Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: LbPRtuD3IHCgUOnguMy/yo2w4c9jxn4/nQrFWF7oiaY=
Subject key identifier: D0:1C:E3:1C:4E:4F:45:6D:7A:44:1A:1D:5C:33:46:6A:CF:0B:B0:0B
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019CBF5FD62857AC20AFAACA4A1BB029B231
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 0216
Signing time: Thu 05 Mar 2026 19:00:54 +0000
Manifest this update: Thu 05 Mar 2026 19:00:54 +0000
Manifest next update: Fri 06 Mar 2026 19:00:54 +0000
Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=)
2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: RNDUKMIp3DnoXrnHZ35Y5BLKosR0RqFV/OMPiAl0qHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 16:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bf:5f:d6:28:57:ac:20:af:aa:ca:4a:1b:b0:29:b2:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Mar 5 19:00:54 2026 GMT
Not After : Mar 6 19:00:54 2026 GMT
Subject: CN=d01ce31c4e4f456d7a441a1d5c33466acf0bb00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b1:b0:2d:e5:e8:81:65:45:3d:e9:81:3b:13:
4c:c4:46:7d:0b:97:ba:2e:41:9d:4c:e3:db:4c:2c:
95:9f:70:82:e9:66:42:7b:08:f7:29:a5:f1:11:55:
5e:11:5b:63:fb:05:a1:90:6e:fb:28:ad:18:0c:1a:
5d:99:99:de:0e:20:57:9e:ba:d8:f4:31:98:2a:d7:
f0:be:fb:7b:64:fc:c7:b8:a6:c5:7f:9d:2b:ed:1f:
bf:8d:3b:c9:f3:a7:d7:42:37:82:a1:da:6d:a3:a2:
d2:96:ec:fc:44:3d:76:15:1b:58:a5:3c:a1:ea:6a:
f6:8d:15:2b:c3:9b:6f:ef:2b:f3:d4:bc:85:fb:ec:
cf:05:4b:cc:ce:dc:0f:5f:fd:40:c9:6f:9c:94:75:
6d:2a:69:1d:c9:0b:db:3a:bb:af:3a:b6:da:92:e6:
c9:cf:c0:b1:bd:08:bd:44:18:aa:73:8c:c3:e2:ca:
7e:4e:7d:e1:23:18:69:c8:5a:76:07:fb:1e:66:47:
96:5a:84:c2:e1:22:43:d3:79:24:d0:95:71:4a:76:
b8:2e:42:5c:5d:5c:a0:c3:22:c3:31:6c:d4:bb:c2:
d0:d0:55:70:04:1d:91:ee:0b:68:70:34:09:f1:0b:
93:8d:28:1f:db:f0:21:97:5d:6e:8f:7e:07:e4:ca:
ca:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1C:E3:1C:4E:4F:45:6D:7A:44:1A:1D:5C:33:46:6A:CF:0B:B0:0B
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:8f:7e:e6:16:0f:33:f7:14:04:ba:e2:f8:57:2d:da:0c:d5:
25:ce:40:be:96:5b:8b:e2:85:82:f8:24:19:c9:89:42:12:f0:
11:ba:9b:e7:ad:74:a0:79:4d:60:f8:79:a5:f8:96:9c:4a:c1:
8e:99:e1:49:5c:1c:58:b7:d8:ca:e6:85:1c:14:e3:a5:dd:a0:
4e:7e:6d:22:59:d2:91:1c:1a:41:f3:bc:35:16:74:ca:ed:c2:
6a:a2:4c:83:7a:e5:1d:c0:34:2f:02:c9:5c:89:25:b3:1d:f1:
ed:24:87:22:14:8b:fb:65:78:28:e0:fb:03:72:77:73:9d:7a:
6d:72:5b:f4:b1:78:0d:8c:fa:fe:0a:f5:c0:aa:1d:f5:52:1a:
5a:d9:8c:54:34:bc:e8:a3:1f:51:02:6b:d1:5c:b3:7b:00:18:
87:30:d8:43:c2:68:8e:d4:85:5e:2b:27:19:09:98:fb:2a:78:
07:75:f4:ff:0d:ec:4f:1a:3c:96:b5:ce:b2:96:22:aa:bb:c8:
50:bf:a9:83:a5:21:7f:72:70:21:0f:63:90:34:67:de:6d:90:
b7:c7:fa:39:1b:9c:e2:0e:13:74:bf:93:29:0a:b0:01:dd:6c:
2a:27:1f:57:cf:2d:57:72:8c:e1:0c:0a:03:8a:f5:44:d4:11:
92:0c:db:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZy/X9YoV6wgr6rKShuwKbIxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjNWM1MzEyMTU4NGQ3ZDg2Mjk4N2YyNmZmN2JlZDVhZTEz
ODE2YTEwHhcNMjYwMzA1MTkwMDU0WhcNMjYwMzA2MTkwMDU0WjAzMTEwLwYDVQQD
EyhkMDFjZTMxYzRlNGY0NTZkN2E0NDFhMWQ1YzMzNDY2YWNmMGJiMDBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLGwLeXogWVFPemBOxNMxEZ9C5e6
LkGdTOPbTCyVn3CC6WZCewj3KaXxEVVeEVtj+wWhkG77KK0YDBpdmZneDiBXnrrY
9DGYKtfwvvt7ZPzHuKbFf50r7R+/jTvJ86fXQjeCodpto6LSluz8RD12FRtYpTyh
6mr2jRUrw5tv7yvz1LyF++zPBUvMztwPX/1AyW+clHVtKmkdyQvbOruvOrbakubJ
z8CxvQi9RBiqc4zD4sp+Tn3hIxhpyFp2B/seZkeWWoTC4SJD03kk0JVxSna4LkJc
XVygwyLDMWzUu8LQ0FVwBB2R7gtocDQJ8QuTjSgf2/Ahl11uj34H5MrKTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNAc4xxOT0VtekQaHVwzRmrPC7ALMB8GA1UdIwQY
MBaAFKxcUxIVhNfYYph/Jv977VrhOBahMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEt
MjViZjI1MDE4NDg5LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEtMjViZjI1MDE4NDg5
LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApo9+5hYP
M/cUBLri+Fct2gzVJc5AvpZbi+KFgvgkGcmJQhLwEbqb5610oHlNYPh5pfiWnErB
jpnhSVwcWLfYyuaFHBTjpd2gTn5tIlnSkRwaQfO8NRZ0yu3CaqJMg3rlHcA0LwLJ
XIklsx3x7SSHIhSL+2V4KOD7A3J3c516bXJb9LF4DYz6/gr1wKod9VIaWtmMVDS8
6KMfUQJr0VyzewAYhzDYQ8JojtSFXisnGQmY+yp4B3X0/w3sTxo8lrXOspYiqrvI
UL+pg6Uhf3JwIQ9jkDRn3m2Qt8f6ORuc4g4TdL+TKQqwAd1sKicfV88tV3KM4QwK
A4r1RNQRkgzbbQ==
-----END CERTIFICATE-----
Generated at Thu Mar 5 23:22:29 2026 by rpki-client