Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: HtAEXGjbXXdu3+jl/PlnFPJ9JtP2plMcHZ+msQ/g8tI=
Subject key identifier: 81:0D:66:84:2C:59:39:B7:98:ED:F0:F0:22:25:B9:B1:D0:4C:07:6F
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019DB87F272E48885A2E8A22053CCBCB8D39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 0297
Signing time: Thu 23 Apr 2026 04:00:33 +0000
Manifest this update: Thu 23 Apr 2026 04:00:33 +0000
Manifest next update: Fri 24 Apr 2026 04:00:33 +0000
Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=)
2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: RfbjmMD/2xc3lU5LBL5u/FX9y7MUe7oIhJ1VCwvC+U0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Apr 2026 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b8:7f:27:2e:48:88:5a:2e:8a:22:05:3c:cb:cb:8d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Apr 23 04:00:33 2026 GMT
Not After : Apr 24 04:00:33 2026 GMT
Subject: CN=810d66842c5939b798edf0f02225b9b1d04c076f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:34:f6:a2:2b:40:a4:7c:e6:cb:ea:95:17:62:
eb:4d:62:df:7b:ae:ea:56:42:d9:67:f4:69:5e:a6:
a9:a1:80:8e:dd:e6:a5:d4:3f:85:14:b8:6b:1e:0d:
62:f8:79:37:3b:89:93:4f:4a:9f:db:e4:21:59:36:
30:00:ec:1f:a8:6d:b6:c7:65:5e:73:10:f7:79:61:
be:0b:a5:32:d3:c0:63:05:2a:fd:0b:30:42:a7:03:
c1:4c:74:59:48:03:a9:bf:40:c9:6e:05:2e:6d:20:
ce:06:cd:df:33:d9:1d:65:47:a8:2e:a4:2c:e0:1e:
56:63:40:68:85:6c:a0:16:e5:1a:b1:ff:4a:dd:a7:
f2:1e:cc:3b:59:be:59:94:6c:0b:5b:bc:fa:84:e0:
6b:b7:71:8e:2e:ee:aa:f0:a9:ba:51:df:57:6a:1a:
7f:69:cd:81:75:56:fb:da:91:88:a0:f4:dd:d5:54:
ce:19:04:b8:5f:2d:e0:d8:f9:83:cf:1d:0a:05:a4:
a4:5a:fe:f1:e7:5a:92:ed:02:18:41:a9:6d:44:fa:
23:5f:cb:95:42:c1:83:2e:1d:4d:e7:26:b1:cb:22:
de:c0:89:73:f6:5d:5b:f3:57:97:58:f9:7b:60:87:
58:06:10:1c:69:bd:8c:45:dd:14:55:6b:82:45:e9:
cd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0D:66:84:2C:59:39:B7:98:ED:F0:F0:22:25:B9:B1:D0:4C:07:6F
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:0c:60:31:d1:3b:f2:e7:e5:1b:c9:8c:3f:e5:68:b4:d1:15:
61:a8:3b:cf:da:62:8a:10:de:09:1c:4a:93:f6:dc:d9:95:33:
aa:85:f8:6b:90:62:d9:6a:9e:3a:38:dd:e9:7b:b7:56:ab:24:
86:ca:0e:fa:30:5b:dc:86:0f:2d:a0:a7:43:92:94:ef:f5:c0:
53:e9:87:5c:fc:c6:5c:bf:97:aa:c8:91:f0:e2:30:8c:2c:19:
9c:f0:53:71:95:d0:5b:52:4b:02:2f:be:87:a2:40:bb:bd:1c:
f9:fa:b3:83:a4:e8:0c:a6:e6:bd:55:6b:fc:f1:59:10:bf:23:
68:95:d4:8c:7a:32:32:05:7c:50:69:72:fa:65:9f:04:97:d2:
7c:1a:34:a9:3c:73:ad:15:26:90:20:7f:b2:a1:8c:b9:ee:a2:
11:a7:94:07:dd:cc:4d:02:91:46:67:7f:56:0e:bf:03:aa:0c:
76:5a:d9:19:57:7e:be:e6:68:a5:e7:1b:b4:71:71:54:02:c5:
83:f9:4e:9c:38:96:ae:23:74:fe:5f:f1:5d:5b:4d:e4:f7:95:
a2:57:a1:15:a1:a8:7a:2f:93:ab:82:b3:63:5b:cc:58:00:e3:
16:54:3c:0c:39:17:93:11:ef:59:cc:63:58:fa:9e:57:8c:a8:
79:4a:4a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 23 13:16:15 2026 by rpki-client