Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
File: FAa0-f1RaOt3gegksUU-mfXmVTw.mft (raw, json)
Hash identifier: XjBbklHeZZu5SODU/N3GezV/qYtoO9Syn8TxLZLRvzE=
Subject key identifier: A7:8F:97:CF:06:54:F7:7D:0A:38:81:C6:26:94:71:68:6A:3B:D9:1C
Authority key identifier: 14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
Certificate issuer: /CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Certificate serial: 019D38D3351661FC2E631959144EAC7C727C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 09:00:58 +0000
Manifest this update: Sun 29 Mar 2026 09:00:58 +0000
Manifest next update: Mon 30 Mar 2026 09:00:58 +0000
Files and hashes: 1: FAa0-f1RaOt3gegksUU-mfXmVTw.crl (hash: iLa4LO4GXvQzp4VBCssBa+Z9bo/6ikU9pNs/swYgsrE=)
2: R8GC6AMTH-Hxqzb_tHLOqN1Dy-4.roa (hash: sjpipeUhURBvNL7hQYR9otIU9f5zXHfGn1dPphfh+uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:35:16:61:fc:2e:63:19:59:14:4e:ac:7c:72:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1406b4f9fd5168eb7781e824b1453e99f5e6553c
Validity
Not Before: Mar 29 09:00:58 2026 GMT
Not After : Mar 30 09:00:58 2026 GMT
Subject: CN=a78f97cf0654f77d0a3881c6269471686a3bd91c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d1:17:27:c3:d6:4a:6a:5e:57:a4:7e:17:c9:
2e:87:52:d8:56:47:96:df:43:7e:5f:15:0b:51:5a:
f2:a5:bd:f9:f7:85:05:83:f3:37:01:f9:83:d6:fe:
05:19:5f:b8:39:53:7b:85:34:7c:07:cc:a7:ae:29:
69:89:34:a5:99:cb:2b:66:e7:90:15:ac:2d:06:46:
f2:ca:bd:9a:9c:b1:27:b8:63:69:3f:b0:c2:88:3b:
5b:fd:21:63:5f:5c:29:57:40:b3:61:d5:7c:25:da:
1e:38:60:58:de:2d:75:a5:41:70:a4:ad:47:32:14:
57:ae:30:3e:5a:7a:19:9a:87:d3:69:b1:78:c6:75:
19:7d:2d:f8:c9:85:79:0f:2c:b5:2c:98:e6:b9:9c:
d3:06:09:1e:48:bf:e9:6f:f9:52:8f:9c:7f:8d:2b:
20:65:28:be:f7:49:02:ed:ad:7d:e0:92:c0:eb:bc:
dd:d8:32:af:b5:98:e8:85:3a:7e:bc:76:e4:5c:53:
b4:17:5d:e8:31:6e:8d:16:21:13:09:d3:fa:36:24:
6f:f0:20:1d:6c:2f:e6:a7:dc:75:57:29:aa:9c:fb:
f2:d1:bb:c4:24:4b:ec:47:95:e5:48:c6:84:32:ef:
1a:3a:ba:48:4c:41:35:27:4e:c7:89:ba:de:73:1b:
2a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8F:97:CF:06:54:F7:7D:0A:38:81:C6:26:94:71:68:6A:3B:D9:1C
X509v3 Authority Key Identifier:
keyid:14:06:B4:F9:FD:51:68:EB:77:81:E8:24:B1:45:3E:99:F5:E6:55:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAa0-f1RaOt3gegksUU-mfXmVTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/86d512-499b-418e-a420-c161246c825a/1/FAa0-f1RaOt3gegksUU-mfXmVTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:6f:55:1f:57:66:1f:a1:ab:46:68:94:e6:7b:f4:26:9a:44:
