Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
File: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft (raw, json)
Hash identifier: tfL5V4Nbr7QgzBOKU3POKJQdK8pcEHFg4uS6jiGMPJk=
Subject key identifier: 59:CA:FD:60:65:13:71:A5:E8:B0:05:6F:AC:9D:B4:0E:DF:0F:0C:E4
Authority key identifier: 7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
Certificate issuer: /CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Certificate serial: 019CD79F1472D17ED359D2FBE337DA7C0CA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
Manifest number: 1136
Signing time: Tue 10 Mar 2026 12:00:52 +0000
Manifest this update: Tue 10 Mar 2026 12:00:52 +0000
Manifest next update: Wed 11 Mar 2026 12:00:52 +0000
Files and hashes: 1: MSIj_pvmmWV611TPzznzhVyMajg.roa (hash: lcZd6Vsmhq0WpZpZ2lk/ey8tKSzoVTxP11Cj84fNRNQ=)
2: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl (hash: ZM+Kw0CFfk9vBE3VyD3YwD0AwUpLODrHG8ZTPKEFe2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Mar 2026 12:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d7:9f:14:72:d1:7e:d3:59:d2:fb:e3:37:da:7c:0c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Validity
Not Before: Mar 10 12:00:52 2026 GMT
Not After : Mar 11 12:00:52 2026 GMT
Subject: CN=59cafd60651371a5e8b0056fac9db40edf0f0ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e9:68:20:6c:e3:5f:04:82:b2:df:ea:f0:4a:
82:0d:3f:f5:83:0b:b8:70:b8:8d:ee:7a:5f:62:38:
39:a4:40:cc:bd:ad:f8:08:b8:03:30:22:b3:79:8c:
51:e7:e2:82:40:ee:72:51:d7:39:70:e6:0f:30:d0:
62:94:c2:2e:81:d0:68:4f:7c:b6:f8:f6:ac:5a:15:
ce:91:e8:0f:2e:65:f7:41:dc:5f:a0:3f:41:1a:6f:
6d:0f:0d:a0:65:c5:c8:4b:47:77:6f:8f:e2:b2:6a:
5f:56:c2:da:36:84:6a:66:0e:3d:46:a2:4e:96:ed:
7f:86:5b:76:ea:e8:cd:81:ab:b4:15:c2:99:6e:75:
13:35:ca:78:75:9e:d3:5b:c1:85:e6:71:3b:01:9e:
2b:1a:52:3c:02:cc:b2:68:5a:56:aa:a7:34:9e:3e:
35:30:ac:0c:b1:0e:9a:4d:7b:7a:2d:6f:aa:e5:1a:
db:d2:49:f2:b8:bc:12:fa:f5:46:6d:36:c2:22:84:
84:be:b4:06:15:1a:7d:41:56:e1:df:b7:3b:02:0b:
84:a2:51:52:04:43:5c:49:c0:93:fe:14:d5:ae:03:
ef:b2:e2:3c:4f:a2:b9:f5:75:ad:bc:32:96:d6:56:
ce:0e:23:9b:65:65:d9:be:9a:2b:27:10:ef:04:3f:
0d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:CA:FD:60:65:13:71:A5:E8:B0:05:6F:AC:9D:B4:0E:DF:0F:0C:E4
X509v3 Authority Key Identifier:
keyid:7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:48:e5:3c:27:16:9d:41:7e:78:0b:4b:ae:db:39:1e:89:d8:
43:3b:47:64:39:a2:7e:1f:9f:36:5f:3e:9a:aa:31:2c:bd:38:
51:a5:2e:26:15:f4:8f:3b:93:32:49:c6:b4:9f:d0:29:db:e6:
7d:fb:7c:e5:2c:d2:8d:2e:95:34:9d:32:46:85:83:03:c6:d7:
18:b9:ec:03:30:b1:6a:bd:d1:ab:72:a4:dd:63:8f:8a:19:0e:
de:8f:5c:34:07:58:9b:7e:f5:ad:84:75:53:aa:f4:4c:71:11:
26:e0:8f:88:88:4d:97:49:5d:71:96:10:bc:3c:0a:a7:78:60:
50:17:e7:e1:47:cf:9a:6e:1e:a7:e4:f4:11:67:97:a7:05:dd:
da:3c:4e:d5:ba:1e:d1:30:8c:ae:db:39:c3:72:f3:b5:e8:ec:
3e:8d:20:37:5c:a5:9d:34:61:f6:10:3e:c1:88:c0:b2:5c:e3:
1d:fd:b1:63:f9:67:58:04:d0:38:ba:f0:8f:d2:05:86:4f:28:
66:78:31:8a:0a:c4:47:49:90:1f:71:50:25:3b:7f:6f:14:4e:
dd:2a:37:0f:8c:e1:7b:14:30:f7:4d:c3:52:d5:10:15:91:6b:
3d:45:30:f4:c8:42:4a:dd:93:5e:89:a6:52:59:80:79:b3:bf:
f2:a5:6b:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzXnxRy0X7TWdL74zfafAypMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNjZkMTllNTM4OGYxMmMxZDI4YTE2YzMyOGQ4NmMzNjRl
OWNjNzkwHhcNMjYwMzEwMTIwMDUyWhcNMjYwMzExMTIwMDUyWjAzMTEwLwYDVQQD
Eyg1OWNhZmQ2MDY1MTM3MWE1ZThiMDA1NmZhYzlkYjQwZWRmMGYwY2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuloIGzjXwSCst/q8EqCDT/1gwu4
cLiN7npfYjg5pEDMva34CLgDMCKzeYxR5+KCQO5yUdc5cOYPMNBilMIugdBoT3y2
+PasWhXOkegPLmX3QdxfoD9BGm9tDw2gZcXIS0d3b4/ismpfVsLaNoRqZg49RqJO
lu1/hlt26ujNgau0FcKZbnUTNcp4dZ7TW8GF5nE7AZ4rGlI8AsyyaFpWqqc0nj41
MKwMsQ6aTXt6LW+q5Rrb0knyuLwS+vVGbTbCIoSEvrQGFRp9QVbh37c7AguEolFS
BENcScCT/hTVrgPvsuI8T6K59XWtvDKW1lbODiObZWXZvporJxDvBD8NPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFnK/WBlE3Gl6LAFb6ydtA7fDwzkMB8GA1UdIwQY
MBaAFH1m0Z5TiPEsHSihbDKNhsNk6cx5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQt
ZjBkMDc1YTQzN2YxLzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQtZjBkMDc1YTQzN2Yx
LzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOkjlPCcW
nUF+eAtLrts5HonYQztHZDmifh+fNl8+mqoxLL04UaUuJhX0jzuTMknGtJ/QKdvm
fft85SzSjS6VNJ0yRoWDA8bXGLnsAzCxar3Rq3Kk3WOPihkO3o9cNAdYm371rYR1
U6r0THERJuCPiIhNl0ldcZYQvDwKp3hgUBfn4UfPmm4ep+T0EWeXpwXd2jxO1boe
0TCMrts5w3LztejsPo0gN1ylnTRh9hA+wYjAslzjHf2xY/lnWATQOLrwj9IFhk8o
ZngxigrER0mQH3FQJTt/bxRO3So3D4zhexQw903DUtUQFZFrPUUw9MhCSt2TXomm
UlmAebO/8qVrpw==
-----END CERTIFICATE-----
Generated at Tue Mar 10 19:45:26 2026 by rpki-client