Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
File: 7sMTGXauon0XHGwmepjT84KmGio.mft (raw, json)
Hash identifier: ToqoV+jS2Ga0P/wLiMZ7NtzmcpueuSq2KFw8jdPHJpM=
Subject key identifier: 3B:B4:A7:7E:A5:C8:EF:9F:AD:BA:A0:3E:22:12:83:68:6C:5D:E9:65
Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Certificate serial: 019E1D90381DFB0C7BBB49D11ACBD7A6657C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
Manifest number: 12FD
Signing time: Tue 12 May 2026 19:00:51 +0000
Manifest this update: Tue 12 May 2026 19:00:51 +0000
Manifest next update: Wed 13 May 2026 19:00:51 +0000
Files and hashes: 1: 7sMTGXauon0XHGwmepjT84KmGio.crl (hash: kbjBWuyPca0E5zs/qQK7eFJItsAx5w/QFlmMspjVeI8=)
2: L_bdGxJHykWkh6lnI23znPb9ZRc.roa (hash: ZEX+GgljqjjHrDsG1Iee4BuX7n/kzIjwqN8LRfjYRoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:38:1d:fb:0c:7b:bb:49:d1:1a:cb:d7:a6:65:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Validity
Not Before: May 12 19:00:51 2026 GMT
Not After : May 13 19:00:51 2026 GMT
Subject: CN=3bb4a77ea5c8ef9fadbaa03e221283686c5de965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fb:21:3c:6f:db:81:59:35:b3:8e:1c:5a:60:
a5:17:00:63:53:6b:47:c0:d5:4d:4a:c7:c7:23:d1:
46:4b:0c:87:b0:17:1c:9e:90:0b:da:da:61:4d:52:
2c:7e:cb:ee:7a:51:df:83:e0:a6:db:59:d2:ec:eb:
54:4b:33:4b:05:b7:29:0b:fa:4a:5b:54:54:e2:ad:
a5:c7:ea:c3:ec:44:62:90:e1:d5:48:78:ce:ac:69:
98:2b:34:53:dc:99:83:8f:4b:7a:c5:aa:0d:f6:85:
e5:66:0e:64:40:73:16:ee:0a:f5:83:47:0a:eb:1a:
de:fa:2f:c9:bd:ff:92:11:d3:9d:f6:98:34:5d:ca:
68:d3:7f:c0:b0:bf:ee:78:9e:47:7e:c3:70:e3:1b:
7c:72:06:fe:20:e9:3c:93:37:9a:f8:67:89:43:3e:
6a:d0:fa:cb:7e:7b:58:40:57:64:fa:65:00:07:dd:
c8:dd:e9:8e:ba:94:17:3b:5b:be:45:ec:41:0c:37:
96:67:b9:5a:02:6b:46:fd:a9:de:ae:0c:33:44:0c:
c8:26:dc:a1:54:e8:f0:37:86:4e:2d:0d:a1:c6:d4:
ab:52:3d:9f:f3:93:5b:8f:be:54:75:ff:ee:d2:0f:
b7:b0:26:04:2a:bc:3a:90:62:5e:fe:c6:fa:d5:d1:
08:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B4:A7:7E:A5:C8:EF:9F:AD:BA:A0:3E:22:12:83:68:6C:5D:E9:65
X509v3 Authority Key Identifier:
keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:02:bd:de:94:0f:be:92:3e:0b:b8:e4:3b:36:2d:6d:31:11:
79:36:f7:c1:a2:14:bf:a9:a4:be:6b:3d:20:1b:cc:81:67:ad:
1b:7b:aa:1b:9c:5f:d4:60:02:e6:9f:bd:f9:13:fd:cb:2c:9f:
f6:7e:a5:16:81:e1:12:9f:b9:ec:40:85:96:45:dc:9f:a9:a9:
07:f5:91:66:19:60:8e:80:f1:35:60:f8:be:21:96:14:30:1a:
ac:4b:95:0c:d7:67:d7:e9:9c:ae:35:b3:e5:7a:28:96:a7:b4:
c5:2a:10:77:d9:42:68:02:1e:12:73:8a:7d:2a:30:8f:73:44:
92:1e:c1:bb:32:36:98:e3:b4:62:19:10:87:19:1e:fe:3d:78:
9a:06:32:0f:4e:7c:a7:30:c6:0d:b5:ce:20:52:6b:4f:62:9e:
14:da:af:b5:34:5c:d3:84:5e:f5:f6:a8:d2:a2:dd:fb:54:03:
e3:6b:c7:05:fd:7a:cf:aa:1e:c3:08:41:02:df:25:2e:2d:40:
7c:3a:39:24:4c:4c:57:bb:64:23:de:a6:df:ca:cf:f2:f5:b7:
7a:7a:9b:bb:7c:ed:60:2b:b1:90:9b:41:7e:1e:a3:5e:13:e9:
67:9c:42:79:cf:db:0b:1a:47:a6:8e:1b:1a:74:65:64:bc:12:
7d:ca:b0:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkDgd+wx7u0nRGsvXpmV8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYzMxMzE5NzZhZWEyN2QxNzFjNmMyNjdhOThkM2YzODJh
NjFhMmEwHhcNMjYwNTEyMTkwMDUxWhcNMjYwNTEzMTkwMDUxWjAzMTEwLwYDVQQD
EygzYmI0YTc3ZWE1YzhlZjlmYWRiYWEwM2UyMjEyODM2ODZjNWRlOTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvshPG/bgVk1s44cWmClFwBjU2tH
wNVNSsfHI9FGSwyHsBccnpAL2tphTVIsfsvuelHfg+Cm21nS7OtUSzNLBbcpC/pK
W1RU4q2lx+rD7ERikOHVSHjOrGmYKzRT3JmDj0t6xaoN9oXlZg5kQHMW7gr1g0cK
6xre+i/Jvf+SEdOd9pg0Xcpo03/AsL/ueJ5HfsNw4xt8cgb+IOk8kzea+GeJQz5q
0PrLfntYQFdk+mUAB93I3emOupQXO1u+RexBDDeWZ7laAmtG/anergwzRAzIJtyh
VOjwN4ZOLQ2hxtSrUj2f85Nbj75Udf/u0g+3sCYEKrw6kGJe/sb61dEIfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDu0p36lyO+frbqgPiISg2hsXellMB8GA1UdIwQY
MBaAFO7DExl2rqJ9FxxsJnqY0/OCphoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEt
NGNkM2U3MzIxNmYxLzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEtNGNkM2U3MzIxNmYx
LzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANgK93pQP
vpI+C7jkOzYtbTEReTb3waIUv6mkvms9IBvMgWetG3uqG5xf1GAC5p+9+RP9yyyf
9n6lFoHhEp+57ECFlkXcn6mpB/WRZhlgjoDxNWD4viGWFDAarEuVDNdn1+mcrjWz
5Xoolqe0xSoQd9lCaAIeEnOKfSowj3NEkh7BuzI2mOO0YhkQhxke/j14mgYyD058
pzDGDbXOIFJrT2KeFNqvtTRc04Re9fao0qLd+1QD42vHBf16z6oewwhBAt8lLi1A
fDo5JExMV7tkI96m38rP8vW3enqbu3ztYCuxkJtBfh6jXhPpZ5xCec/bCxpHpo4b
GnRlZLwSfcqwtw==
-----END CERTIFICATE-----
Generated at Wed May 13 01:00:52 2026 by rpki-client