Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json)
Hash identifier: FzY4+5RUkv1C2UE8BI4Z4rxE7faSs4zD4p59n7At4Tg=
Subject key identifier: 5D:BC:E4:39:9B:6E:54:80:80:3A:DA:19:9C:78:19:33:48:1D:A1:54
Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Certificate serial: 019E1BD8932F4FA1E3FF2EF7954B36C56E34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
Manifest number: 0479
Signing time: Tue 12 May 2026 11:00:38 +0000
Manifest this update: Tue 12 May 2026 11:00:38 +0000
Manifest next update: Wed 13 May 2026 11:00:38 +0000
Files and hashes: 1: 6_ZblNm9ZRmYGkapxWHWsVXv62A.roa (hash: l1m5QGoRdp/fQXdkGDAgYT7UXYr7yNDfK4bT6u+JkJo=)
2: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: EhguUAN+p6VCm0VPuQKrOQ0kVDADlqbUbtigCTzy7vg=)
3: nnVHZXt9DivgToJiSfHRWDPCX58.asa (hash: /8k8/1a46VaQnelGrFv4w1ybQa3EbefqWYHF9uEGkc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 11:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:d8:93:2f:4f:a1:e3:ff:2e:f7:95:4b:36:c5:6e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Validity
Not Before: May 12 11:00:38 2026 GMT
Not After : May 13 11:00:38 2026 GMT
Subject: CN=5dbce4399b6e5480803ada199c781933481da154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9f:e1:4e:71:58:0a:ab:af:82:f6:bb:ec:64:
25:1f:67:7d:06:21:3c:af:2a:7c:35:8f:69:e2:ff:
20:43:a8:56:6d:e6:52:4d:6c:e8:09:67:e9:76:0f:
d0:cf:6f:24:8f:14:15:bc:a4:21:ce:74:36:8b:bf:
57:78:a0:91:d9:03:b7:94:16:43:bf:87:50:56:65:
55:b7:e9:20:44:c8:69:e7:ac:32:a0:47:f8:9d:45:
46:ee:22:98:7e:f9:c1:d3:69:de:73:29:c7:d8:14:
ff:6c:bd:d0:3b:39:83:59:c7:7f:ce:00:0c:ad:e8:
a7:fa:61:30:77:22:5d:9a:f5:70:73:fe:68:30:a6:
f1:5d:2f:0f:d4:1d:7a:a9:28:b0:d6:ca:f7:4b:9b:
f2:f5:8b:8b:35:f9:de:d0:79:6d:bf:17:51:9b:7e:
ec:7c:ef:99:e2:ea:2a:24:b8:cd:4b:21:fb:a5:f3:
ed:af:f1:8a:f8:45:8f:18:cd:0e:ba:3a:3d:c7:e5:
10:8d:a8:96:12:c0:43:cf:d0:a6:39:2c:43:b7:c9:
85:98:f9:c4:55:99:49:a9:42:04:e9:97:9f:5b:41:
c0:ee:2d:52:ba:de:98:be:73:61:4e:f1:21:1e:ce:
41:b5:fe:53:07:90:49:6e:9d:ea:8c:be:de:0d:a5:
f8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BC:E4:39:9B:6E:54:80:80:3A:DA:19:9C:78:19:33:48:1D:A1:54
X509v3 Authority Key Identifier:
keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:80:2e:cb:3d:70:65:b9:e9:f6:56:69:29:f0:41:42:cd:0d:
4b:0d:42:be:3f:4b:19:81:e1:d8:8d:0f:67:cb:c4:2f:6b:b7:
42:ff:21:b6:84:96:5e:12:8d:7c:b8:ff:93:89:6d:e4:0f:27:
c3:d5:e2:3c:52:fd:e0:8d:7e:e0:82:a2:49:5f:39:73:1a:04:
20:9b:24:59:fd:ea:17:69:14:bf:00:63:8d:0e:33:fe:14:9b:
62:ab:f2:d3:ec:2b:00:6c:54:6c:cc:56:4f:fc:02:9f:62:c5:
21:a5:e7:91:5b:53:99:8e:66:b7:ab:cc:6d:5b:b0:74:65:c6:
6a:5c:18:27:ec:53:4f:d2:cc:44:28:1b:cf:6b:96:58:44:b2:
4f:e2:63:ce:82:3c:7a:58:31:47:53:73:8e:8a:2b:f9:0f:39:
6f:96:e5:54:73:73:8f:2b:c1:15:a2:05:26:d3:a3:d0:83:fa:
d7:8d:e5:03:69:10:92:29:4a:42:4a:22:f8:44:8a:f0:61:bf:
70:43:b3:23:85:30:61:ba:52:9c:c4:fe:5f:5e:7f:13:72:63:
2d:a4:03:f0:03:d8:97:c1:0b:83:47:45:ea:59:3e:81:65:47:
52:a6:52:aa:ec:61:6f:81:45:a4:6e:a6:c8:60:90:07:7c:13:
1e:80:1a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:35 2026 by rpki-client