Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: Gd2JiU1Ml/F0w+iYo1NolS5hpctwS9aUoMU4nmMgPnI=
Subject key identifier: BD:32:7A:A7:6C:94:38:E4:F0:B2:37:91:07:AA:D4:49:B8:60:7A:E4
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 019E1F7F3291EB4ABF72FA48D93091C160A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 1917
Signing time: Wed 13 May 2026 04:01:30 +0000
Manifest this update: Wed 13 May 2026 04:01:30 +0000
Manifest next update: Thu 14 May 2026 04:01:30 +0000
Files and hashes: 1: ATx_EPHk5Vz1v-SpkJd7Yp6y99I.roa (hash: wd0rlsu9n+czEzHQALtAg7xmPAM6xOroSrrnXWF3Lfo=)
2: JO3t4wzj5pMO8pakWAwlzqvqqRM.asa (hash: RPS36XqFSQhGe2AwlqqHc/6mflgEGlaBrX53Fqp34Rw=)
3: U94b541NpMgAwKP9ouuvvL3DKeY.asa (hash: 3/0upql9LNQyluPXuFCuGStTRhsE9wxGljd6ckKQ/wo=)
4: fX3tPrrAy5l65982bntPZMbTKXM.asa (hash: elpKOW5KwuHELtxjMPO/HnU5rqNl0Ef4AHZpAwWCRy8=)
5: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: SZwtwKa7B93B3dQF1RNv2nnJvW7Tm18rr4Xw7KDvJGo=)
6: ly50p6bn7OtoWGksmAe1FXQRbrM.roa (hash: WvJTgADr+6l6uiBzvWmW2KhgcRN1ZPaB7zKRd38ejzU=)
7: p1pAyUX-fSx4X5xlNyO_Vq2ry7w.roa (hash: 4qf1lMGx7tWHDVof2zNBnir3ltwLgCwXuL9BwrRJPhU=)
8: uiCDkRFrRbQXEYOboMj925yrGQ0.roa (hash: gojhd9ZvaD3lpAzgnUVGx9Pc+ubn7hLvE/bd+7GeQHs=)
9: wr5OBu9Kg5fiAynMByNWWanKodQ.roa (hash: xpQiib4Ztk+0sSwtkw/MfpFjKcsKXQPv65ui0X+24sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:32:91:eb:4a:bf:72:fa:48:d9:30:91:c1:60:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: May 13 04:01:30 2026 GMT
Not After : May 14 04:01:30 2026 GMT
Subject: CN=bd327aa76c9438e4f0b2379107aad449b8607ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e9:4f:7f:be:cb:f8:31:83:35:dc:5a:e5:7b:
9b:8d:2b:2b:ce:e4:0f:e5:20:0a:00:8e:78:04:da:
03:e4:4d:9e:f0:a1:1e:9d:8e:ba:c8:99:1b:25:5e:
48:7a:57:4f:12:14:8f:0c:87:81:d7:a5:e5:cf:30:
d9:b2:fc:30:c7:e2:e5:4f:f1:78:a1:21:68:7b:02:
cd:50:33:af:8d:88:fd:4e:0c:12:5a:51:a7:67:c4:
24:17:fd:bd:ea:55:6e:94:06:c1:b0:9b:84:ae:c9:
8d:c2:07:17:ce:70:98:13:76:d1:cb:6e:d0:b5:ea:
86:15:12:13:f5:8e:4c:27:a2:16:65:7d:77:28:b7:
13:7d:ad:f3:c4:cc:26:f9:c2:ba:c8:51:55:27:7e:
2a:84:3d:e4:6b:b6:d3:b7:d9:5b:fc:60:c7:e1:24:
b2:dd:c5:c4:4d:49:41:fd:4c:92:a4:ee:ae:85:e8:
98:49:ca:76:b1:f3:8b:e4:73:e4:61:80:27:6d:f9:
52:3d:a4:8f:c8:4c:f6:4b:10:59:eb:63:40:4b:8e:
f3:1d:f4:49:a2:11:33:1f:76:ef:9a:83:75:96:29:
b6:d2:51:fc:87:53:21:84:40:9d:b6:62:da:56:5f:
56:30:e1:18:f9:02:bb:70:7e:15:7e:5c:f8:a2:ae:
2c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:32:7A:A7:6C:94:38:E4:F0:B2:37:91:07:AA:D4:49:B8:60:7A:E4
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:48:12:64:20:43:40:38:f1:76:a2:ed:c3:6e:ee:de:df:bd:
b9:c5:a3:6e:74:92:42:3a:cb:5c:ba:5c:f9:b3:70:94:9f:d0:
5e:be:9a:4b:55:7f:9d:c6:30:2d:01:e7:ba:7b:55:1c:1f:00:
e9:29:93:8b:1b:08:3a:39:8d:89:f1:f7:93:be:4e:b2:ac:e5:
b1:cd:ca:f7:1a:bf:3f:de:ec:87:fc:de:40:a7:30:e6:52:67:
f8:d0:d1:ed:9b:c3:c6:12:5a:49:ba:e2:b8:17:a5:95:5e:3c:
ee:a2:3d:24:f2:6f:5e:f8:56:4d:23:b0:96:fe:13:5c:87:e0:
bf:12:42:75:3f:c9:15:b9:82:70:9c:54:f5:de:05:91:1b:2b:
c6:be:45:0c:9e:4b:43:f7:2b:18:9e:b8:1e:a3:4b:aa:f2:35:
e3:b3:f9:c2:04:cf:c9:86:7d:ec:65:62:e0:9b:55:8b:c9:3e:
2e:e9:39:cc:20:81:b4:ae:bd:f2:78:0d:ab:3d:08:c0:5d:b9:
b8:a7:84:12:28:80:c4:7e:cd:1f:d3:e2:f9:a2:0c:a5:77:86:
76:16:e2:3d:04:f1:7d:ca:29:ad:58:48:ca:53:7f:71:93:21:
48:45:f0:03:32:7a:39:a3:f8:48:8d:8a:8d:37:cb:58:aa:0d:
e5:c9:7c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:55:44 2026 by rpki-client