Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
File: _FlUn23SuDFEuIDCPwb7o7JdOYY.mft (raw, json)
Hash identifier: b1JfzZ6/jwx6dXj6KN827I2IrBrD73TgL2jdPLpwAO0=
Subject key identifier: 66:3E:73:11:97:F5:5D:B5:D1:97:EA:47:DF:1C:8D:0D:D2:80:90:69
Authority key identifier: FC:59:54:9F:6D:D2:B8:31:44:B8:80:C2:3F:06:FB:A3:B2:5D:39:86
Certificate issuer: /CN=fc59549f6dd2b83144b880c23f06fba3b25d3986
Certificate serial: 019D39AED669B1A1B63955BB6499ABC249D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
Manifest number: 128A
Signing time: Sun 29 Mar 2026 13:00:52 +0000
Manifest this update: Sun 29 Mar 2026 13:00:52 +0000
Manifest next update: Mon 30 Mar 2026 13:00:52 +0000
Files and hashes: 1: _FlUn23SuDFEuIDCPwb7o7JdOYY.crl (hash: kgcQeYfhqE1GJKgZsZE06vJIoQPxkiLuKdhd8xb8aMU=)
2: o_T_HTHs0KSiz-VeTzvUEtH700c.roa (hash: j5lWUOt2iKu1wnonlrAU9TS/DtJ/+Bc/VySYwnhPo7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:d6:69:b1:a1:b6:39:55:bb:64:99:ab:c2:49:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc59549f6dd2b83144b880c23f06fba3b25d3986
Validity
Not Before: Mar 29 13:00:52 2026 GMT
Not After : Mar 30 13:00:52 2026 GMT
Subject: CN=663e731197f55db5d197ea47df1c8d0dd2809069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:80:12:7e:c7:02:d0:ca:46:d8:db:02:fa:14:
87:c7:c5:f5:e5:3c:f9:95:09:27:e3:fe:60:a8:3a:
3c:6f:4a:83:f1:c3:61:90:6d:28:91:10:c4:5a:85:
fb:2f:4a:5b:a7:a8:16:7a:7d:c1:d1:04:03:58:e6:
a0:dc:eb:25:2d:c7:0e:6f:16:fd:3d:35:74:69:d7:
46:44:ea:d8:eb:b9:91:39:e9:b4:db:f1:6d:f2:86:
66:65:1d:be:dc:32:a0:71:58:98:01:06:91:88:d2:
50:f5:f4:04:77:67:bb:ea:d3:18:ec:b8:3e:07:a3:
5d:79:7f:f8:fd:8b:f5:88:8e:b0:10:49:5a:29:b5:
2a:08:ce:04:1a:eb:bd:bc:64:ac:8d:f2:a2:5d:41:
ff:c5:0e:6f:d7:75:fd:c6:90:68:c8:5c:73:41:e5:
a2:ad:5c:fe:40:30:e4:c9:76:2e:cb:99:ba:b4:02:
9c:d6:21:4a:7a:fb:11:f6:04:ce:af:18:06:3e:e8:
9c:e6:50:27:ea:1d:2c:55:20:bf:0a:94:87:45:df:
ba:ea:ec:86:ca:87:0b:06:bd:ba:ba:e7:58:ba:a2:
d7:1f:21:1a:39:12:2b:86:dc:c0:ee:f8:3b:82:67:
1e:4d:20:9b:3c:d4:cb:76:d7:21:71:50:88:fa:6c:
a4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:3E:73:11:97:F5:5D:B5:D1:97:EA:47:DF:1C:8D:0D:D2:80:90:69
X509v3 Authority Key Identifier:
keyid:FC:59:54:9F:6D:D2:B8:31:44:B8:80:C2:3F:06:FB:A3:B2:5D:39:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FlUn23SuDFEuIDCPwb7o7JdOYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/964035-381a-41b0-9fdd-f65d33a9926b/1/_FlUn23SuDFEuIDCPwb7o7JdOYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:2d:c5:46:4e:f2:16:fb:0d:98:e3:78:ed:44:b9:e5:e3:f0:
1d:96:1d:3d:33:44:86:c7:4d:f7:5d:ae:91:94:cb:60:72:7f:
a5:38:c8:f4:40:01:70:90:94:63:d0:07:83:3c:60:ee:b2:6c:
37:a7:00:c5:63:9a:d6:64:ce:32:57:52:de:1f:1a:05:54:3f:
1b:c8:51:94:04:be:cb:4e:4c:1c:15:45:ad:45:3b:07:51:15:
51:15:a9:91:46:a5:08:6a:90:e1:c3:ca:d3:44:d0:a4:4e:08:
1a:b7:30:fa:b6:15:dd:e3:9b:e9:8b:be:60:39:2d:5c:4c:3a:
30:2d:01:0b:cc:20:30:3c:c4:b7:cc:84:5d:b0:90:fd:29:96:
2b:56:c9:49:f4:8f:db:90:a4:9c:e8:52:d0:06:a6:52:15:85:
07:bc:87:0d:92:c8:32:6e:20:59:3a:dc:ea:20:dc:6c:ca:8b:
31:00:e7:84:12:4e:a0:83:d1:cd:96:d8:cb:cb:c2:10:c6:d2:
6a:f7:34:20:f8:69:54:af:7c:49:ba:10:fb:fb:01:bf:80:77:
ea:b9:40:3c:ca:a1:26:da:5d:c2:c5:ac:9f:87:2a:34:30:15:
cc:e6:ba:33:cb:a5:03:25:1c:40:f7:ef:b7:ca:53:3e:91:86:
88:5e:6c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:24:33 2026 by rpki-client