Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
File: FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft (raw, json)
Hash identifier: YxaRItQ+krpO31C5wZycQKdpYNIi66fvZhDM6hraPzs=
Subject key identifier: 60:AC:E8:C5:EE:EE:59:DC:14:7D:7C:34:45:1D:19:E6:C5:6B:16:D8
Authority key identifier: 16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
Certificate issuer: /CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Certificate serial: 019D386666DDEFE0A762239A42B5B4CA2102
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
Manifest number: 120D
Signing time: Sun 29 Mar 2026 07:02:08 +0000
Manifest this update: Sun 29 Mar 2026 07:02:08 +0000
Manifest next update: Mon 30 Mar 2026 07:02:08 +0000
Files and hashes: 1: FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl (hash: TOoAI8gh5PTta3OXzBUaq7kHsNfq+gOB7oJ1pYKC1UE=)
2: ZHym1jgmQNO1769mOXVyUNOVMEc.roa (hash: 6HGTh8JhgEJnDcdwwWSa7+oUj2V8bxazwsUi6gBiFdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:66:dd:ef:e0:a7:62:23:9a:42:b5:b4:ca:21:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Validity
Not Before: Mar 29 07:02:08 2026 GMT
Not After : Mar 30 07:02:08 2026 GMT
Subject: CN=60ace8c5eeee59dc147d7c34451d19e6c56b16d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:86:91:8c:b1:b7:9d:5d:ff:b9:7c:ce:48:af:
5b:f3:72:c1:04:1a:2b:e1:90:58:1f:b4:5c:04:c8:
91:0d:82:e8:8c:b9:70:07:4d:07:a2:a0:3a:b5:1b:
ff:1b:5c:6e:24:52:9c:bd:2b:77:07:85:4e:81:e3:
95:2e:4e:7f:15:ba:11:0f:22:27:a3:8f:f6:3a:14:
eb:40:29:0f:df:22:c8:d4:07:65:4e:21:0d:be:3b:
82:3e:6a:68:92:d3:b8:b5:b6:df:0e:29:8b:06:d4:
6d:c1:f2:09:b9:04:33:9d:0c:6d:0b:9f:5b:7d:96:
d7:10:d1:43:0d:c4:8b:7d:d3:c7:5c:4d:ab:ec:db:
74:69:fe:ec:29:e4:be:6f:70:de:ef:00:6e:e6:2d:
10:d7:d2:d0:4f:89:17:9f:89:df:73:9f:ec:9e:95:
04:3b:e1:46:b5:77:bf:8c:4a:fc:b6:ae:7b:78:6e:
52:ee:a6:18:84:47:fa:cb:d7:6d:aa:f3:03:aa:15:
04:5f:17:93:7f:db:71:30:eb:cd:69:ea:e2:c6:25:
af:41:07:8d:4c:f8:88:14:ed:84:46:c1:db:1e:33:
b4:98:c5:05:5c:26:dd:19:90:d7:0b:e5:ac:b2:52:
43:64:e3:b4:f8:c8:8f:71:ab:fe:ec:a6:eb:a7:de:
48:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AC:E8:C5:EE:EE:59:DC:14:7D:7C:34:45:1D:19:E6:C5:6B:16:D8
X509v3 Authority Key Identifier:
keyid:16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:06:be:93:b3:29:5c:3e:b8:74:9a:05:ad:d2:6c:20:9d:bd:
1a:64:92:8a:5e:23:3b:d3:2c:95:28:cc:cb:cd:63:70:d0:12:
5b:0a:b6:de:c9:01:fb:9f:93:8e:4f:bb:94:5f:88:38:aa:f6:
eb:0c:76:b3:42:ec:a8:1e:12:fc:91:82:14:6e:a5:80:d1:3c:
6b:74:4a:73:56:a4:16:17:58:ba:d5:be:70:eb:e6:03:1f:10:
c8:5e:06:0b:65:4d:a0:46:06:0d:a2:99:41:98:73:3d:bb:35:
85:11:15:51:7e:9e:53:d5:f9:ce:bf:18:cf:e7:23:fc:02:9f:
db:45:00:9b:7f:37:2a:03:00:4e:45:d9:bd:94:bf:e5:7c:30:
bb:e0:8b:71:e8:4a:e6:1d:c6:8f:36:1c:e2:ae:10:30:32:4a:
2f:45:2c:c4:38:98:7e:54:d3:19:77:e4:02:c8:cc:71:8c:75:
72:71:ae:0d:1b:f3:e3:e1:ad:1b:9c:fb:9e:13:9c:fb:a8:36:
1d:35:bc:97:ae:20:37:c6:dc:d9:b5:e3:6a:26:97:83:29:59:
fc:45:ff:dd:ca:4a:6b:a5:41:18:c4:b1:d9:81:86:42:ae:0e:
78:fe:76:90:15:0e:99:e2:3a:75:4f:c3:7e:73:dd:58:4d:7b:
2d:df:4b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:49 2026 by rpki-client