Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
File: FMFDiPKGLX4nqH_m9gHjTzRXI04.mft (raw, json)
Hash identifier: xRBFG85t/hc5Q7kM5HyW4WRDUDk3roD0k0y+Ew1wVZI=
Subject key identifier: E2:FF:C3:26:18:03:75:1A:84:DC:E3:8D:E6:10:B7:0D:CA:D7:9B:D2
Authority key identifier: 14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
Certificate issuer: /CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Certificate serial: 019D273ADDE0CA89BF6569BC48A57F8BA27B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
Manifest number: 0CFF
Signing time: Wed 25 Mar 2026 23:01:02 +0000
Manifest this update: Wed 25 Mar 2026 23:01:02 +0000
Manifest next update: Thu 26 Mar 2026 23:01:02 +0000
Files and hashes: 1: FMFDiPKGLX4nqH_m9gHjTzRXI04.crl (hash: wMrMZnDfp23WWpaLVW/0x7dP+Vedg9NxoW/Ip+KJKm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:dd:e0:ca:89:bf:65:69:bc:48:a5:7f:8b:a2:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c14388f2862d7e27a87fe6f601e34f3457234e
Validity
Not Before: Mar 25 23:01:02 2026 GMT
Not After : Mar 26 23:01:02 2026 GMT
Subject: CN=e2ffc3261803751a84dce38de610b70dcad79bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f6:c0:08:39:1c:62:34:e9:47:69:39:e0:d8:
92:f7:d1:9b:b4:0d:de:0f:60:47:47:4f:09:cc:da:
a8:88:14:cf:a3:ed:08:03:0c:40:cf:c3:64:f2:4d:
4b:0e:09:a1:6f:6b:01:4d:ec:68:0c:b3:d7:95:ba:
d8:ea:17:9e:4a:8a:e7:1e:6f:e5:ac:a3:c0:4d:59:
01:06:54:ac:c0:ca:c0:4f:6b:c6:c1:36:22:a7:c8:
ca:68:c8:11:31:98:f0:87:44:ee:79:f3:7f:43:a6:
44:ff:96:2a:58:92:d0:bb:b0:5a:bc:33:3d:70:58:
c9:fa:3a:61:1a:ea:7b:39:97:a2:95:77:a2:54:25:
64:4d:f0:a3:1f:e9:a3:62:34:0c:8c:92:76:1e:e0:
c7:4f:7e:b6:03:35:1f:62:00:15:76:31:95:7f:57:
af:46:61:88:6c:f1:d0:2c:91:37:8f:1a:99:b5:46:
35:ca:0d:04:eb:d2:ca:c0:3e:e7:59:6e:a0:c9:be:
49:02:3f:35:15:bb:2f:71:12:b3:e7:59:69:12:9d:
13:b6:a7:f2:c5:57:68:ac:a1:8f:9e:0b:c0:34:52:
e9:3a:94:9c:63:f7:ae:dd:e7:4a:43:4a:ad:2a:26:
18:4c:72:43:43:5b:de:ee:42:0b:3d:a1:8b:b8:7c:
53:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:FF:C3:26:18:03:75:1A:84:DC:E3:8D:E6:10:B7:0D:CA:D7:9B:D2
X509v3 Authority Key Identifier:
keyid:14:C1:43:88:F2:86:2D:7E:27:A8:7F:E6:F6:01:E3:4F:34:57:23:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMFDiPKGLX4nqH_m9gHjTzRXI04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ba6a0f-b9c7-4f40-9e3c-88a4be7a4cb3/1/FMFDiPKGLX4nqH_m9gHjTzRXI04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:48:33:4a:ba:39:7e:27:c6:21:f3:6b:f6:59:b6:44:82:82:
53:c5:15:75:b6:f8:2a:b8:b7:c3:30:59:85:0d:de:ae:4b:0c:
4c:88:32:3e:96:2b:2b:3c:16:50:17:f9:18:7c:e2:f3:f0:3e:
29:7c:ce:95:bf:b9:67:1d:64:78:02:60:b5:26:08:ad:7f:a2:
92:f1:10:a2:1d:13:ce:d4:22:62:94:c7:b9:54:11:9b:3d:a2:
84:9a:24:fe:84:2f:fd:11:19:d1:c9:39:67:ef:95:01:ce:e1:
f7:0a:ad:85:e2:ac:91:7f:ad:f8:fb:4d:3f:52:3a:61:77:63:
cf:17:34:6b:34:74:8a:0a:f7:32:03:25:65:9b:90:1b:1f:fb:
9a:ba:e9:22:fc:32:d7:98:66:18:af:b7:6e:25:09:4c:9d:4a:
0f:ef:c0:df:e9:96:a1:e9:99:8e:8f:3a:3d:50:f1:6b:cf:00:
2a:2f:d7:49:3c:4d:39:8a:17:1c:99:b5:3c:3c:d5:c6:10:92:
fc:af:b2:13:6e:3a:d6:ae:6b:c8:48:ad:0c:f3:59:af:7e:6d:
78:b4:36:06:36:c1:db:0a:85:7c:b1:db:d5:be:d9:92:a3:47:
9b:f0:b1:4d:26:57:f0:c8:a3:d8:3b:25:84:23:ec:e2:13:aa:
59:64:90:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:55:30 2026 by rpki-client