Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
File: d7AlLypnrNQplw-mSmQXd29y2NY.mft (raw, json)
Hash identifier: +JJKW96II2WaRRMFKxWi1YrJ5jkXKTSROzXEE/z4yQs=
Subject key identifier: EE:7D:BF:4D:94:B6:7A:47:FD:F7:96:FB:09:35:6E:56:F9:CA:7B:CD
Authority key identifier: 77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
Certificate issuer: /CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Certificate serial: 019DA34173F3FFE8226E88548C3289A08AA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
Manifest number: 07A3
Signing time: Sun 19 Apr 2026 01:01:08 +0000
Manifest this update: Sun 19 Apr 2026 01:01:08 +0000
Manifest next update: Mon 20 Apr 2026 01:01:08 +0000
Files and hashes: 1: GZzLxFCp1bVkiSpEsTLVVr4H9XI.asa (hash: ivqvyTFoXDuekBB8qUC8sgSfxDY8iNPCYAvAp+TmOlY=)
2: d7AlLypnrNQplw-mSmQXd29y2NY.crl (hash: 3Mpgv//LKNBYFwD4ICUZAflYpOVFrB/Aw8JlsLiKdNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:73:f3:ff:e8:22:6e:88:54:8c:32:89:a0:8a:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Validity
Not Before: Apr 19 01:01:08 2026 GMT
Not After : Apr 20 01:01:08 2026 GMT
Subject: CN=ee7dbf4d94b67a47fdf796fb09356e56f9ca7bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:df:a7:55:2e:64:2c:f7:5f:21:4b:cc:e1:b1:
ab:ce:af:d4:bf:54:ae:ee:40:37:de:a0:ab:28:6b:
9d:cc:88:66:91:18:b3:62:bf:c3:61:82:6d:ce:c1:
47:c4:12:89:9b:63:09:1c:54:44:3a:5d:8b:f5:26:
53:59:fe:06:db:e1:4c:8d:71:bd:13:f7:06:d8:0a:
7d:8d:8b:c4:5b:20:d0:03:d6:8e:d6:72:21:d8:2c:
7f:61:95:2b:a8:b2:04:95:2a:a6:5c:c7:44:23:d2:
77:0d:61:e2:69:af:69:cb:88:33:ec:ba:83:7a:7c:
c8:f2:85:03:21:95:82:e9:d3:e7:2b:31:21:21:93:
93:46:97:25:7b:86:cf:9c:d5:d2:28:3a:19:90:25:
50:de:57:28:03:39:af:35:03:0c:83:fa:34:6f:35:
e1:9a:17:6c:5b:a6:7e:a2:18:76:48:dd:85:d1:7c:
38:8a:27:69:b1:c1:2c:0b:f1:f7:53:b4:cb:70:3b:
68:6b:78:91:10:91:d9:5e:b3:71:16:d5:eb:e9:05:
e8:f1:7a:05:52:c3:dc:8c:cf:72:d2:88:0e:48:78:
28:a9:c9:eb:25:b0:22:81:8d:8d:68:f6:95:3c:b7:
ad:38:22:ef:e6:e0:75:a9:04:70:55:ff:9a:13:1b:
0f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:7D:BF:4D:94:B6:7A:47:FD:F7:96:FB:09:35:6E:56:F9:CA:7B:CD
X509v3 Authority Key Identifier:
keyid:77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:90:76:49:d1:09:bb:2d:10:ec:6a:67:25:64:e0:f8:c3:65:
58:36:03:d0:2e:fe:52:2f:26:5d:26:1a:1f:7a:b2:a2:16:a4:
4a:4b:27:5a:98:36:66:02:8a:4e:b9:fb:e8:44:41:db:2b:61:
15:9d:4b:81:3b:79:da:dd:d0:0e:e3:9c:25:1f:0b:ac:43:03:
6d:1e:1f:4d:1f:8f:ba:6a:83:86:d1:8a:ce:e8:64:16:e2:15:
79:9c:ef:9b:89:51:c0:77:17:e6:7f:a1:b9:27:ba:cd:73:7b:
01:d8:ba:1a:21:4f:02:e2:db:26:1e:a2:47:84:0c:a3:dd:81:
25:a6:0d:b7:5e:09:ea:3e:f0:ff:b7:cf:42:7c:e5:5a:71:e6:
19:ed:4a:d8:3e:cd:1e:6a:d8:79:b6:83:a0:81:8e:80:b0:4e:
2e:04:b0:6c:3c:86:bb:76:29:7d:47:99:94:7c:79:99:87:0e:
1e:01:dc:20:7e:46:73:d5:26:46:f2:98:6a:e9:2a:dd:e5:cf:
92:17:e9:29:cf:c2:48:e8:f8:47:ed:6e:82:68:a4:db:18:e8:
eb:1d:73:20:31:79:bd:f1:53:70:ea:b8:21:b9:ce:5c:c4:0d:
2c:3a:a3:39:c0:a7:e4:01:de:ba:fc:5f:b8:12:3a:1d:96:00:
9c:3f:77:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:57:10 2026 by rpki-client