Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
File: rFPL63FQhLMioaFJyW4JxA7W2IM.mft (raw, json)
Hash identifier: snciPBylYuWSZfVVZrkyWnjzBx02b1CSCLxL/7JwijY=
Subject key identifier: 16:D5:7C:33:9B:37:5A:6F:C7:CC:C3:6F:EB:64:D5:E1:A3:91:C4:2A
Authority key identifier: AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
Certificate issuer: /CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Certificate serial: 019D389BBB338D15CC16A355AE0229FA4E04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
Manifest number: 14B6
Signing time: Sun 29 Mar 2026 08:00:23 +0000
Manifest this update: Sun 29 Mar 2026 08:00:23 +0000
Manifest next update: Mon 30 Mar 2026 08:00:23 +0000
Files and hashes: 1: IK1D4FqaxkD0e3Rz3UWDPsWTBaY.roa (hash: VpKoh7MGGe09JzMr2Q/wQfbBpFjOWoXi11g9RixR0Rs=)
2: rFPL63FQhLMioaFJyW4JxA7W2IM.crl (hash: eQ0VqykmthCy8eepmu12GtKiQSpUpmjvNxDge2ZvFfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:bb:33:8d:15:cc:16:a3:55:ae:02:29:fa:4e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Validity
Not Before: Mar 29 08:00:23 2026 GMT
Not After : Mar 30 08:00:23 2026 GMT
Subject: CN=16d57c339b375a6fc7ccc36feb64d5e1a391c42a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9b:33:80:f1:2c:f9:46:fd:e4:c3:76:c3:b5:
7d:28:78:42:4d:ed:b0:09:bc:2e:9e:e1:31:99:d3:
e3:1a:bf:b9:7e:f4:fb:4b:06:b5:3d:fb:2a:d3:d3:
19:e9:8d:4a:9c:6b:79:af:63:29:c4:8d:4c:82:46:
d5:5b:a8:5f:66:ef:f0:47:77:53:24:d3:64:50:fa:
5d:ae:e8:90:f0:67:6b:a6:ff:7e:f1:67:ae:9e:a9:
b7:cf:2a:a7:b8:cc:d0:c2:fd:0a:fa:7a:b4:ec:17:
8e:2e:a5:69:f4:21:09:f6:2f:f7:07:77:33:05:33:
9b:bb:5b:d8:9c:3a:9d:e4:31:72:f1:74:c8:b2:80:
33:69:6f:1b:86:4e:79:d6:8b:bb:79:a0:4a:a3:e8:
03:20:56:de:a7:12:fa:f1:d5:7a:a5:1c:e5:9a:0b:
c6:70:8a:a8:35:68:68:9a:ed:0c:d5:6b:c3:4e:bc:
fe:8d:c5:a5:a6:2d:c5:94:0a:e5:eb:fd:4c:56:1f:
c7:9a:4f:b0:d8:f2:b6:a9:a0:0c:f7:5a:9e:dd:38:
7a:0e:88:b6:52:ae:30:37:99:c0:8e:f4:b7:06:86:
24:a9:4c:ec:5f:25:00:d4:81:e1:d5:b2:1f:ef:ba:
5e:81:bc:d7:fd:09:05:c2:aa:51:b7:bc:5e:05:e2:
e8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D5:7C:33:9B:37:5A:6F:C7:CC:C3:6F:EB:64:D5:E1:A3:91:C4:2A
X509v3 Authority Key Identifier:
keyid:AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:ed:08:09:ce:4f:86:3f:9b:77:ff:b7:6e:23:fa:9f:ff:18:
a9:33:2e:43:b8:a9:e0:8f:9e:be:42:ac:85:08:b7:b6:7b:97:
ae:64:d6:97:30:07:89:5f:63:a0:66:ac:ce:75:2a:34:a8:59:
71:f2:4b:0b:fc:4c:08:16:c8:5f:76:0a:12:e5:f3:b8:cf:08:
9f:a2:a5:f0:19:bb:8c:71:27:9a:ba:3d:a3:0b:64:da:0a:85:
e5:5c:2a:2d:b6:94:b5:8c:66:72:4d:60:26:72:1d:7c:75:05:
13:30:3b:17:33:09:c8:d7:4d:49:b8:3f:07:e1:b9:6b:7c:db:
12:0c:a9:85:b9:cb:8f:eb:b7:82:47:94:e1:58:87:29:56:5a:
bb:13:bc:b0:46:e7:cc:dd:e7:08:4d:86:7b:2c:e2:26:b1:aa:
b8:eb:25:da:8e:9d:6e:14:d9:a6:bc:20:cb:20:ec:07:c3:63:
d5:93:da:1a:41:3a:b4:22:74:78:68:c3:3f:f1:98:3a:d3:bb:
3e:9d:94:77:06:1c:e9:d5:6a:2d:df:cf:b9:b3:a6:9a:26:9f:
c2:00:c1:c1:b6:32:4c:dd:90:ad:73:a3:0b:d8:36:db:83:41:
03:87:1d:45:0e:9d:94:c4:03:d7:a0:6e:de:e6:11:ec:c0:ce:
fe:7e:c1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:25 2026 by rpki-client