Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
File: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft (raw, json)
Hash identifier: b+0Y9uecLO7dEsyq9kugSW8Io6qu5zjzNZlwIG0Dso4=
Subject key identifier: 60:07:A2:CB:AE:BA:FA:48:6B:22:0F:B4:C0:DE:F7:F0:A0:84:20:5F
Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Certificate serial: 019EFD273F3314CE07032B3A869975623875
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
Manifest number: 197B
Signing time: Thu 25 Jun 2026 05:01:07 +0000
Manifest this update: Thu 25 Jun 2026 05:01:07 +0000
Manifest next update: Fri 26 Jun 2026 05:01:07 +0000
Files and hashes: 1: anOK_t3CyTqq8NlqFB7A075gooA.roa (hash: UdYKN437GE/t4do7Cb6fa4jEkY53zklvjYRy+PQ0Xrg=)
2: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl (hash: 7F3bLR6kABSsVleQ6Ga4jY/gIjC6+/Ln7JSwYnNu7Fw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Jun 2026 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fd:27:3f:33:14:ce:07:03:2b:3a:86:99:75:62:38:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Validity
Not Before: Jun 25 05:01:07 2026 GMT
Not After : Jun 26 05:01:07 2026 GMT
Subject: CN=6007a2cbaebafa486b220fb4c0def7f0a084205f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:62:7f:e5:8b:de:82:55:c2:cb:c8:f6:67:e3:
29:4b:7b:06:b5:fb:76:83:25:2c:db:f6:16:12:38:
4b:4e:e2:21:91:4d:01:6c:b6:06:23:0c:89:a2:36:
d0:28:ac:a2:6b:06:8b:89:e4:2a:f6:a7:0e:ae:b5:
2d:49:d5:50:c8:26:5f:fa:20:db:e3:b4:ec:50:03:
c1:04:6c:a8:23:ac:3f:34:6e:d1:16:ad:f5:39:5d:
99:61:ec:0b:e3:9f:70:3b:2e:89:61:7d:57:88:bf:
96:eb:16:03:b6:8e:5a:72:8a:05:cf:ee:8d:45:7c:
c3:8a:8a:72:2b:c1:e0:f2:31:9f:30:6a:2c:be:97:
4a:45:5f:36:53:7e:87:99:93:fa:4d:76:9e:3e:5d:
f3:bb:55:60:15:a8:df:89:13:b1:b9:a4:09:3f:c5:
4a:52:5e:91:1a:ad:37:f2:42:96:1b:3f:5b:6a:55:
23:68:dc:a5:84:e9:c2:54:90:74:bb:6f:38:53:0e:
3b:24:38:d2:6a:b3:b8:83:34:f8:55:e8:8d:81:c1:
1a:0f:b9:b3:48:bd:76:14:12:06:06:8b:32:de:3a:
08:76:33:ca:d4:86:91:92:73:3f:5b:5e:c8:65:e4:
22:14:b8:1f:9d:30:8a:a3:5f:57:51:9d:d7:ee:8b:
50:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:07:A2:CB:AE:BA:FA:48:6B:22:0F:B4:C0:DE:F7:F0:A0:84:20:5F
X509v3 Authority Key Identifier:
keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:70:5c:b6:d4:4e:f4:b8:a7:8f:5c:05:2b:93:aa:66:83:ca:
8b:76:25:72:8a:b0:34:54:0e:71:30:11:08:6e:02:c9:80:76:
77:74:43:1f:7c:86:af:e6:e9:25:aa:5c:35:b9:2c:19:8b:6e:
17:9d:73:bc:de:a8:f1:71:7e:b2:d2:a4:03:d9:66:93:9d:e4:
16:42:8a:4b:78:27:50:fb:5f:b0:22:8f:e2:05:e7:30:bc:c4:
1b:e3:3f:c5:31:20:00:91:8e:7f:f1:67:4e:b3:26:1b:65:47:
0b:7e:a1:88:b6:a3:15:1d:f1:e7:1b:75:7c:cf:6b:56:02:bc:
59:07:d4:b8:b7:ba:48:ea:a0:d1:30:46:85:46:5b:f5:7a:02:
c6:02:3f:19:ec:30:b9:9f:88:cf:d4:68:59:97:f9:53:a4:cd:
d0:22:dc:85:28:67:98:09:80:07:c7:0b:37:4a:b8:93:22:cd:
b8:e8:89:59:03:26:f7:07:a3:08:59:c8:de:18:e3:39:f2:f8:
ba:48:11:8b:36:57:37:a7:d8:55:81:1c:2a:69:fb:5d:ec:b9:
6b:02:7f:83:65:17:7d:d7:48:88:7c:51:94:91:6e:66:32:62:
7a:99:68:f5:39:77:e4:9f:aa:b7:d0:35:ac:19:0a:59:19:3f:
a3:55:d2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 13:48:48 2026 by rpki-client