Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
File: n7bU2YfQBKAPopfmnCaOt189mkA.mft (raw, json)
Hash identifier: w17u65SeK0u/nVqgvVtzEP4y9l2ZksZOCoBz/Xd4bvg=
Subject key identifier: F2:43:38:57:FD:2A:56:99:BC:59:B5:94:82:6B:FF:34:56:28:FA:75
Authority key identifier: 9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
Certificate issuer: /CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Certificate serial: 019D26CCE27BF1F6579F3B5F7DE0618C6B09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
Manifest number: 1065
Signing time: Wed 25 Mar 2026 21:00:54 +0000
Manifest this update: Wed 25 Mar 2026 21:00:54 +0000
Manifest next update: Thu 26 Mar 2026 21:00:54 +0000
Files and hashes: 1: KG8loLuhTcIMjieWs1KfwpWofRk.roa (hash: RxfX57Z0L5BZOB9gWwKFQnTlLw89l17p5HkheRVermQ=)
2: n7bU2YfQBKAPopfmnCaOt189mkA.crl (hash: 89fwgHuT0D2FddHRfTnUclegt9Hd5Fh7eduIddUjH8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:e2:7b:f1:f6:57:9f:3b:5f:7d:e0:61:8c:6b:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fb6d4d987d004a00fa297e69c268eb75f3d9a40
Validity
Not Before: Mar 25 21:00:54 2026 GMT
Not After : Mar 26 21:00:54 2026 GMT
Subject: CN=f2433857fd2a5699bc59b594826bff345628fa75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:46:8c:42:a9:fe:91:9e:8f:10:7a:3d:03:8c:
74:3e:51:bf:91:9d:c0:78:dc:be:7d:aa:df:d5:49:
b3:37:0d:43:43:9e:71:9a:9b:b8:d6:d9:51:d0:25:
25:94:21:68:c0:82:cf:7a:de:ee:37:ce:33:56:7b:
ab:b5:a3:5f:c3:b7:c5:a9:94:e3:b8:56:50:02:b4:
07:80:34:63:bd:0f:0a:1b:3a:98:56:5a:03:96:40:
ea:c3:ed:cd:38:0a:b3:53:21:e5:00:48:aa:79:49:
e7:cc:f8:20:99:fc:20:47:08:0c:56:7d:66:be:5c:
0d:2e:f3:76:00:85:c9:a8:39:f1:74:c1:ac:63:4b:
07:5f:a5:7a:09:c0:01:62:ab:6a:42:f4:1b:45:6b:
25:55:30:34:f6:7d:8b:fb:ce:3a:e9:b2:84:e2:56:
17:ed:ab:54:ae:6a:c3:b8:c3:e9:28:8e:b0:c7:98:
c1:67:bb:98:f9:66:2d:a1:5c:f9:b9:d5:81:85:90:
85:8f:d5:93:91:03:c1:b1:3a:19:c8:bd:1e:09:d6:
3e:16:44:4c:be:58:cb:46:96:09:47:0d:bf:67:c9:
ce:f9:a6:b5:d3:59:fe:dd:1a:e8:15:56:7a:ec:bf:
d4:74:42:5d:46:ef:d0:e2:9c:62:78:87:86:9f:16:
3c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:43:38:57:FD:2A:56:99:BC:59:B5:94:82:6B:FF:34:56:28:FA:75
X509v3 Authority Key Identifier:
keyid:9F:B6:D4:D9:87:D0:04:A0:0F:A2:97:E6:9C:26:8E:B7:5F:3D:9A:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7bU2YfQBKAPopfmnCaOt189mkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/02400f-7802-44e7-8527-8b291e26d1d9/1/n7bU2YfQBKAPopfmnCaOt189mkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:f7:6a:16:d1:ea:4f:4b:11:2d:1e:d2:2a:cd:d1:cf:d9:80:
d2:4a:a4:d6:c4:d9:f0:19:b4:15:7a:fa:8c:51:2c:2b:15:22:
80:d1:45:ba:e6:5f:49:b9:77:ee:f8:86:a6:e0:88:72:38:30:
03:ab:1a:0a:c2:14:63:0a:ae:6b:a7:ef:78:a3:10:a4:52:3a:
da:a2:79:af:91:43:43:2e:fd:f4:71:0d:b5:b8:c5:b2:03:4d:
0f:44:b6:1d:2a:d1:a8:0b:aa:09:32:a3:e3:66:90:e4:65:09:
5b:c6:21:26:68:1e:18:68:32:18:06:d8:83:ef:59:e9:f7:55:
14:ac:29:d9:c1:e2:9f:04:24:48:c4:92:19:75:74:77:9b:cd:
f7:8a:6d:6c:ba:08:52:7a:88:94:8b:9c:59:9e:02:83:47:b2:
f9:83:b6:7f:05:7b:39:68:35:f0:9a:72:34:fa:3e:39:3f:53:
d1:93:50:03:f4:99:06:aa:98:53:d3:a0:5e:4c:20:2d:83:9c:
3e:cb:4d:2f:1e:64:25:43:53:73:bb:fe:ca:53:ff:74:09:4a:
97:b5:38:ed:d9:62:bd:4f:8a:f7:ab:2e:46:4f:ff:97:e7:c8:
1f:55:eb:2b:6d:39:6a:0f:3b:fd:43:37:8b:9a:92:0d:3e:35:
7a:f9:19:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:40:09 2026 by rpki-client