:d0:b1:49:c5:7e:b1:26:9b:b6:
1a:38:ba:fc:3b:60:a8:be:b9:9d:fa:73:0c:24:a0:b7:d2:25:
f9:8f:28:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:07:16 2026 by rpki-client