Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
File: 7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft (raw, json)
Hash identifier: Ny9vFwe3M6RFN3CXcqNPIeTUj+zhuNvqSJh4YzUtkyI=
Subject key identifier: 68:5D:15:40:70:3B:E4:FD:99:A3:8F:BA:10:10:22:03:D2:A0:CC:F2
Authority key identifier: EC:E1:50:63:CB:0B:3E:78:88:8C:B4:D0:F2:2A:04:A1:93:DD:67:06
Certificate issuer: /CN=ece15063cb0b3e78888cb4d0f22a04a193dd6706
Certificate serial: 019CADC7CD3AB47EE1EEADFC3C2FC931BD1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7OFQY8sLPniIjLTQ8ioEoZPdZwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
Manifest number: 5F
Signing time: Mon 02 Mar 2026 09:01:18 +0000
Manifest this update: Mon 02 Mar 2026 09:01:18 +0000
Manifest next update: Tue 03 Mar 2026 09:01:18 +0000
Files and hashes: 1: 2gPdkQWW9jUCbizX1SsNX62y_98.roa (hash: VSRNfwKyTAYD9LB8Wv+fsBtowZBw7KWBvIp7E5dQ+Cg=)
2: 7OFQY8sLPniIjLTQ8ioEoZPdZwY.crl (hash: jET3sz9lWs+R1gCYsOL1txPkpASPCrrs7H6FRZ1DeqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/7OFQY8sLPniIjLTQ8ioEoZPdZwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:cd:3a:b4:7e:e1:ee:ad:fc:3c:2f:c9:31:bd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ece15063cb0b3e78888cb4d0f22a04a193dd6706
Validity
Not Before: Mar 2 09:01:18 2026 GMT
Not After : Mar 3 09:01:18 2026 GMT
Subject: CN=685d1540703be4fd99a38fba10102203d2a0ccf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:96:fd:ff:10:39:f6:02:ab:77:83:d8:2b:e3:
a6:75:16:b9:52:e9:98:f9:c7:9f:18:9b:b7:f9:52:
62:b3:fe:5b:9f:0d:a8:fb:1f:7d:12:c0:78:91:90:
30:34:82:64:28:12:ba:c2:48:95:b5:8f:fa:06:69:
d7:2b:88:8e:90:a6:99:1a:6e:19:8f:c0:54:fd:7c:
39:33:53:31:2a:cc:d7:48:59:bd:8f:15:f3:85:55:
30:bb:37:a6:69:41:dd:d6:2f:af:14:47:3f:34:58:
b2:42:71:ad:ba:64:4a:33:89:5c:49:48:f4:6b:5e:
35:65:c0:7b:c4:0c:c9:41:fb:df:6f:4c:19:94:29:
fb:e1:a1:a9:34:ad:82:81:c9:1f:5e:6e:b1:da:70:
df:06:58:df:f3:e9:36:23:23:17:c9:5d:5b:5d:c9:
18:e5:55:68:41:8d:18:4b:14:71:77:59:70:28:18:
93:2c:55:10:66:6d:42:cb:5f:78:6e:95:ae:4a:4e:
06:1c:42:c5:9d:28:10:1b:a7:bc:ac:72:35:f7:d7:
9b:c3:f8:59:db:e8:6e:6d:e5:28:64:c3:7f:33:a6:
f8:6a:73:0d:c7:6f:93:f5:41:3e:58:de:98:f2:d0:
b1:dc:41:1c:1e:33:20:b1:78:0f:aa:4c:da:70:30:
93:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5D:15:40:70:3B:E4:FD:99:A3:8F:BA:10:10:22:03:D2:A0:CC:F2
X509v3 Authority Key Identifier:
keyid:EC:E1:50:63:CB:0B:3E:78:88:8C:B4:D0:F2:2A:04:A1:93:DD:67:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7OFQY8sLPniIjLTQ8ioEoZPdZwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/544bc7-f204-4a40-a30d-805efcd1149c/1/7OFQY8sLPniIjLTQ8ioEoZPdZwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:f4:e4:59:85:a0:dd:b5:1a:f5:f2:1d:3d:e7:89:8e:e7:1c:
69:48:dc:6c:41:03:4c:0f:f4:82:89:e2:87:0e:4e:9b:67:72:
d9:6a:e4:5c:f5:44:f5:c9:6e:13:0a:08:e3:45:52:55:37:e5:
ef:6d:16:c0:18:31:7e:27:23:13:04:78:a5:30:84:47:20:53:
6f:4a:1a:70:22:b0:c2:a2:90:47:a8:a3:15:b5:fa:2d:d5:9a:
0c:54:39:28:10:75:cd:83:f1:8f:e9:75:8b:f4:63:58:ad:f1:
b3:38:de:cf:7a:3f:3d:e0:02:85:9d:df:5c:cc:94:65:2c:72:
7b:5d:7c:0d:ea:0d:48:8c:df:38:e4:31:f4:25:ef:30:4a:8f:
35:18:8c:38:e8:ab:dc:e8:f3:a2:83:a0:a0:00:bc:71:97:2c:
2c:6f:2a:8c:e2:08:32:c1:9b:1c:d0:78:62:19:62:8f:b5:ec:
27:6c:67:4f:e7:7f:30:b9:c6:8b:e8:1e:de:ee:ce:c2:ef:01:
ce:3b:d3:88:3c:92:8c:26:90:d5:08:09:d2:ac:4c:b3:53:44:
d5:86:4f:b3:d2:86:a1:23:ff:13:3e:c3:59:87:19:63:90:6a:
98:a1:14:13:74:eb:b9:49:25:47:fe:ee:81:78:08:6e:67:cb:
02:77:6d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:37:18 2026 by rpki-client