Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
File: X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft (raw, json)
Hash identifier: 03/9sOLXqUc4NIY3NNsyc3yKuGfKVMBCnU2bs0NAN9g=
Subject key identifier: E6:F6:0A:5C:CC:47:CA:2D:0B:1D:B6:DB:48:E5:C6:22:7D:B5:9D:71
Authority key identifier: 5F:B7:46:6D:8E:92:B2:1C:7B:1A:A1:35:F3:0E:FE:6E:73:E1:F8:6C
Certificate issuer: /CN=5fb7466d8e92b21c7b1aa135f30efe6e73e1f86c
Certificate serial: 019D2A050AC11D3E51AB2CB3646566493F1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
Manifest number: 0EA2
Signing time: Thu 26 Mar 2026 12:01:06 +0000
Manifest this update: Thu 26 Mar 2026 12:01:06 +0000
Manifest next update: Fri 27 Mar 2026 12:01:06 +0000
Files and hashes: 1: X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl (hash: twR3wof56XYpY6ZpPb0TK0I+8fUkqQALN+Ius/mSr4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:05:0a:c1:1d:3e:51:ab:2c:b3:64:65:66:49:3f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fb7466d8e92b21c7b1aa135f30efe6e73e1f86c
Validity
Not Before: Mar 26 12:01:06 2026 GMT
Not After : Mar 27 12:01:06 2026 GMT
Subject: CN=e6f60a5ccc47ca2d0b1db6db48e5c6227db59d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:31:74:e6:00:34:a5:b4:38:72:43:2b:9d:a0:
38:3b:8c:12:b5:8b:6b:03:50:2e:f0:0b:8a:5e:fa:
54:36:51:71:84:ce:32:c6:6e:d2:a5:88:91:fa:58:
ea:aa:0d:0b:b2:33:3a:aa:62:0d:cd:19:69:72:5f:
40:55:bd:f6:b0:80:61:f8:3c:5c:6a:55:5c:1b:b7:
e0:6c:1f:99:96:0e:91:52:7f:ea:df:69:67:9b:a9:
3a:db:64:d2:9a:64:c5:fc:88:b2:fa:0f:f3:f6:23:
52:53:3e:5d:4b:5c:21:cd:a8:54:07:2b:8e:33:43:
46:ad:b7:75:42:6d:ce:33:e2:50:e2:9e:16:19:39:
2a:5e:0c:d3:b2:51:94:92:2a:47:41:10:9c:62:0d:
f2:02:f0:d4:81:14:6e:9e:31:ca:40:bf:17:60:fa:
40:19:fe:4e:df:e8:f2:6b:b0:09:dc:62:5d:38:06:
df:83:5e:fd:e6:81:94:49:72:a1:fa:e2:ff:db:35:
60:d5:19:b0:a8:8e:6b:78:a8:97:11:56:6d:d0:e2:
cb:0d:ed:60:ef:5e:82:54:3a:45:87:bc:52:5a:f9:
14:6e:7a:e5:0d:97:93:44:d8:ea:e5:48:81:e1:4d:
2d:6a:7a:bd:94:e6:43:d6:bc:c3:fc:ae:c5:db:97:
a6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F6:0A:5C:CC:47:CA:2D:0B:1D:B6:DB:48:E5:C6:22:7D:B5:9D:71
X509v3 Authority Key Identifier:
keyid:5F:B7:46:6D:8E:92:B2:1C:7B:1A:A1:35:F3:0E:FE:6E:73:E1:F8:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:3a:11:ae:1c:28:56:fa:b2:4e:e3:9b:86:83:b6:53:5f:bc:
