Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
File: FNlKazCSDR96LRUXG1CPkiZkduM.mft (raw, json)
Hash identifier: /LM3s7DzV0cxV500Z5ZqFPJBwe9MhnWGKRdRX15Qmyw=
Subject key identifier: B4:7C:7F:8A:04:DD:BD:72:61:F9:27:1E:0D:0F:A9:48:FE:0A:13:79
Authority key identifier: 14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
Certificate issuer: /CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Certificate serial: 019D09670D15A432CB21ED84B225063142CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
Manifest number: 1808
Signing time: Fri 20 Mar 2026 04:00:41 +0000
Manifest this update: Fri 20 Mar 2026 04:00:41 +0000
Manifest next update: Sat 21 Mar 2026 04:00:41 +0000
Files and hashes: 1: FNlKazCSDR96LRUXG1CPkiZkduM.crl (hash: KjUhH48/G5Ui7jgDne33NwHNBpO2OzORH8JegGIzsJE=)
2: LYeebYhXQ4ozTkOxDiNrlwHyTZs.roa (hash: l6hu36oMQogqFFPGyf6pGKkrBP0BChtip7eb8I8e7yY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:09:67:0d:15:a4:32:cb:21:ed:84:b2:25:06:31:42:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14d94a6b30920d1f7a2d15171b508f92266476e3
Validity
Not Before: Mar 20 04:00:41 2026 GMT
Not After : Mar 21 04:00:41 2026 GMT
Subject: CN=b47c7f8a04ddbd7261f9271e0d0fa948fe0a1379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:99:ce:5c:b2:3d:67:55:f2:60:81:82:36:7c:
1e:a0:bb:a3:6b:8c:7a:da:7a:ec:2f:9c:c6:a7:05:
57:27:af:24:bf:ee:af:e1:b5:2f:df:a0:98:90:bd:
e0:2f:8a:b9:1a:a6:0a:84:2c:f4:bb:88:8d:64:f6:
cc:d0:b7:41:2c:c2:38:44:ac:df:58:b2:b2:d2:6a:
69:37:e9:37:33:94:d0:79:84:72:27:13:86:d5:0b:
f7:e7:8c:32:7e:82:43:0a:4d:63:00:d7:0d:62:45:
ad:0c:93:3f:3d:74:7f:11:50:9e:be:10:d9:b1:75:
4c:38:81:19:01:69:e6:17:f8:89:d0:74:23:33:08:
15:24:6c:8e:4d:09:c5:af:0e:8d:ed:28:08:86:a7:
3f:1a:4b:97:c8:a5:9b:f4:af:71:35:e2:1f:11:fd:
e7:06:50:93:b4:7b:c5:fb:d3:ad:9a:03:23:b1:41:
65:d1:d0:9c:0f:da:4f:5d:d1:99:07:9a:22:ad:47:
43:29:b2:c4:ad:af:47:2e:2a:60:cd:93:d7:05:11:
b4:94:c0:63:e7:1b:c8:d9:af:fa:d0:28:41:ea:33:
29:1b:1a:56:98:ed:a0:f0:91:25:09:bb:77:55:ce:
af:7c:62:b6:73:2b:b3:92:b6:f3:66:01:e0:ac:01:
7e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7C:7F:8A:04:DD:BD:72:61:F9:27:1E:0D:0F:A9:48:FE:0A:13:79
X509v3 Authority Key Identifier:
keyid:14:D9:4A:6B:30:92:0D:1F:7A:2D:15:17:1B:50:8F:92:26:64:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FNlKazCSDR96LRUXG1CPkiZkduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e5d5eb-ada0-4d5c-8664-f2b22c69d5fc/1/FNlKazCSDR96LRUXG1CPkiZkduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:31:a1:34:50:b8:19:a4:b2:8c:ee:f1:d8:fa:92:fb:5e:ac:
