Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
File: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft (raw, json)
Hash identifier: x9+jsCtuyUe4arOBYjkRAh/SaePYLoAYjb3zE9vQPb4=
Subject key identifier: 6C:51:FE:53:8C:E8:8B:3B:66:EF:37:00:EA:DD:24:0C:B7:2F:40:42
Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Certificate serial: 019DDD683FDC6BB5029092D13FDBCE2DC25B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
Manifest number: 18E6
Signing time: Thu 30 Apr 2026 08:01:29 +0000
Manifest this update: Thu 30 Apr 2026 08:01:29 +0000
Manifest next update: Fri 01 May 2026 08:01:29 +0000
Files and hashes: 1: anOK_t3CyTqq8NlqFB7A075gooA.roa (hash: UdYKN437GE/t4do7Cb6fa4jEkY53zklvjYRy+PQ0Xrg=)
2: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl (hash: lWeTd6qc+Qn0HVlmLQlNKNLLowiFHcowQ9cWvSk1CLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 08:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dd:68:3f:dc:6b:b5:02:90:92:d1:3f:db:ce:2d:c2:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Validity
Not Before: Apr 30 08:01:29 2026 GMT
Not After : May 1 08:01:29 2026 GMT
Subject: CN=6c51fe538ce88b3b66ef3700eadd240cb72f4042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cb:f3:a1:b6:64:23:5c:ec:db:ff:34:cb:c1:
c7:11:02:67:f1:f6:ac:f8:17:53:15:94:92:c8:5f:
55:bd:15:df:7d:56:d6:00:8d:72:4d:c6:e5:28:e4:
65:90:e4:ea:6e:f0:49:fa:cf:8e:fa:aa:91:fb:cd:
7e:56:52:2b:5b:fd:6c:fc:9a:29:1e:9c:b7:2b:82:
bd:bd:16:7d:d4:36:fa:58:50:66:07:2b:7f:a3:fb:
1e:73:4f:f2:b3:ba:36:c8:9d:b5:1c:8f:16:01:c9:
08:1b:c8:35:fb:ed:6a:1c:4f:dd:23:a6:00:0f:a3:
e1:13:ea:d3:4e:fe:8c:bf:1f:c3:e6:88:1f:11:d4:
a9:25:f8:0c:85:8a:67:b0:8f:42:00:74:28:29:a5:
4f:35:66:c8:d8:de:18:71:d1:3c:f0:55:89:46:09:
00:3f:41:a4:d5:17:6a:ce:b1:d5:2d:bf:0c:5f:f1:
db:6a:2e:2f:95:27:dc:17:ef:5a:0c:d9:c8:b7:65:
ed:44:ee:6c:58:ae:c9:57:55:37:15:92:8c:69:a7:
69:67:4b:e0:64:89:d3:db:47:cf:43:24:c8:ca:a6:
82:3b:19:cb:4b:96:d7:d3:48:4a:bb:ea:35:98:1c:
43:e4:b6:ed:b3:d1:c5:35:46:df:fa:0f:56:4e:4c:
00:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:51:FE:53:8C:E8:8B:3B:66:EF:37:00:EA:DD:24:0C:B7:2F:40:42
X509v3 Authority Key Identifier:
keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:cc:e7:a1:2a:f4:53:4f:34:59:17:de:67:47:e7:14:b5:08:
95:46:4e:12:65:ac:be:8a:48:a4:24:76:5f:1d:a6:b9:d3:de:
