Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
File: FyKJy7gXn9846fUyyc1ykbT1xC0.mft (raw, json)
Hash identifier: pmw2gCzfFz4YqZmmx7t4oSfbf3pDkLwnG74oOij68OU=
Subject key identifier: 9A:1D:89:D0:6F:7D:C3:08:4C:E9:84:A1:AD:C6:23:F2:20:F0:22:99
Authority key identifier: 17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
Certificate issuer: /CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Certificate serial: 019D382E19C1C592417241021BBBD8BA8DD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
Manifest number: 0E7F
Signing time: Sun 29 Mar 2026 06:00:38 +0000
Manifest this update: Sun 29 Mar 2026 06:00:38 +0000
Manifest next update: Mon 30 Mar 2026 06:00:38 +0000
Files and hashes: 1: FyKJy7gXn9846fUyyc1ykbT1xC0.crl (hash: CzMRhMYK9XdF9eN1Ez/DLZh9UMMBqO2CuS2frGCItz0=)
2: G7sgYRFoJFayuqOiJkT4SvmLSC0.roa (hash: s14deS72G3vc/Z7LgUYqSMvuXanb2Xca7svdma5VBoI=)
3: pxS12DAcCwaW3ocjEXURu6Jiigc.roa (hash: ETa0HlY7Y1RquVwxDSRzexuULYuncZkEz0TP+kkZKZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:19:c1:c5:92:41:72:41:02:1b:bb:d8:ba:8d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172289cbb8179fdf38e9f532c9cd7291b4f5c42d
Validity
Not Before: Mar 29 06:00:38 2026 GMT
Not After : Mar 30 06:00:38 2026 GMT
Subject: CN=9a1d89d06f7dc3084ce984a1adc623f220f02299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:40:70:cc:3e:47:ea:84:0d:d2:2e:61:26:aa:
86:c8:ea:7c:3c:fd:73:50:2f:1c:24:f1:0d:ab:30:
f8:01:3d:bb:1c:85:08:c0:d0:04:62:29:c0:ba:43:
31:18:8d:62:24:6d:aa:8c:10:fb:5d:d1:6b:82:3c:
25:ab:0f:5b:48:42:a3:54:39:12:69:b7:ed:f6:04:
62:f8:fb:eb:b5:5f:b3:26:3f:2d:c9:f6:46:15:e4:
a5:17:16:06:0a:2e:3b:8c:73:50:eb:6c:b0:f0:a6:
33:ef:e3:fd:b0:f2:76:d5:4e:30:96:20:ae:7c:e7:
b1:0e:1a:70:ca:3e:00:00:d9:19:d9:64:c6:dc:89:
cc:4d:a4:97:46:5c:f2:ae:2f:10:87:70:bd:39:1f:
40:7e:9a:3f:b4:05:6a:29:1c:b8:d6:9b:52:a4:4f:
cb:a0:8f:80:da:f5:d8:97:b0:c6:22:ab:6e:51:86:
74:51:7a:78:77:62:27:38:46:7c:f8:16:7a:66:5f:
18:7a:93:19:38:a2:f1:56:cf:6d:0e:81:0a:47:8b:
26:74:ae:b1:84:f9:0f:e9:8d:cc:4c:b1:19:44:c4:
4c:90:3d:dd:52:c5:4c:23:32:a8:e9:b4:ad:f5:44:
82:19:9f:0f:84:87:46:11:f9:6b:5f:8c:2e:ab:38:
01:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1D:89:D0:6F:7D:C3:08:4C:E9:84:A1:AD:C6:23:F2:20:F0:22:99
X509v3 Authority Key Identifier:
keyid:17:22:89:CB:B8:17:9F:DF:38:E9:F5:32:C9:CD:72:91:B4:F5:C4:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyKJy7gXn9846fUyyc1ykbT1xC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/289e38-ac93-4e8b-a08b-f74baa12fdc9/1/FyKJy7gXn9846fUyyc1ykbT1xC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ac:3a:5c:5e:69:50:9e:88:aa:f5:9b:40:78:92:ad:15:e8:
8a:2b:b9:07:54:c1:65:16:a7:98:40:5c:83:44:d2:b9:b5:74:
a0:16:69:52:4f:3d:04:cc:00:94:19:dd:ce:b6:2f:f5:04:ed:
ac:bf:30:54:91:86:6a:e7:94:0d:51:48:c8:55:53:15:42:0a:
93:b7:a5:74:37:50:4d:5f:09:68:5d:c3:a5:d5:5a:fb:8a:c2:
d0:95:5f:ab:1e:05:52:4a:e0:14:4e:3a:ea:db:6a:50:61:85:
a6:5a:ce:6b:04:4d:fa:ef:0d:11:65:6a:54:3e:e5:49:62:f5:
5c:d8:da:54:14:62:c2:42:32:3b:03:af:11:e5:68:4a:2e:33:
a2:4c:16:d7:af:f1:cc:7b:ae:2f:d6:29:d6:02:ad:2c:9b:5c:
73:c6:a3:ba:c2:fe:3e:87:a5:8a:f5:27:fd:8c:33:e3:55:09:
ab:11:b1:02:d8:a8:5d:5c:50:ba:1c:19:63:b0:e0:0c:53:70:
18:56:dc:f2:b6:f1:96:36:1f:3b:26:4b:a0:5b:57:c5:d6:4f:
e0:c5:ea:a6:73:eb:c4:59:1c:49:26:5c:cb:c7:e5:c5:f3:eb:
51:6e:1c:22:3c:24:4f:ce:a7:a0:c4:c3:5e:cd:58:85:ae:8c:
fe:43:1d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:23 2026 by rpki-client