Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
File: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft (raw, json)
Hash identifier: bNF631N0+q6j/XO/yICXtk7XbKmAmbWaROEHv0gDn1U=
Subject key identifier: 16:83:D0:29:02:00:19:16:D7:30:81:10:69:BD:2D:95:7F:2C:D3:BB
Authority key identifier: D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
Certificate issuer: /CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Certificate serial: 019D2695E08BD06972274AE568E389390DF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
Manifest number: 11BD
Signing time: Wed 25 Mar 2026 20:00:49 +0000
Manifest this update: Wed 25 Mar 2026 20:00:49 +0000
Manifest next update: Thu 26 Mar 2026 20:00:49 +0000
Files and hashes: 1: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl (hash: UjmwBzEu2t2ESTvcHCPWLbJt0Og+llKgKlMFMcy8njs=)
2: nVcrQjhWQvZv3MpiEu7OA3dqEsU.roa (hash: q6SGNZPGxWCvS2kjA8Hhq7jz4Krm0km/a67HNcgbwrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:95:e0:8b:d0:69:72:27:4a:e5:68:e3:89:39:0d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Validity
Not Before: Mar 25 20:00:49 2026 GMT
Not After : Mar 26 20:00:49 2026 GMT
Subject: CN=1683d02902001916d730811069bd2d957f2cd3bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:fb:c8:59:ba:4c:07:65:5e:1e:5c:92:a1:
1c:24:91:c0:60:c1:78:87:8e:94:04:47:05:13:e6:
24:12:ac:20:56:86:c0:e7:d0:f3:d8:fe:cf:7c:1a:
28:d2:b6:7f:ec:f2:20:c3:f3:d4:07:1a:79:76:90:
a2:f6:c2:e4:67:d2:67:9d:98:0b:e5:55:b1:c6:14:
0c:8d:29:2a:8d:ce:02:db:e6:8f:e4:56:ed:55:1e:
8d:53:eb:b8:1c:5f:58:57:9a:66:2e:55:32:f4:1d:
23:20:3c:c8:97:21:d5:41:83:16:20:59:84:7f:98:
08:b9:d2:90:43:30:81:2a:b7:57:11:f5:03:80:db:
ec:34:38:8c:11:36:69:2f:43:c6:2a:a6:eb:d6:a7:
0f:01:f7:93:5d:98:ea:77:da:6d:cc:43:cd:3e:41:
3d:64:4e:04:fa:07:69:08:b9:56:d7:96:ae:91:31:
b9:76:0a:d4:8f:df:5a:6e:e3:22:06:8c:b4:fd:cc:
e8:91:f8:84:59:cb:1d:11:a1:41:2d:e4:c1:a0:17:
8f:d8:cc:06:0f:cf:2f:5e:e3:8c:33:18:a9:18:af:
cb:c9:4b:ce:61:f7:cc:fb:6c:7f:6d:9a:e7:46:84:
4e:b0:0a:03:05:b8:38:c0:35:c0:72:36:0f:d1:63:
63:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:83:D0:29:02:00:19:16:D7:30:81:10:69:BD:2D:95:7F:2C:D3:BB
X509v3 Authority Key Identifier:
keyid:D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:34:27:cc:b8:fd:8f:89:b5:be:21:4a:fe:e8:e0:ec:e8:d7:
ac:c3:03:69:eb:df:b5:c0:6b:54:1c:c1:65:00:b7:3c:a8:f8:
7e:a7:c4:6c:fa:cb:13:95:45:32:9d:91:86:51:34:30:67:99:
ce:7d:ea:c2:43:eb:4f:94:ce:89:f8:cf:46:40:e8:08:38:df:
21:bf:6e:67:8b:be:64:5e:ed:c7:75:4d:d1:32:38:30:67:28:
75:a2:ec:a1:77:40:38:a9:c6:88:34:c5:88:86:18:cf:cb:34:
04:5c:88:cd:6e:9c:3c:c7:e3:64:58:69:b5:14:10:3b:a9:bd:
a3:c4:2e:da:75:42:cb:8f:97:5a:3a:f1:1e:e7:83:58:96:40:
ca:7e:ed:70:ac:99:f4:6b:d2:7b:ae:76:4e:d2:70:b6:00:05:
00:ab:74:3d:82:35:cc:8a:76:7f:c2:56:98:c9:70:a5:9f:3d:
d6:ca:a9:73:28:2d:be:da:16:8e:d2:56:aa:80:3c:ae:02:53:
11:ef:af:25:69:35:75:02:4c:3d:15:88:3f:93:9f:5b:5e:31:
45:13:6f:b4:e7:9d:43:53:8b:8a:cc:59:62:3f:8b:2f:37:16:
13:25:58:ae:57:66:19:3b:5f:85:0d:48:6c:d3:e5:79:de:97:
11:53:fb:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:34 2026 by rpki-client