Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json)
Hash identifier: bMkfOySchvrQ7xRRSj/OGP9+mjvln0LAoA9g2IamWt8=
Subject key identifier: 2F:FE:2A:2D:2A:6F:98:03:EE:14:64:F6:0E:27:F5:B0:DB:99:99:66
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: 019E2F5F590DD350DDB483A0CCB5409023BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
Manifest number: 1171
Signing time: Sat 16 May 2026 06:00:38 +0000
Manifest this update: Sat 16 May 2026 06:00:38 +0000
Manifest next update: Sun 17 May 2026 06:00:38 +0000
Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: fVt78dzPYMcTCW8gTmHHr4Qb/em1ZBT00scPGhPVcic=)
2: b6CRhvSRccrFASwHzAqv1fJ2-PM.roa (hash: /4u/ccQkL47poEfRTb46UuOnLyPJ5g8IGlvoOu1fxd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:5f:59:0d:d3:50:dd:b4:83:a0:cc:b5:40:90:23:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: May 16 06:00:38 2026 GMT
Not After : May 17 06:00:38 2026 GMT
Subject: CN=2ffe2a2d2a6f9803ee1464f60e27f5b0db999966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:93:9b:3d:02:a8:92:92:b8:5b:59:dc:cf:97:
9d:f7:1b:1a:fe:54:b2:57:93:fe:ef:75:bd:75:d3:
1f:63:a2:cf:6d:5c:21:9e:9e:e7:d7:d2:f8:c4:f4:
9e:1b:0e:58:f2:b0:97:a2:ab:ca:7e:45:fe:70:ca:
1d:1a:3f:cb:3c:74:93:6d:25:69:24:fe:bd:e5:68:
7d:60:c4:56:ba:1f:ab:a8:b6:26:b7:9d:1d:b0:e3:
70:0c:c7:3c:78:a6:b7:41:41:a0:8b:ff:fb:54:15:
0c:5d:11:b6:bf:2f:2e:4a:01:ec:99:af:59:1b:ca:
0d:55:5d:3c:71:9d:bb:24:11:5c:6e:8d:5c:9c:f1:
a0:a0:a8:35:e7:56:4d:06:06:68:e5:6f:8f:ce:fe:
71:2f:46:3a:3d:89:59:c3:3a:e9:17:be:a4:06:f5:
14:a7:4c:dd:57:26:da:90:22:7b:14:3a:9d:a4:31:
21:6f:cd:9d:2f:8c:31:e1:6a:2b:48:1e:41:cd:3b:
74:8b:1e:eb:42:bd:eb:bb:41:d6:62:72:59:b6:2c:
75:f2:e6:38:96:26:ac:b0:7f:2f:da:49:f7:8f:98:
82:f5:2b:3a:26:65:b6:e2:fc:ed:2b:e1:63:bd:2e:
c4:6f:e4:0f:c2:9f:a4:7b:fe:b6:af:a4:a3:31:49:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FE:2A:2D:2A:6F:98:03:EE:14:64:F6:0E:27:F5:B0:DB:99:99:66
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:08:5a:51:ef:26:ca:ae:a0:52:1e:b9:91:fe:9f:ea:63:3e:
3f:9e:39:b6:e4:18:4a:03:de:9e:f0:ff:8c:7c:51:24:a4:b9:
7d:10:2a:72:3b:ec:32:bc:a4:b8:e7:cb:9a:61:b9:c7:0d:ba:
24:76:ba:c5:f9:4e:6f:4f:d0:47:34:46:46:38:78:aa:49:42:
4e:35:91:2b:ad:7a:19:d5:8a:17:66:e0:ec:07:0a:26:10:4a:
a6:68:7e:51:6f:fe:9d:c1:6f:21:93:c0:54:c2:4d:67:50:9f:
25:be:ab:00:a7:24:7b:a7:e0:ad:e6:06:b0:5c:2d:24:6e:ef:
3c:67:f9:41:00:e6:1b:2a:02:cc:82:10:4d:51:e9:ee:ba:78:
6d:16:45:c1:85:eb:c7:c9:cf:da:ff:d4:5b:4c:ef:fe:93:c8:
7f:34:44:9d:18:58:b0:62:c7:1b:6c:bf:8e:83:e5:0c:56:02:
f7:74:45:da:66:79:32:c6:60:0e:e5:d4:8b:46:35:e4:e9:26:
98:fc:01:7c:3c:b7:ee:fc:b0:0c:7a:a9:8c:dc:05:92:4b:af:
4a:c8:a2:53:07:5e:76:c2:8c:1b:43:b9:46:52:08:57:c4:e6:
30:11:32:4a:f7:25:ab:f9:3a:0a:a1:5b:99:d4:2d:63:c1:c6:
5a:e4:8d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:37 2026 by rpki-client