Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
File: fzErCdH2kPJXAL1dzwfJGAxelmM.mft (raw, json)
Hash identifier: cH8RQ7nJbzjTa+zNFY+Xcz6Mzh9W/mW5nLXa/Tr6UNw=
Subject key identifier: DD:2E:3F:EA:43:7E:51:87:5F:F2:E6:CE:5B:51:76:FF:11:FE:BB:32
Authority key identifier: 7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
Certificate issuer: /CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Certificate serial: 019E928258DE83F896121F3C62A02522DE90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
Manifest number: 026B
Signing time: Thu 04 Jun 2026 12:01:16 +0000
Manifest this update: Thu 04 Jun 2026 12:01:16 +0000
Manifest next update: Fri 05 Jun 2026 12:01:16 +0000
Files and hashes: 1: BCFG1E3vkLJzX3xYHBAXCR2M-Dk.roa (hash: kLXCiyzJI0lL3gfuo31f6jHCm4NoCsgw/6nrJV+kat0=)
2: fzErCdH2kPJXAL1dzwfJGAxelmM.crl (hash: IbN1TBTJmVNYmRTu3FAJgFNsh2Kl+//5QcDFDyG6E14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:92:82:58:de:83:f8:96:12:1f:3c:62:a0:25:22:de:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Validity
Not Before: Jun 4 12:01:16 2026 GMT
Not After : Jun 5 12:01:16 2026 GMT
Subject: CN=dd2e3fea437e51875ff2e6ce5b5176ff11febb32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:be:c4:61:07:d4:0f:6e:26:8d:76:ff:a3:8b:
1e:2f:57:8a:e5:78:dc:b7:4c:9b:c6:c3:e3:6d:5a:
44:21:67:ef:b5:1c:05:b7:bc:d3:ab:cd:1e:ce:c6:
73:5f:4c:87:bc:b2:ad:95:52:1e:71:cb:b8:b8:06:
e1:1d:c6:d3:0f:37:11:ed:3f:83:27:74:33:7c:e6:
48:d1:6b:bd:b3:7d:01:e5:7e:ad:d0:ae:eb:49:56:
c5:02:57:80:3f:1c:89:1d:a4:8e:84:9f:d6:c3:97:
1c:e9:bf:80:ff:61:59:96:d3:b0:0d:c7:c9:d6:25:
92:37:d4:ed:48:a7:5e:ed:66:ec:3b:34:ae:79:99:
68:c2:99:66:5a:8d:09:55:b6:11:31:f5:3a:f1:ea:
83:77:6e:fa:e9:a8:31:ec:0b:59:c7:0e:3b:60:f5:
79:ba:7f:89:c3:ab:b0:fd:9b:49:8a:6b:e3:92:62:
6f:f8:77:c6:08:b4:43:d1:ba:8c:5b:ea:cb:96:1d:
16:0d:7f:87:c5:30:69:c1:29:a7:12:6b:52:71:45:
d7:c8:9b:c2:84:82:19:07:4f:4a:94:f5:67:d9:d1:
6c:cd:e9:17:60:03:af:4d:db:93:8b:dc:76:3b:1f:
c5:a2:9d:da:e1:08:b0:76:3e:72:26:be:9a:74:59:
78:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2E:3F:EA:43:7E:51:87:5F:F2:E6:CE:5B:51:76:FF:11:FE:BB:32
X509v3 Authority Key Identifier:
keyid:7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:2d:b2:42:c6:59:eb:4c:d0:76:8e:06:bb:e8:ec:89:60:1c:
9d:b5:1c:51:e2:ed:5d:af:e2:1d:17:17:28:0c:88:82:71:ca:
71:58:dc:8c:a4:82:9d:f1:8f:14:d7:cf:85:d5:9b:88:fd:e4:
26:c4:6a:ec:b5:31:8a:66:dd:4f:ae:52:18:a4:e7:de:11:61:
52:f3:ff:05:26:56:20:a6:ff:6f:78:f9:d7:6e:5a:9a:10:eb:
88:f7:b6:a9:26:cb:66:b2:24:f5:49:93:09:6b:c4:c3:73:00:
3b:fe:a0:8d:b8:a2:60:11:3b:c9:6a:31:4f:47:97:1f:86:b3:
01:33:fd:75:4a:6d:6a:6a:24:ed:0d:58:41:ea:84:00:01:c9:
26:f6:4e:ad:5c:18:20:1f:54:70:da:cd:75:9e:f3:50:a4:c1:
a2:7d:e9:8d:06:1d:ad:f5:5e:38:5f:65:04:5f:f8:b9:74:43:
14:86:8e:c3:06:33:e6:82:cb:81:81:04:88:cb:df:8c:bb:f6:
f5:75:40:7d:80:8f:01:15:f9:c0:9f:ac:d0:f6:41:77:08:15:
fe:ae:80:6a:dc:67:11:e6:16:3c:9a:fe:0e:20:d5:b3:7b:b2:
b3:77:4a:2a:95:11:96:f7:c8:8c:32:a1:5d:da:86:57:c9:c1:
98:1c:5a:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6Sgljeg/iWEh88YqAlIt6QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmMzEyYjA5ZDFmNjkwZjI1NzAwYmQ1ZGNmMDdjOTE4MGM1
ZTk2NjMwHhcNMjYwNjA0MTIwMTE2WhcNMjYwNjA1MTIwMTE2WjAzMTEwLwYDVQQD
EyhkZDJlM2ZlYTQzN2U1MTg3NWZmMmU2Y2U1YjUxNzZmZjExZmViYjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApb7EYQfUD24mjXb/o4seL1eK5Xjc
t0ybxsPjbVpEIWfvtRwFt7zTq80ezsZzX0yHvLKtlVIeccu4uAbhHcbTDzcR7T+D
J3QzfOZI0Wu9s30B5X6t0K7rSVbFAleAPxyJHaSOhJ/Ww5cc6b+A/2FZltOwDcfJ
1iWSN9TtSKde7WbsOzSueZlowplmWo0JVbYRMfU68eqDd2766agx7AtZxw47YPV5
un+Jw6uw/ZtJimvjkmJv+HfGCLRD0bqMW+rLlh0WDX+HxTBpwSmnEmtScUXXyJvC
hIIZB09KlPVn2dFszekXYAOvTduTi9x2Ox/Fop3a4Qiwdj5yJr6adFl4iwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN0uP+pDflGHX/LmzltRdv8R/rsyMB8GA1UdIwQY
MBaAFH8xKwnR9pDyVwC9Xc8HyRgMXpZjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgt
MTUyMmUyOTY0ZmNlLzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgtMTUyMmUyOTY0ZmNl
LzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUC2yQsZZ
60zQdo4Gu+jsiWAcnbUcUeLtXa/iHRcXKAyIgnHKcVjcjKSCnfGPFNfPhdWbiP3k
JsRq7LUximbdT65SGKTn3hFhUvP/BSZWIKb/b3j5125amhDriPe2qSbLZrIk9UmT
CWvEw3MAO/6gjbiiYBE7yWoxT0eXH4azATP9dUptamok7Q1YQeqEAAHJJvZOrVwY
IB9UcNrNdZ7zUKTBon3pjQYdrfVeOF9lBF/4uXRDFIaOwwYz5oLLgYEEiMvfjLv2
9XVAfYCPARX5wJ+s0PZBdwgV/q6AatxnEeYWPJr+DiDVs3uys3dKKpURlvfIjDKh
XdqGV8nBmBxaRA==
-----END CERTIFICATE-----
Generated at Thu Jun 4 16:01:03 2026 by rpki-client