Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
File: FNlKazCSDR96LRUXG1CPkiZkduM.mft (raw, json)
Hash identifier: MfHZ3ctelKw5UJDVlrRacM6lLduPBqSRRuwj9h4W+r8=
Subject key identifier: 18:1D:FC:C6:DD:1A:D1:67:FA:36:F0:26:66:62:73:F1:2A:DD:94:C1
Authority key identifier: 14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
Certificate issuer: /CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Certificate serial: 019D0B5595509F4E31874DF1E1FBEFC1E66E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
Manifest number: 1809
Signing time: Fri 20 Mar 2026 13:00:51 +0000
Manifest this update: Fri 20 Mar 2026 13:00:51 +0000
Manifest next update: Sat 21 Mar 2026 13:00:51 +0000
Files and hashes: 1: FNlKazCSDR96LRUXG1CPkiZkduM.crl (hash: Tv7jD2u5bZe6kyDS2Ky+iqGxy6aTIgUZvKvFFV+6zxM=)
2: LYeebYhXQ4ozTkOxDiNrlwHyTZs.roa (hash: l6hu36oMQogqFFPGyf6pGKkrBP0BChtip7eb8I8e7yY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 11:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0b:55:95:50:9f:4e:31:87:4d:f1:e1:fb:ef:c1:e6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Validity
Not Before: Mar 20 13:00:51 2026 GMT
Not After : Mar 21 13:00:51 2026 GMT
Subject: CN=181dfcc6dd1ad167fa36f026666273f12add94c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:eb:77:d2:02:6e:b6:2d:08:e8:53:f3:e7:d9:
5e:11:d5:28:d8:d1:48:89:c1:4d:da:01:98:f2:c7:
57:31:c2:89:ff:62:e1:c5:98:df:19:2d:d3:67:cb:
b4:0b:1c:7c:31:2c:80:89:fa:fe:2d:c9:9e:d2:a5:
a1:76:7b:b1:c9:fa:7b:e9:da:ea:68:b9:58:4a:43:
a6:f2:b8:5d:ab:9a:25:d4:ec:a2:0c:65:e2:6c:70:
9c:15:6f:34:eb:47:73:6c:b5:ef:a0:78:b9:38:a8:
25:a5:68:26:4c:3a:fa:ed:fe:3d:b6:ed:8f:a2:a3:
82:52:a4:9c:ad:32:eb:d9:e0:0a:4d:a8:7e:ed:5a:
8e:5d:28:96:04:74:11:ef:5c:b9:dd:76:70:0f:d9:
4d:68:2f:0b:c9:48:df:37:ec:40:55:4c:8a:b4:a5:
a8:16:4d:0a:14:98:c9:e7:2c:50:10:48:28:73:13:
78:64:a8:e7:e1:d5:d2:30:15:b0:f0:98:08:69:90:
0a:26:6c:02:d2:cf:87:be:24:44:9a:e3:c0:a5:bb:
2e:ab:c3:3b:49:99:20:f1:b3:22:0e:83:e3:cd:16:
b0:c6:cb:e5:c2:6e:f9:69:23:fe:4d:7a:0c:5c:3d:
78:f3:cb:35:1f:ca:97:fb:b0:b4:d2:f7:a5:96:20:
d4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1D:FC:C6:DD:1A:D1:67:FA:36:F0:26:66:62:73:F1:2A:DD:94:C1
X509v3 Authority Key Identifier:
keyid:14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:1e:56:22:ef:86:16:3c:3d:10:14:00:8e:8b:01:e7:e7:0d:
1e:c7:fa:57:7c:32:03:aa:37:34:9c:3c:2f:1a:d2:17:2e:2a:
ed:a6:61:af:11:bf:97:93:ea:1d:e4:2a:0b:00:d5:57:7d:7c:
93:25:85:02:de:2c:aa:b9:66:00:ac:42:e3:7d:0e:1e:aa:45:
9d:63:78:04:ac:28:1b:22:95:e7:0a:2b:a2:df:91:09:8a:30:
09:b3:16:89:44:b4:6e:1b:9c:98:b1:42:f9:23:59:50:12:22:
c4:1d:73:87:eb:b1:ec:04:92:59:07:5a:57:2c:52:c2:e6:ed:
1c:27:11:d5:3e:95:f9:d9:0b:ce:21:54:ad:61:f1:ad:aa:7c:
79:a0:9f:c6:b6:ed:b6:0c:4f:7c:7d:fb:d3:ab:58:01:2d:2f:
51:2d:b3:5a:23:97:94:71:01:4b:4a:fd:4c:5c:b6:4d:6a:1a:
6d:0f:07:ec:1d:ad:a2:a0:50:c2:d4:3c:a5:6d:d4:31:ad:d3:
ee:8f:71:10:80:41:bc:f8:bf:40:b3:d5:f8:4d:42:c7:32:74:
bc:2d:3c:67:87:18:bd:20:0d:ed:5c:57:b0:69:97:5e:15:6b:
cb:ad:ea:2e:cf:9c:84:9c:4e:01:43:b0:52:1a:d9:e5:80:8c:
69:d5:31:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 15:42:52 2026 by rpki-client