77:a6:64:0a:e9:bf:a1:7f:d7:8e:a0:d3:c4:6d:90:81:5a:cd:
56:31:66:5f:3c:26:47:64:16:50:4f:59:70:d9:87:77:a2:ff:
5a:b8:df:bf:55:81:42:e5:38:07:e8:fe:61:7b:7d:06:d1:ba:
84:12:dc:05:7e:40:c0:c6:5e:0b:01:0a:78:4f:94:e1:20:6f:
a5:c7:c1:1a:b6:73:74:5a:2b:a7:ca:d3:3e:8b:b5:95:b2:3d:
3a:1d:0c:2b:33:ca:78:37:1a:b5:40:08:8f:03:97:37:5b:b0:
cc:cf:2e:a2:d3:f6:9a:23:d6:31:bf:cf:7c:47:82:1a:52:e0:
d9:04:06:85:9b:f1:f1:1f:ec:6f:e5:0e:f3:75:f3:17:98:24:
84:bd:41:d0:86:e1:9b:e5:b9:e0:20:0a:2d:f4:7e:ea:2c:c4:
9d:bd:40:d7:6b:f8:7c:ae:6b:e3:c0:e3:0c:c0:d6:71:73:e7:
a6:d9:d6:db:54:9f:a6:0f:5a:42:df:fd:29:69:fb:78:0f:1e:
bf:56:27:8e:30:41:c8:5b:12:8c:02:f6:d1:af:e0:a2:d7:6d:
65:99:16:2d:95:4d:f0:7f:72:bd:00:af:bb:3b:f4:98:2e:97:
92:c2:52:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0JZw0VpDLLIe2EsiUGMULOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0ZDk0YTZiMzA5MjBkMWY3YTJkMTUxNzFiNTA4ZjkyMjY2
NDc2ZTMwHhcNMjYwMzIwMDQwMDQxWhcNMjYwMzIxMDQwMDQxWjAzMTEwLwYDVQQD
EyhiNDdjN2Y4YTA0ZGRiZDcyNjFmOTI3MWUwZDBmYTk0OGZlMGExMzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJnOXLI9Z1XyYIGCNnweoLuja4x6
2nrsL5zGpwVXJ68kv+6v4bUv36CYkL3gL4q5GqYKhCz0u4iNZPbM0LdBLMI4RKzf
WLKy0mppN+k3M5TQeYRyJxOG1Qv354wyfoJDCk1jANcNYkWtDJM/PXR/EVCevhDZ
sXVMOIEZAWnmF/iJ0HQjMwgVJGyOTQnFrw6N7SgIhqc/GkuXyKWb9K9xNeIfEf3n
BlCTtHvF+9OtmgMjsUFl0dCcD9pPXdGZB5oirUdDKbLEra9HLipgzZPXBRG0lMBj
5xvI2a/60ChB6jMpGxpWmO2g8JElCbt3Vc6vfGK2cyuzkrbzZgHgrAF+5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLR8f4oE3b1yYfknHg0PqUj+ChN5MB8GA1UdIwQY
MBaAFBTZSmswkg0fei0VFxtQj5ImZHbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRk5sS2F6Q1NEUjk2TFJVWEcxQ1BraVprZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9lNWQ1ZWItYWRhMC00ZDVjLTg2NjQt
ZjJiMjJjNjlkNWZjLzEvRk5sS2F6Q1NEUjk2TFJVWEcxQ1BraVprZHVNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9lNWQ1ZWItYWRhMC00ZDVjLTg2NjQtZjJiMjJjNjlkNWZj
LzEvRk5sS2F6Q1NEUjk2TFJVWEcxQ1BraVprZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApTGhNFC4
GaSyjO7x2PqS+16sd6ZkCum/oX/XjqDTxG2QgVrNVjFmXzwmR2QWUE9ZcNmHd6L/
Wrjfv1WBQuU4B+j+YXt9BtG6hBLcBX5AwMZeCwEKeE+U4SBvpcfBGrZzdForp8rT
Pou1lbI9Oh0MKzPKeDcatUAIjwOXN1uwzM8uotP2miPWMb/PfEeCGlLg2QQGhZvx
8R/sb+UO83XzF5gkhL1B0Ibhm+W54CAKLfR+6izEnb1A12v4fK5r48DjDMDWcXPn
ptnW21Sfpg9aQt/9KWn7eA8ev1YnjjBByFsSjAL20a/gotdtZZkWLZVN8H9yvQCv
uzv0mC6XksJSxA==
-----END CERTIFICATE-----
Generated at Fri Mar 20 13:54:32 2026 by rpki-client