Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
File: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft (raw, json)
Hash identifier: MZajr+M0MNpMIlTswo3T9Ih+jDRr55H7MXhYqprfhOk=
Subject key identifier: F2:8F:9A:D5:26:CA:EF:D8:48:F9:EA:93:3C:44:BE:AB:69:B8:3C:C7
Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Certificate serial: 019CE8253A3BA822EC9BEBD6B318427785DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
Manifest number: 1867
Signing time: Fri 13 Mar 2026 17:01:19 +0000
Manifest this update: Fri 13 Mar 2026 17:01:19 +0000
Manifest next update: Sat 14 Mar 2026 17:01:19 +0000
Files and hashes: 1: anOK_t3CyTqq8NlqFB7A075gooA.roa (hash: UdYKN437GE/t4do7Cb6fa4jEkY53zklvjYRy+PQ0Xrg=)
2: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl (hash: SCS3AS/dvK3fUjKLiTfbXe+aLmcsE2u+k8vhi8mJtbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 17:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:25:3a:3b:a8:22:ec:9b:eb:d6:b3:18:42:77:85:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Validity
Not Before: Mar 13 17:01:19 2026 GMT
Not After : Mar 14 17:01:19 2026 GMT
Subject: CN=f28f9ad526caefd848f9ea933c44beab69b83cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:29:4b:d4:c3:5f:61:8c:a1:77:75:07:10:70:
4f:b6:9b:04:00:b4:6f:1f:e9:95:57:c6:3d:cd:61:
c7:3e:74:44:65:4d:01:a9:08:5d:35:dc:49:08:e4:
0f:45:40:85:ec:54:f5:b2:9e:59:c5:ee:6a:20:19:
31:48:b6:f0:8b:3b:4c:93:ae:9c:ab:e1:e1:aa:9b:
5c:f0:9f:89:e3:0d:3d:17:a0:a7:08:94:8e:16:c2:
95:8e:88:c4:9f:67:6a:93:72:dd:26:8b:28:74:03:
23:55:7e:8a:d9:49:0d:50:fe:79:3b:e7:ac:08:42:
97:03:2a:d8:ad:da:4c:fc:70:00:f9:e4:2a:b3:68:
55:dd:47:d7:85:7f:bb:d5:ad:d4:91:7b:a9:da:75:
01:11:75:b6:d2:3b:4b:be:b5:1e:4a:b7:63:ab:43:
7a:1c:6e:bf:c8:e6:13:da:01:5b:3a:bd:e2:10:b7:
8a:6f:45:54:10:09:47:d3:e2:fe:6a:0a:16:ce:76:
80:85:e1:c4:ef:cd:e2:bf:9c:fc:11:50:41:af:82:
5d:fb:98:05:38:3f:66:da:a0:7d:8c:62:6e:57:2f:
41:2a:e4:38:d5:d8:54:39:7a:62:ff:90:d2:eb:5f:
ed:d5:d0:41:ab:ba:b4:34:5a:8c:f4:e0:61:c9:52:
9b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8F:9A:D5:26:CA:EF:D8:48:F9:EA:93:3C:44:BE:AB:69:B8:3C:C7
X509v3 Authority Key Identifier:
keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:85:98:4b:44:16:56:aa:40:5e:00:25:46:95:81:30:41:9f:
88:6b:ed:4f:e1:67:1c:5b:87:60:04:98:ac:91:b4:e6:6e:c0:
bd:09:09:55:61:9b:da:f3:dd:65:bf:7d:d0:94:02:bb:c3:07:
51:09:72:71:fa:f2:8d:36:aa:cc:33:dd:c3:3f:f5:ec:15:04:
ee:d4:03:90:0b:08:0f:58:1c:54:5f:c6:26:4d:1c:97:0b:b8:
c5:e4:0f:65:da:87:10:17:44:9c:f5:8e:d8:9a:9a:97:9b:31:
c2:6f:5a:44:f7:98:cb:17:dd:f2:42:b8:11:99:78:c4:9f:89:
c4:a4:0d:51:5b:12:5b:bf:40:16:0e:18:90:eb:3f:47:c1:e2:
71:04:3c:c8:28:45:c0:36:79:e5:b8:ea:12:cc:36:b0:b0:24:
bf:96:ee:0f:03:e9:c4:43:91:d9:87:a9:28:61:27:92:29:db:
f0:44:61:d3:c7:ae:70:4e:5f:0c:3d:17:ba:ba:e6:d9:b1:b0:
8a:e0:7b:72:00:e1:78:b2:ea:9e:0e:dc:c9:d4:bc:39:b2:93:
60:dd:b4:56:93:93:ce:20:82:aa:d1:66:6f:a1:aa:6d:31:e5:
16:91:18:d1:16:b4:ee:b4:f0:45:62:a3:69:a6:9c:16:1a:98:
fe:dc:76:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 02:58:29 2026 by rpki-client