Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
File: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft (raw, json)
Hash identifier: S+OpbPh1d0CP8od1qhI15tQWqFNkFL6uslS0vgJnd1k=
Subject key identifier: 52:F2:C7:87:9D:A4:65:D7:09:82:44:EA:FC:77:8E:5B:5E:B5:CC:3C
Authority key identifier: 7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
Certificate issuer: /CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Certificate serial: 019EB68E67D4E22EC334CEAB8CEB27610BD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
Manifest number: 122E
Signing time: Thu 11 Jun 2026 12:00:46 +0000
Manifest this update: Thu 11 Jun 2026 12:00:46 +0000
Manifest next update: Fri 12 Jun 2026 12:00:46 +0000
Files and hashes: 1: MSIj_pvmmWV611TPzznzhVyMajg.roa (hash: lcZd6Vsmhq0WpZpZ2lk/ey8tKSzoVTxP11Cj84fNRNQ=)
2: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl (hash: TrtZAl007SeJlYMKBsuIW1DGhV0N6ur5OxjalhcwhjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:8e:67:d4:e2:2e:c3:34:ce:ab:8c:eb:27:61:0b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Validity
Not Before: Jun 11 12:00:46 2026 GMT
Not After : Jun 12 12:00:46 2026 GMT
Subject: CN=52f2c7879da465d7098244eafc778e5b5eb5cc3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b1:f3:e8:6e:59:09:b0:cb:b5:5d:10:aa:7b:
7b:d3:7a:6c:83:5e:93:b1:09:8c:fe:d2:7f:dd:ce:
20:14:dc:84:98:21:0d:11:cd:0f:cc:d1:6e:8e:78:
c0:6d:f0:3e:0a:d3:f3:07:29:b2:7d:5c:c6:7d:00:
37:67:e6:10:55:68:dc:f3:1c:76:15:0d:50:28:8e:
01:d7:03:c6:05:2a:66:27:9c:a1:8d:58:8d:e3:0e:
eb:12:40:04:3b:ce:e3:a1:76:cb:c4:73:bf:bd:00:
2d:1c:75:65:e9:58:e8:0c:f9:c4:00:cc:d7:0c:2d:
01:0f:ae:23:2e:b2:f3:8d:b8:4e:ae:be:55:cb:ee:
ff:67:c8:1b:6b:42:9f:26:37:97:1f:d4:0c:57:52:
bc:eb:61:4f:da:55:f0:e5:50:6f:86:ad:05:42:17:
24:84:c9:0d:50:9c:5b:cf:ee:9b:48:cb:f3:49:46:
68:0d:17:3f:b8:b4:d6:03:e5:8d:51:ad:db:59:15:
d4:3b:f7:34:1b:2b:e3:48:6a:85:8c:c5:64:a9:d4:
80:68:9f:2e:27:a5:3d:a5:ac:9b:9a:ed:67:79:48:
1e:45:a9:23:38:a3:8e:b6:aa:d8:df:ec:a4:d2:ba:
d4:fe:02:c5:75:54:f4:a6:57:83:47:c1:87:a7:81:
06:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F2:C7:87:9D:A4:65:D7:09:82:44:EA:FC:77:8E:5B:5E:B5:CC:3C
X509v3 Authority Key Identifier:
keyid:7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:75:91:87:a7:0e:26:12:5a:ff:3b:99:d1:bb:17:b4:a4:f9:
60:c2:75:33:ca:e8:a3:22:cd:ed:87:0a:0d:9c:9b:83:b2:83:
82:e0:88:27:10:64:a4:3f:5d:c4:e0:1c:e7:a9:1c:b6:5d:26:
cf:93:0e:ea:b7:78:77:33:54:81:a7:be:83:17:4c:50:68:27:
c6:5d:26:11:92:cd:bb:54:2c:f7:26:2a:9a:67:27:07:bb:e1:
b4:74:ab:41:bf:cc:98:1c:56:8e:b5:bb:6b:4a:2e:31:80:66:
16:8f:92:bd:e4:9a:c8:4c:9b:96:a0:16:f1:50:d6:a9:09:14:
31:c0:30:46:9e:ed:e7:92:7a:f5:aa:c3:99:d7:a8:f4:8a:2d:
d9:04:ba:36:4f:9d:a9:7a:9e:5e:cb:81:8b:2b:f5:47:0b:5d:
b2:fb:e2:31:b3:57:74:72:f5:c9:95:54:1a:fb:2c:2f:fb:a5:
fb:77:ce:c8:1b:d1:19:cb:13:1d:16:87:5d:a8:63:51:1b:d8:
48:5d:e2:69:bc:21:ee:1d:b9:86:90:62:1d:00:8b:12:a7:3c:
7b:6e:78:23:17:f6:40:73:5b:3f:6c:4c:b6:03:9b:63:8a:f2:
0f:63:ca:1d:43:d4:c4:da:80:97:0b:69:47:48:b9:0e:2a:8a:
b0:2d:fb:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ62jmfU4i7DNM6rjOsnYQvVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNjZkMTllNTM4OGYxMmMxZDI4YTE2YzMyOGQ4NmMzNjRl
OWNjNzkwHhcNMjYwNjExMTIwMDQ2WhcNMjYwNjEyMTIwMDQ2WjAzMTEwLwYDVQQD
Eyg1MmYyYzc4NzlkYTQ2NWQ3MDk4MjQ0ZWFmYzc3OGU1YjVlYjVjYzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5bHz6G5ZCbDLtV0Qqnt703psg16T
sQmM/tJ/3c4gFNyEmCENEc0PzNFujnjAbfA+CtPzBymyfVzGfQA3Z+YQVWjc8xx2
FQ1QKI4B1wPGBSpmJ5yhjViN4w7rEkAEO87joXbLxHO/vQAtHHVl6VjoDPnEAMzX
DC0BD64jLrLzjbhOrr5Vy+7/Z8gba0KfJjeXH9QMV1K862FP2lXw5VBvhq0FQhck
hMkNUJxbz+6bSMvzSUZoDRc/uLTWA+WNUa3bWRXUO/c0GyvjSGqFjMVkqdSAaJ8u
J6U9paybmu1neUgeRakjOKOOtqrY3+yk0rrU/gLFdVT0pleDR8GHp4EG4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLyx4edpGXXCYJE6vx3jltetcw8MB8GA1UdIwQY
MBaAFH1m0Z5TiPEsHSihbDKNhsNk6cx5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQt
ZjBkMDc1YTQzN2YxLzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQtZjBkMDc1YTQzN2Yx
LzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArHWRh6cO
JhJa/zuZ0bsXtKT5YMJ1M8rooyLN7YcKDZybg7KDguCIJxBkpD9dxOAc56kctl0m
z5MO6rd4dzNUgae+gxdMUGgnxl0mEZLNu1Qs9yYqmmcnB7vhtHSrQb/MmBxWjrW7
a0ouMYBmFo+SveSayEyblqAW8VDWqQkUMcAwRp7t55J69arDmdeo9Iot2QS6Nk+d
qXqeXsuBiyv1RwtdsvviMbNXdHL1yZVUGvssL/ul+3fOyBvRGcsTHRaHXahjURvY
SF3iabwh7h25hpBiHQCLEqc8e254Ixf2QHNbP2xMtgObY4ryD2PKHUPUxNqAlwtp
R0i5DiqKsC37Mg==
-----END CERTIFICATE-----
Generated at Thu Jun 11 14:25:51 2026 by rpki-client