Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
File: rx7uIsUBU2MRinHSapRj3JN0uig.mft (raw, json)
Hash identifier: MyhfIrm0cvF3JKMuiP4dlTfOV55eQCGQD0IrPBhYniw=
Subject key identifier: 22:B4:91:DD:3B:C6:0B:56:E3:D5:CF:55:2D:72:FE:BB:8F:5D:F1:43
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 019D9998FA750DEC234D126FDE685D2E4249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
Manifest number: 0C84
Signing time: Fri 17 Apr 2026 04:00:32 +0000
Manifest this update: Fri 17 Apr 2026 04:00:32 +0000
Manifest next update: Sat 18 Apr 2026 04:00:32 +0000
Files and hashes: 1: lLnIh6czm0KWIQr0ccsD4cdToLc.roa (hash: kVLAgXuMBEFIQbZq7gNbnr/z2Vz4LT7MCr2JgEg80uc=)
2: rx7uIsUBU2MRinHSapRj3JN0uig.crl (hash: k+OOtGhkc51sfB7pXFBjEy+42w0kUIoLbJoLRpW4buM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:fa:75:0d:ec:23:4d:12:6f:de:68:5d:2e:42:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Apr 17 04:00:32 2026 GMT
Not After : Apr 18 04:00:32 2026 GMT
Subject: CN=22b491dd3bc60b56e3d5cf552d72febb8f5df143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:d0:89:1f:ea:22:65:2a:46:1e:e1:81:89:
e3:9e:e6:b8:a9:af:49:72:c2:cf:89:b7:d2:03:f4:
29:71:86:0e:26:86:5c:b8:58:dd:01:98:db:2a:a9:
bc:a1:d8:dc:cb:70:39:6c:3b:81:02:fc:9c:4c:73:
59:c7:7f:4b:fb:42:0f:a2:0c:bf:90:55:c4:4b:24:
e1:ab:87:d6:8c:16:43:a5:8d:a9:89:30:97:15:63:
34:ae:c4:60:7d:73:a9:83:6c:99:8b:00:cc:16:93:
a9:3c:50:a1:d8:ec:7b:43:6a:0d:5a:8d:6c:8c:76:
6d:7d:48:84:87:7d:5a:c4:b8:d9:d6:0e:72:95:97:
9a:30:26:13:17:6e:50:45:28:87:ee:be:77:ac:7a:
8e:5a:a8:a3:37:98:1f:b5:65:4e:db:75:37:25:c7:
7b:99:eb:20:be:1d:dc:2e:1f:82:64:9a:9c:aa:c0:
fa:c3:22:22:f6:00:09:f1:a2:89:c4:f6:a4:d3:d1:
b3:d5:05:97:06:92:df:c8:eb:5f:8d:7b:7b:a4:7c:
f7:f6:57:ad:11:fc:0d:5d:48:47:b8:cf:02:42:20:
88:28:91:bb:a1:aa:16:02:79:42:2d:35:ca:8d:8e:
4b:0a:eb:6a:eb:8b:0a:1b:48:69:f1:57:03:ad:5f:
2a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B4:91:DD:3B:C6:0B:56:E3:D5:CF:55:2D:72:FE:BB:8F:5D:F1:43
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:14:f1:30:d9:2e:20:13:62:6d:26:ea:7e:a9:21:cf:5b:0e:
c7:ad:e9:db:27:38:da:4b:6f:7f:a0:13:ac:ae:ad:2e:09:9f:
ec:88:f0:c7:bb:fb:9f:42:b8:f4:aa:2c:82:fa:b3:e7:30:84:
fa:7c:91:9c:da:06:c9:2b:25:d2:c6:29:07:fb:9e:76:88:80:
7d:a3:12:24:22:b9:34:9d:af:79:74:bc:bc:b7:d9:9d:5c:ec:
1b:e9:87:68:6a:15:7a:aa:2d:91:32:05:93:e3:45:e0:c1:dc:
19:27:47:d6:28:5c:33:04:19:bf:5d:05:52:67:5d:26:ac:e4:
3d:91:5a:49:10:b4:05:5f:2a:89:3f:0e:36:67:0a:74:f9:82:
24:1d:07:3c:8f:d1:c4:54:a9:6b:63:ac:37:89:c9:01:03:22:
73:43:20:d2:7f:70:05:67:e5:ed:44:a4:75:21:9e:7a:02:f8:
90:2a:7c:59:59:bc:80:29:ab:4a:44:7b:af:24:53:fd:59:2f:
ca:9e:86:cf:8c:d8:ac:c5:bc:49:c5:47:1e:5c:3b:71:0c:2f:
56:c9:95:a8:49:35:57:7b:3a:74:61:66:5b:41:e7:09:18:30:
6c:42:7a:f0:87:09:5f:0c:ab:3c:f1:65:3f:29:db:35:6a:b4:
63:45:05:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:47:40 2026 by rpki-client