Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json)
Hash identifier: LC/lz5upAQq/ztRU32aItwyqoY8/TuB+lFMXRZNW3Ok=
Subject key identifier: 58:76:B8:C2:DF:1F:51:27:C7:53:BB:6E:92:40:D5:9D:95:74:BE:05
Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Certificate serial: 019D378989AB355C6FFCABB9E3DF99C50CD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 03:00:53 +0000
Manifest this update: Sun 29 Mar 2026 03:00:53 +0000
Manifest next update: Mon 30 Mar 2026 03:00:53 +0000
Files and hashes: 1: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: OWPp47l5jZQx7kBAZqpbkKw0bvNetz0k0Vvmsq9Pxqs=)
2: uTfCO2CQvjnwzxgvmE8a-0Q3PkE.roa (hash: uXLhOjnuwZec+7he1bSLRYP9Be1CjyK6Z98Hp44cEVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:89:ab:35:5c:6f:fc:ab:b9:e3:df:99:c5:0c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Validity
Not Before: Mar 29 03:00:53 2026 GMT
Not After : Mar 30 03:00:53 2026 GMT
Subject: CN=5876b8c2df1f5127c753bb6e9240d59d9574be05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:59:d3:ec:02:6e:cf:82:c5:c9:08:bf:d9:13:
d6:ad:cf:83:65:5c:f4:f3:0e:4e:5e:57:a2:ae:11:
0c:e5:66:cd:a9:16:4b:78:2c:76:3a:e0:17:a9:98:
b5:c6:b9:a6:32:48:4e:a6:8d:0c:fe:1d:73:fb:91:
45:a5:2e:bd:39:7c:f2:b7:fe:22:df:af:49:12:62:
dd:23:8d:bb:d3:ba:2a:b3:85:17:84:e5:44:e8:67:
c7:a6:f9:bf:50:d2:43:cf:f1:a5:22:7b:91:54:02:
42:7e:4c:c8:6f:6c:90:a4:35:f1:b9:73:9b:d1:5c:
aa:5c:c4:38:ba:71:11:59:68:55:96:87:43:30:77:
05:04:a5:cb:9d:a1:32:93:58:a3:3f:15:35:da:ad:
bc:14:80:79:a7:57:60:4e:05:12:64:c0:12:95:f5:
cd:85:e7:47:0e:3d:f7:fe:87:a8:58:e2:39:34:c9:
a9:ca:2f:21:dd:62:ff:dc:3e:e6:69:6b:77:d8:d9:
d2:13:98:62:17:3e:cb:a7:58:e7:98:a3:0e:51:fc:
36:b9:4c:ff:b7:ea:9a:5c:ec:1c:7b:8d:f2:1a:8e:
99:62:1c:08:7d:95:18:66:14:f9:3e:df:b3:7e:b2:
fe:a1:77:45:5b:7d:d9:cc:3a:be:28:4c:b6:a6:50:
15:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:76:B8:C2:DF:1F:51:27:C7:53:BB:6E:92:40:D5:9D:95:74:BE:05
X509v3 Authority Key Identifier:
keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:aa:e6:b7:88:4a:c7:44:4a:c8:c1:53:e2:87:b1:14:1f:33:
8c:56:5f:13:3f:88:5e:03:29:f1:7d:68:3d:4a:91:e5:63:51:
39:f0:9c:69:1d:11:dc:44:89:02:91:a2:32:68:06:61:be:a2:
ea:d4:4d:70:27:6f:83:25:69:0b:92:8b:bc:11:da:18:2c:4d:
24:cf:d0:98:3e:a9:0f:ad:61:cc:41:74:cf:af:aa:71:a4:cc:
aa:7f:eb:b0:c4:ba:c9:02:89:10:e1:7a:27:4e:99:78:fb:4f:
19:30:ef:a9:13:98:cf:f3:5a:f1:fe:b3:66:55:1c:a7:9a:2e:
1d:d5:8f:4f:21:35:79:12:0d:7a:70:56:be:8f:ae:14:c3:84:
42:3f:cc:c7:89:60:60:ae:14:72:d1:c7:4f:46:ea:cb:2a:98:
da:27:49:f2:bf:5f:d5:ae:0d:58:1e:20:95:73:e9:77:14:7d:
91:35:c7:24:be:be:8a:5e:fa:40:0c:23:70:3b:00:a7:c3:a0:
74:e0:79:39:12:d7:c8:43:27:b2:62:8a:fc:60:79:08:8c:4f:
9b:42:87:b0:40:06:7a:61:87:60:ef:8b:e7:77:c0:24:50:a9:
d3:26:a3:01:bc:90:25:29:37:5c:c6:5b:05:fc:05:a7:14:65:
8e:99:fd:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:37 2026 by rpki-client