Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
File: FZjXXo4y1ehH30qho1wpNEyXbiY.mft (raw, json)
Hash identifier: NHpR8EAX0O0BS/1Ay5BqmA7LRSHYO3tPdJqI0vj6KGY=
Subject key identifier: C3:73:DA:95:1C:4A:D4:16:96:38:1A:46:29:E6:16:0F:EB:63:4F:11
Authority key identifier: 15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
Certificate issuer: /CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Certificate serial: 019D28846D4D6653BF2C670072BEA770953C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
Manifest number: 125A
Signing time: Thu 26 Mar 2026 05:01:00 +0000
Manifest this update: Thu 26 Mar 2026 05:01:00 +0000
Manifest next update: Fri 27 Mar 2026 05:01:00 +0000
Files and hashes: 1: 4mkQMrlyEA5ZWh8SOWOIHRbBVXg.roa (hash: QjIp1iiXD6vyZ0MdKvtInyszrVm18OrO8O3KBCQDfSQ=)
2: FZjXXo4y1ehH30qho1wpNEyXbiY.crl (hash: nDUiZWdg70AG0npvjMKWFwGU9KCGv1ia/GYPbB+FYE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:6d:4d:66:53:bf:2c:67:00:72:be:a7:70:95:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Validity
Not Before: Mar 26 05:01:00 2026 GMT
Not After : Mar 27 05:01:00 2026 GMT
Subject: CN=c373da951c4ad41696381a4629e6160feb634f11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:34:0f:d3:7f:5b:24:bc:62:d9:1d:c3:27:4c:
89:3c:0c:95:1f:5a:64:5b:6f:d3:ee:79:ec:0b:52:
7e:6d:e9:b9:84:82:72:b4:6d:ab:f1:76:dc:7f:97:
ac:d9:87:75:70:85:9f:f4:91:8a:6e:59:54:5b:7a:
20:08:d8:4a:7f:99:10:63:bb:47:d0:ab:85:1a:53:
09:a4:c2:f9:eb:bb:8d:68:61:8f:dd:9a:50:ba:2d:
be:7f:23:97:29:e3:d5:66:70:92:76:28:40:36:06:
1f:1e:c6:9a:cd:bb:44:4a:73:98:b3:df:81:3f:b2:
56:55:dc:01:21:0c:20:87:ef:cd:0d:83:6f:7c:ef:
91:d2:dc:a6:15:95:89:ee:8c:9b:f3:69:63:72:4b:
c5:b6:7b:fd:b4:2a:29:0b:08:2e:ae:25:b0:4c:a1:
9c:3d:92:cd:e5:6b:c8:11:ba:e7:b6:5b:1b:b5:5e:
91:0e:a3:e8:c2:0d:1c:9b:f2:4a:3b:65:fb:22:bf:
0c:e0:8c:4d:b2:d2:72:d5:65:b7:ff:18:37:92:c8:
8a:f4:4d:7a:66:78:1f:43:c4:e4:fc:db:f2:f5:65:
2a:36:03:51:5b:20:b5:7a:0b:d3:01:68:54:d3:d0:
42:39:f9:1b:28:b8:72:06:8f:f9:c1:3d:26:47:47:
91:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:73:DA:95:1C:4A:D4:16:96:38:1A:46:29:E6:16:0F:EB:63:4F:11
X509v3 Authority Key Identifier:
keyid:15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e5:51:6a:00:c3:ca:6f:97:3c:e3:b7:c4:69:dd:96:83:50:
40:c1:ac:10:f8:ff:c8:bd:90:b3:9c:52:85:be:7b:5b:e3:69:
85:34:dd:85:5b:5f:2c:22:61:d1:08:ee:4b:d0:4e:7e:92:f7:
e7:e5:ce:c3:7b:c0:5b:70:03:36:7f:00:c9:d1:37:26:9c:ed:
bb:10:4f:b7:9b:6d:8d:4f:85:e7:48:a6:15:ab:ee:30:b3:a7:
64:83:0c:95:5d:a3:87:ed:1f:cd:54:da:b2:a5:dc:32:b4:12:
19:9e:9e:b2:3e:1f:54:c7:a3:be:b7:38:cd:ef:be:3d:d4:6b:
92:bd:30:73:85:e5:f5:fd:a6:d6:32:36:8e:0d:ff:f2:a6:77:
0b:5f:62:2e:d8:01:5c:2b:bc:12:60:d3:a5:b3:85:82:7f:29:
9d:72:72:de:a5:5c:43:e5:e1:13:1f:48:fd:96:7f:d0:40:72:
77:78:6f:bd:7e:dc:44:f5:ce:44:b4:7c:0e:92:c8:33:3c:79:
33:77:74:ba:9e:e4:8d:ca:10:5e:41:ac:aa:aa:36:be:c6:74:
7a:8a:3d:d3:04:94:6a:14:87:2e:c7:e2:74:73:79:3b:9d:10:
e2:b3:90:cd:93:9b:d7:e1:03:56:dd:32:17:64:b6:13:6f:51:
22:43:ed:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:30:49 2026 by rpki-client