Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
File: pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft (raw, json)
Hash identifier: VWGEntwtyOO8AQ2fneMLGcnAaO3mynIl/+A+myBOwiQ=
Subject key identifier: 53:B1:C8:02:C4:6E:14:DC:60:71:47:FC:A8:0A:14:82:27:92:86:B3
Authority key identifier: A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66
Certificate issuer: /CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866
Certificate serial: 019D38D2C385E64529A9D5E09597C99AF7E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
Manifest number: 0C5C
Signing time: Sun 29 Mar 2026 09:00:29 +0000
Manifest this update: Sun 29 Mar 2026 09:00:29 +0000
Manifest next update: Mon 30 Mar 2026 09:00:29 +0000
Files and hashes: 1: i8Jkc4pxTLURfEXCzuvgdJ4d5UM.roa (hash: 3Aa3KlSn62IyX7PygJ6vdIXQzOFJ0C/FH3ms8tRbuZk=)
2: pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl (hash: CblhZ7Qr9xTzFIq1qJQC1KcpS1d0X+UQoXfN3veGEis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:c3:85:e6:45:29:a9:d5:e0:95:97:c9:9a:f7:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5afc5435fcbbe348d2b56016a7bc7bcacf1b866
Validity
Not Before: Mar 29 09:00:29 2026 GMT
Not After : Mar 30 09:00:29 2026 GMT
Subject: CN=53b1c802c46e14dc607147fca80a1482279286b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:18:02:f1:7a:9a:d6:8e:75:e1:d1:3f:2b:a5:
51:6f:95:b2:20:30:78:8c:a3:8a:c4:c3:79:d9:73:
20:b0:29:a6:96:b9:32:d6:00:d5:18:03:e6:5e:26:
7e:3c:9f:f8:a2:0a:ee:14:90:d1:00:52:2f:a2:fa:
79:fe:94:6c:b3:25:88:df:1b:e6:f9:d2:a0:cb:22:
44:69:a5:5b:b4:75:8c:77:33:7d:f2:34:08:92:1e:
d4:32:27:cc:69:c0:15:1e:d3:26:a7:37:ac:ce:f6:
eb:4c:dd:ee:9a:9f:02:78:8e:dd:c2:9d:3e:30:b2:
48:9e:13:f5:e9:89:5d:bf:be:f7:a4:7e:8e:61:73:
fb:53:a7:ac:8f:31:04:1d:86:52:58:f9:70:f0:a7:
a8:ee:4e:1f:6b:7a:0d:f5:35:b0:83:9c:d2:4b:00:
6a:c2:98:1a:88:8b:65:e7:4d:e7:2d:c9:33:ba:7d:
d5:70:75:8e:25:97:af:73:03:c7:1b:cd:6a:54:f1:
8b:9c:1f:b2:a6:76:5e:30:ef:89:d6:01:74:21:a4:
f3:d1:68:a7:08:ad:e1:1e:14:3f:8d:62:52:62:c7:
56:f6:8c:3f:67:84:82:87:c8:08:72:03:6f:3d:65:
9f:03:2b:f6:ad:fb:83:5f:c5:c7:92:e3:94:81:09:
68:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B1:C8:02:C4:6E:14:DC:60:71:47:FC:A8:0A:14:82:27:92:86:B3
X509v3 Authority Key Identifier:
keyid:A5:AF:C5:43:5F:CB:BE:34:8D:2B:56:01:6A:7B:C7:BC:AC:F1:B8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pa_FQ1_LvjSNK1YBanvHvKzxuGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/419af0-cbd6-4233-b52f-d7484bf9ca2b/1/pa_FQ1_LvjSNK1YBanvHvKzxuGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:0a:11:0d:19:e1:d0:c5:0e:7e:41:0e:7c:23:63:92:cb:62:
6b:bc:97:ef:de:a0:c2:ed:b0:98:d8:4e:c4:59:8b:63:4e:ac:
d9:eb:a8:85:05:8e:83:b7:86:75:74:af:dd:1e:cc:4e:bc:b7:
e0:3a:37:48:d6:84:5b:01:f0:d4:6d:5c:50:e3:67:e6:b2:63:
2f:c9:45:82:e4:b4:77:02:a5:0e:ca:8c:7f:44:db:de:3c:af:
05:3d:a7:fe:18:18:6d:0b:64:15:f4:b7:15:24:a6:09:77:1d:
0b:be:46:c1:f7:b3:5f:5e:70:fa:1c:b1:51:f7:72:01:d7:16:
a5:83:7d:fe:01:fe:f9:b5:bf:7e:49:d8:18:66:2f:34:b6:cd:
9d:56:0c:13:9f:57:41:77:cb:5d:3c:b3:9a:38:27:a0:9b:a8:
34:a9:4e:e6:3e:81:2f:06:82:20:ba:27:c2:36:1e:82:db:08:
f4:c7:f9:37:7d:be:a1:1a:8c:25:80:5c:92:bb:b9:f7:d8:8e:
03:8b:56:1e:a2:c2:6f:3e:3e:a8:50:ed:00:d5:9d:5a:84:de:
af:03:f8:5e:fc:aa:be:ca:b6:b0:1d:39:67:cb:26:3f:9d:1c:
6c:bc:0d:fa:99:6c:62:a7:02:aa:81:99:bf:5a:68:69:89:42:
56:b0:05:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:43 2026 by rpki-client