Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
File: fzErCdH2kPJXAL1dzwfJGAxelmM.mft (raw, json)
Hash identifier: aBYWb/yM0K+ITKpzf2qoU6CCMVCUAXHWbO/LKXLOKLE=
Subject key identifier: EE:4C:83:57:F1:CE:D5:99:06:8D:D4:83:F2:E0:CF:31:33:B0:3C:C0
Authority key identifier: 7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
Certificate issuer: /CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Certificate serial: 019D38D33FACC69A31205B415F28C03FD86A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
Manifest number: 01B8
Signing time: Sun 29 Mar 2026 09:01:01 +0000
Manifest this update: Sun 29 Mar 2026 09:01:01 +0000
Manifest next update: Mon 30 Mar 2026 09:01:01 +0000
Files and hashes: 1: BCFG1E3vkLJzX3xYHBAXCR2M-Dk.roa (hash: kLXCiyzJI0lL3gfuo31f6jHCm4NoCsgw/6nrJV+kat0=)
2: fzErCdH2kPJXAL1dzwfJGAxelmM.crl (hash: 1ijIi74VTvmafJq4+fTdqhq0oZzTgoc5BtRaNmuifsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:3f:ac:c6:9a:31:20:5b:41:5f:28:c0:3f:d8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Validity
Not Before: Mar 29 09:01:01 2026 GMT
Not After : Mar 30 09:01:01 2026 GMT
Subject: CN=ee4c8357f1ced599068dd483f2e0cf3133b03cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c3:39:79:34:68:e5:a1:d7:f7:cf:5c:d8:8d:
d5:76:50:d6:50:74:80:54:7f:0e:83:92:35:1b:b5:
52:56:87:21:c6:4e:01:44:f3:63:6f:1b:e7:6a:32:
1a:1d:bd:b4:e8:65:80:e6:be:97:88:9a:13:1a:43:
77:17:d8:40:0f:e3:0a:df:eb:b8:40:c9:a5:f8:8f:
89:92:59:fb:86:2e:60:22:45:54:3d:e5:b4:e5:fb:
cc:73:47:f8:07:9f:fc:04:27:74:8d:a9:f2:34:6a:
fd:f9:1d:3f:07:9f:de:76:01:05:6f:46:f2:82:3a:
58:56:c4:8c:99:ac:fc:0b:3b:16:0b:e4:a6:f8:be:
8a:e3:1f:7a:e0:55:20:ee:88:84:7b:d3:65:d0:67:
bf:7b:6e:0d:98:9c:c3:37:a2:0f:ec:c6:42:a0:60:
a7:44:a8:68:2e:a8:1b:cf:08:11:39:ea:af:f1:e1:
ee:a1:72:d8:c2:f0:15:1a:e2:56:51:97:e6:25:a1:
1a:00:87:31:cb:48:71:a3:b9:aa:b7:b5:2c:f8:d5:
49:06:03:16:6a:56:3e:21:46:0d:ce:31:61:e0:8e:
4d:6d:df:a1:94:03:0b:18:ab:60:14:1f:1f:cf:7c:
36:64:bb:28:60:cf:4b:3b:76:73:6f:5d:a6:48:d8:
4b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4C:83:57:F1:CE:D5:99:06:8D:D4:83:F2:E0:CF:31:33:B0:3C:C0
X509v3 Authority Key Identifier:
keyid:7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:d2:ed:d1:b1:60:6e:96:ca:06:79:f0:c4:4e:e5:cf:b5:e3:
9d:4d:f4:4f:05:e3:8a:34:e6:cd:8b:fe:b0:ae:e9:2a:4c:59:
bd:33:f0:37:4a:72:04:7e:94:80:09:87:3d:f0:a5:9f:a0:00:
44:0b:e3:ea:40:ee:03:72:87:be:9e:26:2d:f8:39:50:05:6b:
5d:06:5f:7c:fb:11:4d:03:cd:1e:6f:33:4b:06:14:fc:7c:ac:
e5:9d:bd:23:9e:99:3f:d3:9a:4e:49:25:d3:d5:aa:97:5c:3c:
6b:e3:d2:7d:41:6a:1d:06:f0:ae:7d:7a:c2:35:23:c9:5c:43:
b9:9b:6e:4e:16:69:cf:d4:22:2b:69:11:e5:9a:d5:89:ff:3a:
2c:c0:2e:03:94:4d:7b:a1:b0:19:eb:21:e3:6a:26:ab:1e:39:
2b:e1:d1:d0:72:59:93:de:ad:d1:4e:d3:98:04:68:01:dd:c7:
bc:08:1c:9f:97:ea:3b:08:52:c4:ed:c8:7a:82:30:1e:59:3d:
7a:b4:4d:d8:fa:6b:e8:20:86:22:09:ec:0d:87:bf:a7:3c:f6:
f7:6c:3d:47:d4:bc:f8:21:54:27:a0:6f:ff:ea:34:84:3e:f1:
b2:ab:1c:02:62:dd:b9:61:d8:6e:1f:0c:d6:0b:ef:98:ed:99:
4a:e9:c1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:26:25 2026 by rpki-client