Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json)
Hash identifier: hc+CfhyvDDivM7iQSK1WPAd7/F+T65y2L7c/3Oi0/qg=
Subject key identifier: 23:5B:B3:EE:F8:AE:65:5B:3A:DD:24:32:86:9A:C1:FC:A8:F8:AD:82
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 019D390A25B820D7F85D88FA5CFE8BFB2BB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
Manifest number: 159F
Signing time: Sun 29 Mar 2026 10:00:59 +0000
Manifest this update: Sun 29 Mar 2026 10:00:59 +0000
Manifest next update: Mon 30 Mar 2026 10:00:59 +0000
Files and hashes: 1: CAzUJBJl_S6fY4g8OpP_PRPQJAc.roa (hash: 6YZqZyeQI2OCFKYEz3xohlsoJMTAW7st+b+x7M/6aO8=)
2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: 2H03BNPeFicHWPIBvKgg/lywYqT9O8wTZw2VFw2xCDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:25:b8:20:d7:f8:5d:88:fa:5c:fe:8b:fb:2b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Mar 29 10:00:59 2026 GMT
Not After : Mar 30 10:00:59 2026 GMT
Subject: CN=235bb3eef8ae655b3add2432869ac1fca8f8ad82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:36:e5:ce:6f:7b:61:18:b9:ce:6d:05:47:31:
c2:6c:3a:d1:88:3a:ef:80:e1:72:ce:72:35:15:33:
13:d5:6d:5a:6f:ab:d5:40:ff:01:fe:5d:d4:c7:88:
b0:1a:f3:4d:da:97:24:50:5e:24:6e:f5:45:0e:ce:
44:27:35:a1:56:66:48:90:69:03:50:6d:64:f5:57:
ee:88:d8:a5:88:46:1e:3b:29:75:5e:62:2f:9d:84:
68:5f:48:a9:db:2f:66:68:04:2e:ba:9b:1e:fe:0a:
0f:63:82:59:44:a6:b7:bb:12:ae:43:24:1e:c6:70:
7d:d1:17:45:ae:69:19:73:f4:08:b4:3f:ae:c7:6b:
23:a4:79:45:7b:a5:48:e3:d4:06:82:58:7e:8d:44:
b1:d8:9d:72:aa:70:d1:be:1c:e0:b4:33:8b:02:16:
07:7e:a7:51:ac:eb:3a:a9:73:39:07:57:6d:78:03:
6e:ba:a3:66:ee:b9:2f:7c:65:ee:15:a0:63:42:85:
fc:0b:79:47:ad:a7:22:d5:fb:19:24:76:bc:7e:20:
37:77:38:78:d2:9b:8b:bf:b2:85:0b:bd:1d:b6:e4:
97:4a:c1:b3:80:a1:0b:59:5f:51:5d:36:66:7d:2f:
6f:d4:3d:2a:58:2f:3f:2f:5d:57:56:b7:08:19:75:
b6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5B:B3:EE:F8:AE:65:5B:3A:DD:24:32:86:9A:C1:FC:A8:F8:AD:82
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:f4:ce:5d:fa:e8:19:1d:46:45:d9:66:8e:b5:ba:89:17:12:
e0:3d:f8:75:08:53:17:61:cf:e8:fe:75:0d:3c:af:9e:3b:4d:
0a:f1:65:d3:5e:de:55:09:3d:aa:fc:dd:39:62:24:b8:ee:a0:
81:38:b6:ab:a4:be:20:f2:6e:8f:e6:a0:10:6e:0f:77:0c:3b:
22:bc:f9:6e:c7:5f:1e:14:58:4e:68:95:94:38:5f:97:31:e6:
6b:41:91:e9:52:96:c6:8e:6d:9f:95:84:28:ab:93:b1:5b:16:
19:ae:88:9a:11:eb:a1:24:0a:42:ab:97:09:b4:d3:a1:83:2a:
e8:b6:07:e0:1c:2b:15:b8:50:1b:31:9d:56:57:dc:24:14:98:
17:aa:dc:98:05:84:6d:e0:1e:3c:ba:7b:bc:ec:b1:d8:59:68:
a1:f1:c6:dd:9e:d0:2b:d0:21:99:18:39:ae:92:2c:ae:c5:31:
70:76:09:52:93:15:ac:f6:40:3c:5b:a5:5e:d2:99:7e:ac:9c:
0f:52:14:fc:1d:ff:bb:ca:5e:48:ae:9f:d7:37:7d:bf:c2:20:
9c:10:c0:50:90:cb:79:8f:d1:3c:92:80:18:34:9a:18:02:dc:
ee:5f:6b:eb:6c:cc:15:d6:23:f0:18:c2:ec:9f:37:b7:ee:9f:
9f:d5:1b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:49 2026 by rpki-client