c5:a7:00:c5:73:d6:fa:d0:b2:99:14:24:b5:8f:8f:eb:73:db:
31:a3:07:b0:7b:e0:6f:32:88:f4:44:97:c3:4e:88:a1:36:48:
09:da:80:72:db:69:0d:6b:1c:6a:52:e7:27:e9:32:74:52:65:
be:94:af:8e:ff:c5:3a:9d:00:0b:1d:8f:76:f9:35:82:8c:bb:
70:5f:c6:ee:d6:42:49:84:cb:bc:27:97:a5:f2:54:45:95:3d:
47:ab:36:c4:d7:c5:9c:17:07:05:f3:d6:61:b0:e9:8a:f5:55:
e6:90:5d:93:3e:ed:41:16:ee:d7:2d:a3:70:c5:93:6b:8a:3f:
80:fd:cb:e2:0e:6a:ac:fc:2e:bf:3d:ae:3f:3b:d2:bf:98:95:
f7:21:97:18:a9:b0:af:93:e2:a6:c4:bc:7e:e5:4e:12:e8:68:
96:d9:8f:db:c7:e0:be:86:8d:e8:1b:cf:e8:fe:26:64:e7:58:
5d:0f:95:a0:cc:97:80:ff:86:f7:57:07:01:74:69:f2:2a:cb:
68:70:64:50:fd:dd:7c:c3:ce:55:b1:b0:76:da:af:25:6e:47:
5c:af:4c:2b:3d:96:35:1c:75:b6:8b:ab:d6:74:47:b9:fa:76:
be:09:89:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040zUWYfwuYxlZFE6sfHJ8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0MDZiNGY5ZmQ1MTY4ZWI3NzgxZTgyNGIxNDUzZTk5ZjVl
NjU1M2MwHhcNMjYwMzI5MDkwMDU4WhcNMjYwMzMwMDkwMDU4WjAzMTEwLwYDVQQD
EyhhNzhmOTdjZjA2NTRmNzdkMGEzODgxYzYyNjk0NzE2ODZhM2JkOTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNEXJ8PWSmpeV6R+F8kuh1LYVkeW
30N+XxULUVrypb3594UFg/M3AfmD1v4FGV+4OVN7hTR8B8ynrilpiTSlmcsrZueQ
FawtBkbyyr2anLEnuGNpP7DCiDtb/SFjX1wpV0CzYdV8JdoeOGBY3i11pUFwpK1H
MhRXrjA+WnoZmofTabF4xnUZfS34yYV5Dyy1LJjmuZzTBgkeSL/pb/lSj5x/jSsg
ZSi+90kC7a194JLA67zd2DKvtZjohTp+vHbkXFO0F13oMW6NFiETCdP6NiRv8CAd
bC/mp9x1VymqnPvy0bvEJEvsR5XlSMaEMu8aOrpITEE1J07HibrecxsqswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKePl88GVPd9CjiBxiaUcWhqO9kcMB8GA1UdIwQY
MBaAFBQGtPn9UWjrd4HoJLFFPpn15lU8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NmQ1MTItNDk5Yi00MThlLWE0MjAt
YzE2MTI0NmM4MjVhLzEvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NmQ1MTItNDk5Yi00MThlLWE0MjAtYzE2MTI0NmM4MjVh
LzEvRkFhMC1mMVJhT3QzZ2Vna3NVVS1tZlhtVlR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHG9VH1dm
H6GrRmiU5nv0JppExacAxXPW+tCymRQktY+P63PbMaMHsHvgbzKI9ESXw06IoTZI
CdqActtpDWscalLnJ+kydFJlvpSvjv/FOp0ACx2Pdvk1goy7cF/G7tZCSYTLvCeX
pfJURZU9R6s2xNfFnBcHBfPWYbDpivVV5pBdkz7tQRbu1y2jcMWTa4o/gP3L4g5q
rPwuvz2uPzvSv5iV9yGXGKmwr5PipsS8fuVOEuholtmP28fgvoaN6BvP6P4mZOdY
XQ+VoMyXgP+G91cHAXRp8irLaHBkUP3dfMPOVbGwdtqvJW5HXK9MKz2WNRx1tour
1nRHufp2vgmJew==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:52 2026 by rpki-client