Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: CF/QqLQZzEWh6UlfNXo1pVzx0gsV32sUbMnwy/dAtpo=
Subject key identifier: A0:C5:24:65:2F:68:AB:5C:77:82:B1:D3:12:9A:4E:51:55:EB:60:B5
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 019CAA5893907DC1B4E12E706FD1FC38E948
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 17:00:57 +0000
Manifest this update: Sun 01 Mar 2026 17:00:57 +0000
Manifest next update: Mon 02 Mar 2026 17:00:57 +0000
Files and hashes: 1: WMBlv5TYOFhb5nmDTbMHQgVvFpc.roa (hash: aKDzW6jTAaiYbIZ5LNCccfbLrCredMGyDoJe0MXZVlA=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: vEqAx0s2YmRDDXm2zV/sshZsOZDId9g8RACd0D43BMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:93:90:7d:c1:b4:e1:2e:70:6f:d1:fc:38:e9:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Mar 1 17:00:57 2026 GMT
Not After : Mar 2 17:00:57 2026 GMT
Subject: CN=a0c524652f68ab5c7782b1d3129a4e5155eb60b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:43:d4:22:33:22:cf:e8:06:77:ec:63:4a:9c:
c7:91:e2:22:7f:dc:65:89:a2:e4:e8:8d:52:50:e5:
73:aa:1f:f1:77:bb:e6:cb:16:f6:40:13:89:05:46:
53:14:63:a1:ed:be:ac:6f:44:6a:bb:e8:25:8f:3e:
22:7d:41:d1:e6:50:00:9f:28:6a:52:f6:d2:18:c6:
ba:b9:99:50:aa:60:30:a0:40:f0:aa:0e:a2:c1:92:
c6:e4:9f:39:f0:d6:f6:90:d5:ae:d8:b4:da:e5:bb:
02:f6:85:39:49:a9:6d:10:3c:0d:26:02:e1:8d:4c:
e3:ae:05:c5:c3:09:6e:4b:8f:23:1f:21:fa:95:ab:
d4:e2:08:31:58:6c:f3:1f:30:b9:a4:92:fe:54:34:
17:3e:32:bb:6b:f3:8e:6e:83:cd:e3:00:af:b8:bf:
de:0f:8f:dc:5f:05:06:96:bc:2e:14:8f:c8:8d:3a:
24:e2:02:41:29:02:13:28:2d:64:84:69:95:d9:d3:
3a:7a:dc:e2:32:96:34:b5:c5:3f:f9:3c:59:52:eb:
32:6f:6e:ea:0d:b1:31:fd:92:33:c1:ae:9c:9c:93:
83:cf:f5:63:47:bf:aa:54:28:44:4f:46:2d:9c:ef:
4e:5e:05:1c:02:47:14:e6:98:32:a7:3d:79:a0:69:
3f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C5:24:65:2F:68:AB:5C:77:82:B1:D3:12:9A:4E:51:55:EB:60:B5
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:02:44:c5:34:b0:df:16:bb:a9:2d:df:31:a6:3b:8d:e6:b0:
58:dd:2c:89:be:64:57:38:89:0e:bc:00:88:50:75:9b:4e:a3:
fb:cb:24:19:6e:e9:44:d7:78:45:62:04:6c:89:33:86:8e:36:
59:47:60:b1:44:f6:38:3c:fc:30:aa:cc:e0:9b:a4:cd:92:f9:
8d:87:1f:ee:b2:f7:d5:4a:d9:b5:13:58:99:33:08:74:13:ae:
1e:51:97:b1:bf:0c:26:22:99:88:02:2a:f3:44:ad:25:13:7c:
50:cc:02:dd:9d:5e:db:ea:42:57:bc:d9:9e:38:af:94:86:60:
86:c2:c2:55:38:d7:07:07:29:4d:f4:14:e5:82:34:68:fe:07:
cc:54:54:af:3f:67:2f:1f:38:c1:9e:d2:3f:35:6b:9c:1f:a5:
ef:40:d1:76:39:eb:ff:ba:4e:59:a6:16:5f:e4:d4:8e:5d:c6:
56:15:b9:1b:89:ba:c9:a0:5b:ed:0b:d4:65:52:4b:9f:47:c5:
43:1e:6c:bf:57:a5:0a:f5:4e:d1:55:c0:95:f8:30:f8:ac:ea:
e5:f3:8a:e5:6b:2c:2c:f3:43:ea:c1:b6:11:33:05:ba:64:4d:
37:38:37:94:fd:3e:c9:9a:f2:d1:2d:0d:9c:cb:93:c5:1d:fb:
27:1b:93:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:38:17 2026 by rpki-client