Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: gXArrgobszP06SKTf9fZpfNYT3Vt4VSFpBc31OUwVwI=
Subject key identifier: FB:1C:B7:94:4D:9A:E3:45:77:5C:66:AF:E3:06:AA:E5:23:38:C0:05
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 019D6129D99CBBB51C033087FC9A0CD260B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 038E
Signing time: Mon 06 Apr 2026 05:00:25 +0000
Manifest this update: Mon 06 Apr 2026 05:00:25 +0000
Manifest next update: Tue 07 Apr 2026 05:00:25 +0000
Files and hashes: 1: JdrrzB7a1qH9AHo1hI78HQ9vZMk.roa (hash: GTd8cCkoiW0FGNR73NG1lnLnp97HhBUrrNAzm3q5ilE=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: 1nyjdp9Qvr8XRYeKSbyXu/mITFkO/Q0V0xhaGfdYDi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Apr 2026 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:61:29:d9:9c:bb:b5:1c:03:30:87:fc:9a:0c:d2:60:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: Apr 6 05:00:25 2026 GMT
Not After : Apr 7 05:00:25 2026 GMT
Subject: CN=fb1cb7944d9ae345775c66afe306aae52338c005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2b:d9:7b:fc:9f:d1:68:a5:a1:3a:76:90:11:
c0:52:24:d2:65:2c:e2:da:7d:4f:7d:54:e9:b8:02:
70:2e:10:89:62:3f:e7:b0:ad:e1:94:6e:1d:87:e0:
6a:64:09:79:bf:be:98:50:e8:f3:fe:ab:1b:9a:e1:
6f:44:85:28:d9:ea:0b:cf:cd:17:ad:2e:9d:a8:13:
fe:da:e6:2b:02:bc:b5:58:d4:14:c3:a2:75:03:5c:
66:37:52:38:90:bf:a7:76:ce:96:ee:f5:3e:fd:e8:
76:cb:c4:76:24:26:c9:a9:c2:b6:d5:d4:29:5f:50:
32:c9:a4:ff:ec:71:88:dd:d8:b2:c2:23:bc:72:3f:
c5:61:3e:00:24:e0:cc:8f:50:00:b3:93:82:8b:eb:
14:f7:65:43:bc:04:02:5b:90:aa:73:c9:6c:06:5e:
50:99:ff:d9:0d:90:d2:8c:b7:56:69:4d:52:24:2a:
ec:05:86:db:b2:28:bf:a3:34:90:51:45:3f:38:32:
71:2a:88:fe:80:02:d2:b6:64:77:46:f6:61:6e:c7:
ce:a0:a5:65:6f:59:8a:9f:fb:2e:68:ba:d2:b3:d9:
aa:09:da:a8:a5:2f:90:29:3b:f4:cb:c7:02:41:7e:
29:fa:fd:b3:57:e9:4d:76:40:70:27:f0:6b:ce:70:
c7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1C:B7:94:4D:9A:E3:45:77:5C:66:AF:E3:06:AA:E5:23:38:C0:05
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:42:ca:c5:2b:e2:ab:ec:de:86:0f:8e:e8:15:d0:3a:5a:98:
b1:45:e9:01:c7:9f:0d:e4:b4:84:7d:0e:cb:e2:5b:c1:25:12:
7b:fb:84:29:c9:df:5a:ec:74:27:37:52:c9:61:15:1d:57:d2:
95:c7:bd:15:f1:ea:67:c7:c6:6b:90:a0:51:72:87:5e:6c:19:
cb:13:b0:c7:0a:6b:d5:8c:ca:a5:e6:fc:20:76:b7:d8:e8:1c:
6c:a0:53:f4:47:13:e0:f9:3f:ec:fd:ee:0d:32:da:e0:e5:27:
a1:69:5d:53:e8:70:6c:e2:bf:ce:9f:51:03:38:e2:e2:7a:e7:
be:bb:9e:29:4f:17:51:6a:55:62:ea:47:4e:b8:2d:cc:66:24:
d0:f7:e5:30:fd:91:29:cc:1d:8c:6d:74:11:74:ce:3c:0c:9c:
d1:15:02:5f:fd:26:71:86:5a:4a:13:a9:0e:54:1d:70:f2:f1:
10:b6:96:56:5e:58:f1:d9:90:66:20:5f:fe:50:d1:ca:02:ff:
d6:85:18:fd:02:bc:f2:5e:74:b3:13:26:75:86:14:7d:5f:10:
6f:ba:5a:68:d8:46:ad:2a:68:60:ee:3f:bf:83:a9:ce:5f:fb:
6b:c2:b4:87:89:a1:c8:a9:67:3a:e7:3c:16:5a:9f:5e:8f:7d:
9a:54:cd:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 14:12:03 2026 by rpki-client