Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
File: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft (raw, json)
Hash identifier: hrBQYbpyWnWwelMuUigYaNbZqTFdbVDtEZVMKvG+JwM=
Subject key identifier: 37:F4:C4:A6:4D:CC:30:5A:74:42:A1:ED:41:6F:C6:20:D6:1E:DE:22
Authority key identifier: 7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
Certificate issuer: /CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Certificate serial: 019EB4A0078F2FD34C3C474DC8D940352DAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
Manifest number: 122D
Signing time: Thu 11 Jun 2026 03:00:47 +0000
Manifest this update: Thu 11 Jun 2026 03:00:47 +0000
Manifest next update: Fri 12 Jun 2026 03:00:47 +0000
Files and hashes: 1: MSIj_pvmmWV611TPzznzhVyMajg.roa (hash: lcZd6Vsmhq0WpZpZ2lk/ey8tKSzoVTxP11Cj84fNRNQ=)
2: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl (hash: 9HQHpY4oiVN5ipM25wCsfFB0zpkPzTHwhrfHWsMI5ck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 03:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b4:a0:07:8f:2f:d3:4c:3c:47:4d:c8:d9:40:35:2d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Validity
Not Before: Jun 11 03:00:47 2026 GMT
Not After : Jun 12 03:00:47 2026 GMT
Subject: CN=37f4c4a64dcc305a7442a1ed416fc620d61ede22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:98:98:92:1b:b3:a8:1c:7b:cc:2a:bf:45:e7:
10:75:9f:06:2f:a4:e8:81:c0:86:58:2e:9f:04:67:
da:d9:f3:f9:3f:2b:d4:27:fe:75:c1:a3:f3:cc:58:
ff:89:f2:45:78:d3:3e:41:b0:e3:61:c9:88:9e:a2:
5e:52:99:3e:fd:70:f0:0e:5e:28:1f:13:62:f1:56:
05:85:71:79:6b:f0:b1:06:38:ec:66:8c:4e:6a:a7:
ec:20:d6:45:47:3d:ea:3a:51:cd:dd:57:ab:06:ba:
3a:69:9f:23:d7:12:53:0c:40:33:0c:92:44:78:7a:
5e:10:88:0f:e7:0f:ad:8c:df:2f:38:f7:7d:be:4d:
46:c0:64:77:ae:b0:64:e3:d9:f4:26:7d:fa:3a:d6:
5d:89:60:13:a3:eb:d1:76:c6:ee:52:00:77:ed:4b:
2b:c4:af:82:c5:35:c9:b4:d3:a0:57:a9:b6:58:d1:
48:d3:ea:29:f0:b7:87:e5:55:f3:ab:00:cf:8a:ef:
7f:c4:6c:c6:11:38:a8:de:e2:b0:45:26:11:ef:5a:
24:08:8a:59:e2:99:b2:28:31:f5:9e:04:10:06:96:
fd:45:81:12:02:12:d9:30:0f:c5:ab:fb:d9:08:28:
19:3c:59:f1:73:17:47:be:62:c8:ec:6d:8d:35:54:
8c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F4:C4:A6:4D:CC:30:5A:74:42:A1:ED:41:6F:C6:20:D6:1E:DE:22
X509v3 Authority Key Identifier:
keyid:7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:d6:40:d5:a7:e2:f9:b7:fe:60:4a:4a:27:c3:26:6f:06:2c:
bb:5a:a7:0d:a4:68:eb:5f:98:8a:2e:8a:2a:2f:2d:dd:bd:ff:
af:ce:30:89:76:5f:76:96:f8:bd:bf:ba:63:b5:4f:fb:24:45:
a9:0a:c2:91:bd:b3:95:52:5b:f3:7b:6b:67:dc:e9:89:65:74:
18:a8:11:e2:51:05:c9:cf:11:f6:eb:3d:87:6d:6d:96:72:e3:
39:48:36:29:7f:96:28:23:63:1c:c3:de:b0:bc:64:98:70:1e:
42:28:7b:4b:f2:71:4a:3a:a9:22:49:39:e4:70:cd:52:2a:f6:
55:18:46:01:ea:7f:8a:dc:07:c9:55:ff:19:59:69:a5:73:e3:
fa:a0:87:d4:57:29:b1:2c:c2:fe:1c:78:84:3a:c4:53:6b:a9:
bb:3a:94:8b:35:94:92:f8:6d:cc:43:ca:99:6f:0c:f5:d9:80:
ac:0c:ce:09:2a:3c:44:4a:d0:83:9b:28:8d:30:1f:a4:8c:2c:
46:6c:f1:ba:be:90:d3:3d:0b:e4:a8:1e:c8:10:d5:97:30:28:
6d:3b:42:52:ee:1e:96:53:ca:be:23:c4:d7:d7:ae:77:a2:76:
53:f9:33:20:e6:82:8c:8c:91:8f:34:2f:d8:00:d4:2c:31:17:
52:12:d4:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 13:10:30 2026 by rpki-client