Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
File: rx7uIsUBU2MRinHSapRj3JN0uig.mft (raw, json)
Hash identifier: HayDeuysHIFT9blg5nsW4pkvNkRQoKaXxZ/WIt9vNEY=
Subject key identifier: 4B:15:DF:A8:7A:94:10:AA:49:E8:F6:30:D6:B3:9D:B3:F6:C6:30:42
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 019DA3415F8D6368CD5D361B2B67EAD00ECB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
Manifest number: 0C89
Signing time: Sun 19 Apr 2026 01:01:03 +0000
Manifest this update: Sun 19 Apr 2026 01:01:03 +0000
Manifest next update: Mon 20 Apr 2026 01:01:03 +0000
Files and hashes: 1: lLnIh6czm0KWIQr0ccsD4cdToLc.roa (hash: kVLAgXuMBEFIQbZq7gNbnr/z2Vz4LT7MCr2JgEg80uc=)
2: rx7uIsUBU2MRinHSapRj3JN0uig.crl (hash: Yu+TOolmgbMueIUKG2MhScR7/kbvL70HvOtAplKF5L8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:5f:8d:63:68:cd:5d:36:1b:2b:67:ea:d0:0e:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Apr 19 01:01:03 2026 GMT
Not After : Apr 20 01:01:03 2026 GMT
Subject: CN=4b15dfa87a9410aa49e8f630d6b39db3f6c63042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fc:01:92:f4:67:e1:eb:4a:f1:c7:5c:3e:45:
cb:95:ba:23:69:84:56:c7:31:a1:c3:eb:ab:69:42:
23:fa:ca:7c:09:60:a5:10:95:01:cf:31:72:28:4f:
2b:77:a0:cb:db:9a:08:82:33:63:b8:7b:19:aa:29:
8c:21:6a:8f:dc:9f:3a:79:4f:ff:e6:1e:2d:e3:f9:
2a:0c:0e:f7:ec:8c:8f:72:1f:7f:9d:c6:60:f7:3e:
a8:c8:57:e7:26:47:4f:0a:fb:0e:cd:d5:fb:88:f9:
4f:93:b3:74:3f:ff:e8:da:b2:eb:91:25:94:64:a8:
99:5a:b8:86:7d:c4:c5:cc:d4:f1:2d:f3:51:4e:f1:
0d:66:7f:af:3e:32:05:b1:e8:e6:d6:75:2b:c9:3c:
08:5c:a3:99:ed:5e:11:66:37:18:bf:ce:05:81:26:
85:c3:cd:56:55:00:e9:7c:f3:c6:a6:97:4c:eb:40:
80:2e:51:4b:d9:80:e3:1a:04:5e:64:79:e4:b4:25:
5b:1c:bc:e5:94:f9:ef:25:3e:0c:19:4a:ca:a7:83:
a9:02:aa:55:99:11:76:5b:34:96:d0:59:7e:2f:80:
5d:63:37:39:cc:c4:ed:c8:90:32:66:bb:f4:02:c7:
8b:a6:c3:73:96:37:61:4f:5b:6c:0d:96:3a:46:20:
57:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:15:DF:A8:7A:94:10:AA:49:E8:F6:30:D6:B3:9D:B3:F6:C6:30:42
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:d3:31:6f:9f:75:ff:09:e4:c1:4e:a1:30:68:19:5f:e1:83:
bd:27:de:54:e0:dd:17:b3:a4:ea:5b:08:ea:52:0b:e3:bb:45:
18:52:a1:98:63:c9:b1:6d:26:7d:e3:bb:db:0d:cc:9d:43:ee:
67:11:fe:4d:4a:08:a6:c4:41:7c:80:a3:72:44:49:e1:bb:5b:
08:c8:7e:18:66:d5:90:b3:79:30:30:a0:0b:8b:5e:24:c8:90:
23:fd:b2:a7:24:fe:e7:90:7a:52:9a:1e:8d:1f:d7:d4:c4:31:
c2:92:c7:4e:5d:3a:cb:7d:ad:13:ad:d9:92:95:db:d4:e8:31:
cc:26:e9:63:5c:5e:fe:ee:cb:2d:65:cb:2a:47:77:bd:57:1e:
55:57:ae:06:14:2a:5f:8c:49:c1:97:f2:11:9a:9a:36:5d:76:
7b:ed:d5:a1:0b:57:21:39:9b:67:59:af:08:ea:7d:b8:56:ef:
97:56:af:81:e0:90:cb:7a:fb:23:d3:1d:a9:24:dd:fd:18:ad:
ff:93:16:d6:6b:f3:67:49:d2:4a:2e:16:b6:ce:f3:c5:c1:dc:
81:fc:7e:31:57:87:fd:0a:3e:25:61:9b:18:d1:f8:51:9f:fe:
28:76:5f:4f:9a:5f:02:46:cc:a9:02:30:01:75:87:87:51:1e:
ae:42:80:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:48:26 2026 by rpki-client