d0:71:7c:a0:ac:68:f0:ba:c2:2d:25:2a:7c:f2:db:0a:f4:82:
9c:d4:ce:17:99:c2:3f:88:73:68:e2:b3:9e:97:7a:cf:a3:90:
ae:5a:f8:d6:3c:f6:df:84:b8:3b:30:75:65:a9:2e:f2:00:92:
9c:fe:2c:bd:2c:ae:d9:c2:96:09:e7:40:66:b4:bb:ce:8b:82:
78:b7:70:39:ed:c9:af:91:e8:28:a1:fc:7c:78:58:89:bc:b5:
5c:ca:df:e0:a3:cd:fe:23:25:df:a8:ee:36:e0:f8:ff:67:be:
3d:cf:43:f7:88:50:07:4c:5d:40:16:44:04:df:7a:be:cd:2d:
93:46:30:3d:4e:9c:cf:84:39:73:fb:c3:eb:da:b3:d2:0e:f2:
fa:c5:cf:6d:a8:b9:e0:8d:69:2f:7f:e4:8c:34:b0:3e:2b:4c:
65:c2:c8:33:a3:ee:c0:46:ed:3d:ca:32:0c:18:e0:a9:40:af:
37:fb:20:64:74:5b:d9:93:18:4f:61:c5:5f:ee:0c:21:41:de:
7c:80:09:2d:e1:da:9e:29:6f:74:97:b4:6e:6a:d7:b8:3d:a6:
24:9b:e6:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3daD/ca7UCkJLRP9vOLcJbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMTM0MTRiZGMyMzEyNDAwZGZhOWY1MDY1MGQ1MWVlMDQ0
M2RmMTYwHhcNMjYwNDMwMDgwMTI5WhcNMjYwNTAxMDgwMTI5WjAzMTEwLwYDVQQD
Eyg2YzUxZmU1MzhjZTg4YjNiNjZlZjM3MDBlYWRkMjQwY2I3MmY0MDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8vzobZkI1zs2/80y8HHEQJn8fas
+BdTFZSSyF9VvRXffVbWAI1yTcblKORlkOTqbvBJ+s+O+qqR+81+VlIrW/1s/Jop
Hpy3K4K9vRZ91Db6WFBmByt/o/sec0/ys7o2yJ21HI8WAckIG8g1++1qHE/dI6YA
D6PhE+rTTv6Mvx/D5ogfEdSpJfgMhYpnsI9CAHQoKaVPNWbI2N4YcdE88FWJRgkA
P0Gk1RdqzrHVLb8MX/Hbai4vlSfcF+9aDNnIt2XtRO5sWK7JV1U3FZKMaadpZ0vg
ZInT20fPQyTIyqaCOxnLS5bX00hKu+o1mBxD5Lbts9HFNUbf+g9WTkwAzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGxR/lOM6Is7Zu83AOrdJAy3L0BCMB8GA1UdIwQY
MBaAFH4TQUvcIxJADfqfUGUNUe4EQ98WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmhOQlM5d2pFa0FOLXA5UVpRMVI3Z1JEM3hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi80NGMzNjUtNmNlZC00NWQ5LTg2NWQt
MDRmY2VjYWQ3MGVjLzEvZmhOQlM5d2pFa0FOLXA5UVpRMVI3Z1JEM3hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi80NGMzNjUtNmNlZC00NWQ5LTg2NWQtMDRmY2VjYWQ3MGVj
LzEvZmhOQlM5d2pFa0FOLXA5UVpRMVI3Z1JEM3hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd8znoSr0
U080WRfeZ0fnFLUIlUZOEmWsvopIpCR2Xx2mudPe0HF8oKxo8LrCLSUqfPLbCvSC
nNTOF5nCP4hzaOKznpd6z6OQrlr41jz234S4OzB1Zaku8gCSnP4svSyu2cKWCedA
ZrS7zouCeLdwOe3Jr5HoKKH8fHhYiby1XMrf4KPN/iMl36juNuD4/2e+Pc9D94hQ
B0xdQBZEBN96vs0tk0YwPU6cz4Q5c/vD69qz0g7y+sXPbai54I1pL3/kjDSwPitM
ZcLIM6PuwEbtPcoyDBjgqUCvN/sgZHRb2ZMYT2HFX+4MIUHefIAJLeHanilvdJe0
bmrXuD2mJJvmFw==
-----END CERTIFICATE-----
Generated at Thu Apr 30 17:50:31 2026 by rpki-client