Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: UqrYcWMWsp2SIywqIHyG5ilQIdrTRp/VH0sq/tGUaQA=
Subject key identifier: 2B:12:0A:51:24:BC:96:4F:F8:88:6E:94:37:88:1E:93:0E:79:94:7B
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 019D27A93CE72FC0C6AB4D4576E147DB3B38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 1894
Signing time: Thu 26 Mar 2026 01:01:35 +0000
Manifest this update: Thu 26 Mar 2026 01:01:35 +0000
Manifest next update: Fri 27 Mar 2026 01:01:35 +0000
Files and hashes: 1: ATx_EPHk5Vz1v-SpkJd7Yp6y99I.roa (hash: wd0rlsu9n+czEzHQALtAg7xmPAM6xOroSrrnXWF3Lfo=)
2: JO3t4wzj5pMO8pakWAwlzqvqqRM.asa (hash: RPS36XqFSQhGe2AwlqqHc/6mflgEGlaBrX53Fqp34Rw=)
3: QajoMPTah5HmQYWazmOhTmEgdy4.roa (hash: vdxOYd3C96luAne3fsVsAc2/Kvs7MPuLrsOoLRiJHqk=)
4: U94b541NpMgAwKP9ouuvvL3DKeY.asa (hash: 3/0upql9LNQyluPXuFCuGStTRhsE9wxGljd6ckKQ/wo=)
5: fX3tPrrAy5l65982bntPZMbTKXM.asa (hash: elpKOW5KwuHELtxjMPO/HnU5rqNl0Ef4AHZpAwWCRy8=)
6: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: 44BOU/Mid7R+fxlFbz1g90ByQuIixD0gCMrqzfxfU3A=)
7: p1pAyUX-fSx4X5xlNyO_Vq2ry7w.roa (hash: 4qf1lMGx7tWHDVof2zNBnir3ltwLgCwXuL9BwrRJPhU=)
8: qNqIY7Epjb8X6TjZQ6Qe3ZQprHg.roa (hash: Q9eOtWBXHgxp5on3S0pg8Cw1XJUrxWzfmLsW58Uncfs=)
9: wY-Cs55am_CMQf8p1GQXagMI6tE.roa (hash: LKZ2Oa7r49TtzT8prI98TwirtVVWtnVlmoHvBJjp2PI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:3c:e7:2f:c0:c6:ab:4d:45:76:e1:47:db:3b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: Mar 26 01:01:35 2026 GMT
Not After : Mar 27 01:01:35 2026 GMT
Subject: CN=2b120a5124bc964ff8886e9437881e930e79947b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ad:19:82:33:c6:0e:c3:97:c2:6f:75:31:d5:
da:a1:dc:cf:4d:d2:81:30:38:15:f4:e0:f6:74:c3:
53:85:46:81:0b:2d:af:96:61:62:92:75:bb:f3:14:
c3:0e:62:15:95:3c:4f:1a:22:2e:dd:47:b1:b6:98:
02:21:b6:20:af:89:72:d3:70:90:5b:ff:56:3b:a5:
41:bb:39:79:a4:ba:e4:20:1f:93:f0:82:1c:25:a2:
f7:8a:f0:e5:f6:f2:c9:d0:cd:61:0c:0b:f2:9d:a4:
14:19:11:69:b9:25:0c:8e:6a:04:07:77:42:f6:69:
44:01:75:82:22:a2:46:89:83:20:02:10:2b:47:1b:
fe:f4:de:93:da:9e:ff:92:cc:e7:63:a3:98:21:68:
36:07:65:4b:91:56:c1:f9:f4:72:db:14:e1:a5:f1:
10:aa:8d:85:90:7d:f7:8d:3f:06:a8:fd:e7:eb:3c:
d2:0e:99:c2:31:48:73:af:fd:2a:ab:df:9a:9f:4f:
e9:e2:52:be:b6:c4:2a:92:27:49:08:03:ea:6f:f3:
b1:b0:8a:92:c5:a1:b9:12:a3:3f:f8:b1:f7:4c:14:
9c:5e:27:c6:c6:a4:78:e1:17:c7:0a:ec:a3:10:bd:
83:ac:f3:e0:96:69:4c:43:0c:83:c0:bf:a3:75:24:
26:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:12:0A:51:24:BC:96:4F:F8:88:6E:94:37:88:1E:93:0E:79:94:7B
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:e3:16:b8:1a:16:7e:6f:5d:30:c3:e1:17:93:03:eb:76:91:
bf:f6:c6:b6:27:2a:c4:36:53:f3:22:8b:f0:72:93:6c:d2:72:
b9:cb:27:86:69:b6:34:c7:fb:13:e9:a0:31:c2:ae:88:76:ec:
27:7e:c9:d3:09:db:23:1d:df:63:40:88:b1:26:b0:13:0b:55:
73:d4:2e:17:db:b5:93:b2:35:8c:4a:64:21:65:0a:2b:a4:5a:
37:1d:13:e6:40:91:a2:b8:46:e3:b6:d8:e4:be:4a:97:04:8f:
9b:7f:d2:f3:14:22:99:db:67:cc:76:5b:35:30:04:e3:df:fe:
07:ed:02:c7:50:6f:3e:65:45:32:0d:40:ae:76:5e:04:8b:09:
7d:74:a4:0c:20:95:66:c2:e2:0e:fb:48:98:be:44:39:2b:62:
21:39:a7:df:38:1a:78:70:8f:be:55:07:9d:93:36:09:6d:97:
8c:86:2f:40:d0:e8:b2:ec:ca:45:a4:dc:69:1f:f2:58:3e:ed:
e8:2c:fc:b4:d6:91:d3:63:31:2f:c4:c7:02:22:1b:4f:2f:6e:
7d:54:0c:00:0a:9e:df:e3:57:ec:75:46:ba:7c:0e:a7:81:e3:
8f:6e:d8:9e:ed:82:aa:b0:6a:a8:8f:99:3d:1f:9e:e0:c6:9b:
76:0e:86:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:17:02 2026 by rpki-client