Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
File: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft (raw, json)
Hash identifier: DNJq4gUzpa5XrpbO9+hIzaRbmYDvgDTLsMvuovXback=
Subject key identifier: 92:09:26:BD:6D:16:CB:B6:4C:39:09:04:6E:F5:87:D8:28:8D:71:8B
Authority key identifier: 7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
Certificate issuer: /CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Certificate serial: 019DCCE20EA4C8F71A3F4AAF72CD17B4C0F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
Manifest number: 11B5
Signing time: Mon 27 Apr 2026 03:00:59 +0000
Manifest this update: Mon 27 Apr 2026 03:00:59 +0000
Manifest next update: Tue 28 Apr 2026 03:00:59 +0000
Files and hashes: 1: MSIj_pvmmWV611TPzznzhVyMajg.roa (hash: lcZd6Vsmhq0WpZpZ2lk/ey8tKSzoVTxP11Cj84fNRNQ=)
2: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl (hash: Ff8oh5D8qHjCJJvBr2PY61MXR33PuimfThO+Mf0KXD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:e2:0e:a4:c8:f7:1a:3f:4a:af:72:cd:17:b4:c0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Validity
Not Before: Apr 27 03:00:59 2026 GMT
Not After : Apr 28 03:00:59 2026 GMT
Subject: CN=920926bd6d16cbb64c3909046ef587d8288d718b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0e:ad:0b:22:d1:21:80:92:44:e9:4c:25:b5:
8d:1e:81:37:ff:ae:00:37:2d:b0:6f:a0:b1:29:72:
2a:da:58:70:79:b7:c8:41:11:c4:08:85:54:43:2f:
2c:18:20:47:65:99:20:5e:0c:2f:b3:0c:fe:1d:8a:
7e:a1:37:32:10:2d:f0:66:cd:d8:da:b9:2b:80:f8:
bf:62:9d:41:07:c2:2d:e2:49:a7:d3:d4:be:29:1f:
5e:68:76:35:a1:44:93:c2:5a:c2:12:27:c6:79:23:
5b:cb:5f:21:cc:aa:67:11:71:35:63:18:df:43:49:
6e:84:d4:7e:7c:45:40:c2:af:69:4f:4f:21:0c:37:
b4:2d:35:16:9e:bb:7c:2f:a1:3f:eb:c2:44:21:96:
63:b8:14:a7:8a:53:02:9c:58:ea:f8:78:32:62:90:
d5:c5:cd:b3:72:49:f1:f2:fb:5b:96:57:83:15:d4:
29:33:0f:71:22:54:a6:db:14:42:c2:a7:94:e3:eb:
1b:82:30:e3:63:50:19:bc:7d:f9:ea:51:00:66:d7:
56:ac:12:8b:cf:ee:72:b7:0d:df:fe:3b:5d:1a:8e:
ff:81:5b:3e:8c:5b:cc:5e:5a:b7:33:42:3e:49:4e:
63:37:ca:ff:b3:f6:7a:5a:60:14:d6:27:60:75:30:
a4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:09:26:BD:6D:16:CB:B6:4C:39:09:04:6E:F5:87:D8:28:8D:71:8B
X509v3 Authority Key Identifier:
keyid:7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:97:44:12:da:e9:7d:6c:b0:e8:16:f9:f0:0d:60:e0:15:ec:
5c:be:4d:78:4a:80:59:d0:d1:37:47:3b:01:a0:24:e3:87:58:
5c:0b:88:79:7f:e7:ab:7d:37:f7:72:91:24:9c:91:ee:35:f8:
7b:f4:9e:3a:9d:05:97:41:29:51:e9:d9:1d:b3:90:88:13:43:
87:57:83:3f:9d:b9:73:fe:c2:89:8c:bf:b9:3c:bd:4f:c8:c2:
22:0a:9c:9a:cf:6d:0d:22:74:af:96:1d:a8:3a:ba:6a:51:4a:
06:43:21:02:e3:51:f9:6a:82:75:3b:98:44:79:f0:de:9f:01:
ad:ef:9a:f9:12:df:5e:bb:07:c7:f5:7b:c7:38:40:f3:f1:cd:
2b:d6:e7:9f:d3:e4:69:8f:b4:75:31:04:12:69:43:6e:3d:c1:
61:6a:37:56:f9:43:47:98:a9:da:e4:f9:ef:43:e1:24:28:2f:
0a:4a:55:f4:0e:41:ff:41:9e:6e:47:3e:76:0d:ba:84:50:8d:
8f:b3:92:06:5d:cc:24:d5:93:3a:07:9d:fa:52:37:22:51:70:
5a:62:76:20:53:c3:0e:01:66:81:69:31:19:97:24:a9:3d:5b:
9e:57:cd:16:36:ca:4e:46:88:2d:68:0f:76:ed:77:61:53:eb:
b3:6a:05:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 11:21:01 2026 by rpki-client