Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
File: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft (raw, json)
Hash identifier: ghUjxNPBDH5kgPf4Y9E4ajh3LGgbNc2ymsJLXqfTWuo=
Subject key identifier: 36:6F:0F:60:C2:20:B1:4A:6B:42:97:D7:2D:7F:2A:3E:E6:FA:0B:8F
Authority key identifier: D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
Certificate issuer: /CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Certificate serial: 019E1DC72DBE0EBB7BB95D5F19171BFF9D9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
Manifest number: 123D
Signing time: Tue 12 May 2026 20:00:53 +0000
Manifest this update: Tue 12 May 2026 20:00:53 +0000
Manifest next update: Wed 13 May 2026 20:00:53 +0000
Files and hashes: 1: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl (hash: DB/tNb4VA69rgYzdwBz9nhTg80Fx2PSaAvhdJTsrMoA=)
2: nVcrQjhWQvZv3MpiEu7OA3dqEsU.roa (hash: q6SGNZPGxWCvS2kjA8Hhq7jz4Krm0km/a67HNcgbwrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:2d:be:0e:bb:7b:b9:5d:5f:19:17:1b:ff:9d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Validity
Not Before: May 12 20:00:53 2026 GMT
Not After : May 13 20:00:53 2026 GMT
Subject: CN=366f0f60c220b14a6b4297d72d7f2a3ee6fa0b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8a:cf:97:27:fb:4b:cf:6f:b8:81:52:7c:a0:
4e:87:1a:c7:1a:b1:3d:34:0f:bf:15:99:66:7b:b1:
5c:1c:a4:6c:0d:40:55:2b:d3:85:54:57:29:44:49:
40:1d:a9:95:b2:b8:c2:37:7f:5c:24:37:f9:de:de:
7d:61:d5:ad:83:c8:aa:0b:98:ce:a0:65:ca:ec:48:
23:47:7a:e4:07:6e:cb:45:a8:f2:6c:dd:82:92:45:
f3:cf:5b:e3:f4:a2:3e:99:2d:a5:de:ee:5e:ba:b3:
52:45:a5:29:dc:bf:c4:18:ab:50:e7:04:01:49:32:
e4:4c:0a:1f:2d:88:24:49:0e:fd:7f:e7:7e:42:fb:
2f:13:fc:b6:81:3b:ce:7b:e5:de:e1:c6:8d:fa:5a:
83:f9:29:d7:99:0c:14:c7:f1:f9:97:fc:68:2e:e5:
96:34:29:fc:de:5f:eb:00:9c:18:ad:5c:84:20:6c:
47:67:31:cd:7a:9e:a1:8d:6d:95:83:40:be:39:ec:
6b:dc:4e:15:5d:77:7b:26:aa:7b:30:66:87:bf:01:
48:c7:d5:96:60:de:07:76:ea:23:03:3c:2b:6d:38:
70:17:a2:a4:14:0e:bb:9e:cb:eb:91:5c:f7:72:2e:
0f:78:c4:2f:c1:8f:02:fb:b3:3d:ac:a0:3c:e6:01:
60:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6F:0F:60:C2:20:B1:4A:6B:42:97:D7:2D:7F:2A:3E:E6:FA:0B:8F
X509v3 Authority Key Identifier:
keyid:D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:89:90:b1:5b:aa:e3:11:3f:d7:40:0a:84:ad:2f:be:41:48:
96:c0:48:cb:db:d8:56:2e:88:08:0d:08:b8:b0:90:af:31:65:
31:f2:6f:28:9f:dd:ee:2a:22:13:45:ba:91:dc:de:a2:36:40:
5f:c6:6c:0a:04:99:7e:82:d4:7d:a6:55:f2:6a:3b:88:3a:48:
1f:55:65:a1:58:12:c0:cf:95:26:0e:6a:38:97:19:d3:a3:15:
bf:3b:26:31:cd:c7:79:37:63:c3:47:05:36:fb:d0:fd:9c:24:
71:09:f0:3e:d4:a8:ce:e2:d7:48:d1:4c:91:cd:97:85:0f:b4:
a6:df:4f:4f:18:b9:74:62:89:53:c3:d1:1b:7c:d4:3b:cf:c8:
e3:91:5e:33:03:a9:b1:4c:d1:d3:45:17:6e:d0:8a:ce:6e:fc:
34:24:45:f1:7c:ed:8e:fd:f7:59:fd:4c:1c:86:b2:ed:98:31:
89:59:8a:56:36:83:ca:6b:cd:6d:f1:52:c5:d5:e8:d5:35:94:
a6:76:1d:74:01:fd:0e:4a:85:33:08:98:91:7a:48:0b:30:ac:
d4:14:89:e9:e6:5f:eb:b7:de:6b:d6:1d:56:5c:0c:dd:ca:9f:
f8:98:49:38:dd:b0:76:13:2b:8c:54:fa:44:e1:0e:37:ea:65:
db:d9:fb:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:02:27 2026 by rpki-client