78:9c:7f:d7:53:3e:c6:34:77:6c:14:64:f7:56:8a:5d:5c:89:
8d:a9:75:7a:07:c4:43:1e:0d:94:35:4e:55:30:27:04:40:e4:
3d:33:75:6b:23:12:4e:3e:ab:e5:86:ec:30:01:bf:46:30:ad:
d3:32:43:67:f3:ca:75:6c:cf:96:f8:96:5d:9d:e4:9d:99:23:
05:78:fc:f6:37:71:a6:d0:89:b2:d6:e5:cb:7a:b3:a9:b8:96:
18:3c:bd:90:a8:db:e5:57:38:e7:d2:ad:b0:25:cf:76:98:eb:
2d:92:51:83:34:4a:d8:27:bc:26:f8:22:f5:16:b9:02:d9:80:
76:af:56:c1:e5:10:81:5f:93:36:d1:7e:9d:39:f9:a5:01:ac:
d0:54:b0:51:03:5c:55:19:1b:11:a7:fd:ee:0d:28:4a:34:c2:
e2:e1:48:b9:8d:47:f0:1c:f8:8f:41:1a:b6:78:87:a4:bf:1d:
24:e3:6d:82:de:b2:9a:ce:90:bb:3e:68:44:04:38:61:3b:cf:
35:5b:80:6c:9f:c9:68:2f:bc:26:e4:5c:18:5c:36:6c:10:47:
bd:1f:68:4f:08:fa:85:b2:37:b9:f5:f2:11:43:32:5e:2b:45:
95:9e:82:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qBQrBHT5RqyyzZGVmST8fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmYjc0NjZkOGU5MmIyMWM3YjFhYTEzNWYzMGVmZTZlNzNl
MWY4NmMwHhcNMjYwMzI2MTIwMTA2WhcNMjYwMzI3MTIwMTA2WjAzMTEwLwYDVQQD
EyhlNmY2MGE1Y2NjNDdjYTJkMGIxZGI2ZGI0OGU1YzYyMjdkYjU5ZDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzF05gA0pbQ4ckMrnaA4O4wStYtr
A1Au8AuKXvpUNlFxhM4yxm7SpYiR+ljqqg0LsjM6qmINzRlpcl9AVb32sIBh+Dxc
alVcG7fgbB+Zlg6RUn/q32lnm6k622TSmmTF/Iiy+g/z9iNSUz5dS1whzahUByuO
M0NGrbd1Qm3OM+JQ4p4WGTkqXgzTslGUkipHQRCcYg3yAvDUgRRunjHKQL8XYPpA
Gf5O3+jya7AJ3GJdOAbfg1795oGUSXKh+uL/2zVg1RmwqI5reKiXEVZt0OLLDe1g
716CVDpFh7xSWvkUbnrlDZeTRNjq5UiB4U0tanq9lOZD1rzD/K7F25em6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOb2ClzMR8otCx2220jlxiJ9tZ1xMB8GA1UdIwQY
MBaAFF+3Rm2OkrIcexqhNfMO/m5z4fhsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZWQyODktZDY2MS00MzQzLWEyZTAt
MGI5MjY3OWQzNjI1LzEvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS83ZWQyODktZDY2MS00MzQzLWEyZTAtMGI5MjY3OWQzNjI1
LzEvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAozoRrhwo
VvqyTuObhoO2U1+8eJx/11M+xjR3bBRk91aKXVyJjal1egfEQx4NlDVOVTAnBEDk
PTN1ayMSTj6r5YbsMAG/RjCt0zJDZ/PKdWzPlviWXZ3knZkjBXj89jdxptCJstbl
y3qzqbiWGDy9kKjb5Vc459KtsCXPdpjrLZJRgzRK2Ce8Jvgi9Ra5AtmAdq9WweUQ
gV+TNtF+nTn5pQGs0FSwUQNcVRkbEaf97g0oSjTC4uFIuY1H8Bz4j0EatniHpL8d
JONtgt6yms6Quz5oRAQ4YTvPNVuAbJ/JaC+8JuRcGFw2bBBHvR9oTwj6hbI3ufXy
EUMyXitFlZ6C+g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 22:50:18 2026 by rpki-client