Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
File: fZK2dHUnB1UTaoo8qALKEsisfnc.mft (raw, json)
Hash identifier: P3KoX9Ob8pM1TCojZf0mxDa7YmlfSd5j5YEcrzhRxaQ=
Subject key identifier: A0:B3:41:AF:A7:A2:AC:E2:64:67:9E:64:D6:02:F9:53:04:D4:B6:6C
Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Certificate serial: 019D37C01F1A52A9259FEA98FC4801512A5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
Manifest number: 0FB8
Signing time: Sun 29 Mar 2026 04:00:30 +0000
Manifest this update: Sun 29 Mar 2026 04:00:30 +0000
Manifest next update: Mon 30 Mar 2026 04:00:30 +0000
Files and hashes: 1: Q69BGamqP9_WoNnMCdnt1bm0Zuk.asa (hash: vaww5N01JjWWsrnL1Alu05fhe0e30iMVsw9GtNm8F+s=)
2: ecJkAb9L5BLrJG4sRdndteYMNv8.roa (hash: wE2gGvfsffXq2etxDqbfTLucpqrE1NBT6xi3whuXMTQ=)
3: fZK2dHUnB1UTaoo8qALKEsisfnc.crl (hash: Y05wMzziV8wk9TEt0Ua1QSiut3QxAswMiuN0VKuRGyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:1f:1a:52:a9:25:9f:ea:98:fc:48:01:51:2a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77
Validity
Not Before: Mar 29 04:00:30 2026 GMT
Not After : Mar 30 04:00:30 2026 GMT
Subject: CN=a0b341afa7a2ace264679e64d602f95304d4b66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:4e:3c:31:3a:76:15:50:11:1f:c7:e7:8b:
b8:2b:06:69:5b:b3:6e:b2:b2:13:f4:ec:14:5b:ff:
19:a1:56:2e:5d:71:44:5a:51:42:a8:55:3a:87:c7:
96:10:83:5b:a1:de:79:4a:91:ff:fc:b2:a3:cf:fa:
47:dc:ee:e9:48:ba:a7:19:f7:49:b2:f9:59:98:ab:
98:1d:3d:d0:e4:6b:7e:b4:ac:f5:b2:82:14:c5:bb:
2b:e7:44:cd:11:2a:fa:1d:56:a8:b2:2b:19:f3:f8:
d8:59:d8:0b:da:5f:2a:65:7a:82:dd:cb:71:00:62:
bb:a7:a7:49:ba:56:39:72:e8:18:c1:98:fe:b6:a2:
68:1d:53:b1:43:4b:12:fe:2a:fa:73:d4:74:e5:b2:
88:34:3c:89:70:d7:6b:c0:90:b9:04:14:f0:4b:42:
8a:55:22:fa:8e:a7:04:4e:58:64:0a:82:af:d1:9e:
17:80:7d:5a:9b:2c:14:50:06:12:3c:d5:7a:52:8e:
7e:4f:87:b3:27:dd:44:a9:d3:5d:b2:e6:ab:e1:e8:
40:7a:fb:c1:c6:c4:88:1b:8e:55:79:c4:dc:de:09:
7a:35:06:d5:05:19:07:f9:16:cf:ef:b3:cf:9d:93:
c6:a2:2e:60:14:38:d9:5a:f5:84:01:e6:52:8d:90:
f0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B3:41:AF:A7:A2:AC:E2:64:67:9E:64:D6:02:F9:53:04:D4:B6:6C
X509v3 Authority Key Identifier:
keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:fd:c8:95:43:77:e6:1f:03:57:81:6c:e0:fc:d1:15:a1:2e:
ee:d4:68:36:3d:71:7a:ab:35:c5:05:7e:fe:5b:d3:4e:8c:f6:
ba:28:00:b1:91:da:4b:c5:e0:7f:9d:f7:f3:71:2f:e6:2a:a6:
ca:bd:05:e3:ea:26:6d:f1:46:49:28:6e:a7:d2:d6:f0:2e:38:
ea:e2:65:46:2f:fd:57:cf:b2:79:df:e2:50:8a:c9:a6:23:26:
4a:41:f9:60:2d:61:4b:ca:a5:ea:93:df:2d:85:5b:57:32:7f:
e6:3e:84:55:d5:d6:16:4c:de:e4:11:cc:1b:c8:d5:47:61:80:
c5:41:0d:e8:77:bb:93:5e:df:5d:8f:de:34:bb:97:97:46:5f:
71:25:8e:6d:d3:e5:5f:ac:48:02:cb:1a:8d:f3:1b:2a:8b:e0:
5d:f6:0f:78:31:38:c3:1a:a0:23:4d:4b:8a:04:28:24:24:0c:
d6:1f:48:57:5a:b8:82:21:b8:ba:b7:f8:35:4e:a2:f3:ad:95:
eb:fe:72:30:e6:08:05:39:02:df:c2:3f:95:01:1a:0d:3c:6f:
6c:72:2a:43:14:f4:59:0b:fc:76:1f:06:77:aa:c6:79:b1:2c:
61:a4:ec:2f:fb:68:22:8b:41:2f:d2:f4:02:22:6a:1a:9b:b3:
95:fe:7d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:37 2026 by rpki-client