Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
File: FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json)
Hash identifier: Vcrm6eESJ6so1vYhgfqSmgtb6bqK63/iUx6N/4IXHZg=
Subject key identifier: 90:A1:5E:63:CB:3F:DD:32:FD:D9:73:60:C9:E0:40:2B:55:CB:CB:A2
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial: 019D25F1EA7516B1B506D66F8E7BC48E1CE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
Manifest number: 1895
Signing time: Wed 25 Mar 2026 17:01:44 +0000
Manifest this update: Wed 25 Mar 2026 17:01:44 +0000
Manifest next update: Thu 26 Mar 2026 17:01:44 +0000
Files and hashes: 1: E4NAfEwW3jbfNnqs4s6wX2om-oU.roa (hash: fdTtA83SV7tJMvW5toFMANKX74HjpiK+6fBeEianyoA=)
2: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: AO+Z7pc3L/KTKqXyK8PIKdm7We3EXT8/fXeLkTv5AQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:ea:75:16:b1:b5:06:d6:6f:8e:7b:c4:8e:1c:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Validity
Not Before: Mar 25 17:01:44 2026 GMT
Not After : Mar 26 17:01:44 2026 GMT
Subject: CN=90a15e63cb3fdd32fdd97360c9e0402b55cbcba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:a8:c0:a7:db:38:82:0b:85:e7:f8:df:09:
18:60:02:bc:b2:3b:14:2c:71:5e:68:01:c3:8a:b5:
8b:68:1a:cd:40:3e:bc:aa:a9:ed:fe:69:9e:d5:71:
fc:f3:b6:40:e7:ae:07:ee:05:27:1e:84:8b:7b:67:
e7:6e:a7:46:d7:eb:39:76:f1:ee:73:13:f6:e5:e6:
b6:f4:06:dc:d4:a0:fc:5e:6f:fd:7a:87:af:a3:97:
c7:1c:7e:12:6d:21:5e:54:3d:e7:8d:55:cb:7b:ce:
a7:97:9b:03:b8:45:aa:4b:46:38:80:fe:b1:78:35:
f3:fa:5c:44:8d:d9:4d:32:bb:a0:6b:b1:99:ba:9a:
03:a5:8d:11:83:22:42:4b:71:12:e7:a2:d6:4a:29:
be:48:f3:86:a0:af:41:0e:0a:67:af:26:54:0f:f6:
ea:c2:3e:58:de:c7:41:59:fa:5d:96:c3:2e:f2:af:
86:3e:99:0c:c9:9c:e9:4c:fc:be:32:44:6d:ce:d8:
28:90:2b:4d:15:48:f7:8a:71:be:17:3d:89:db:85:
c8:d3:02:1a:70:87:ee:8f:b8:a1:0a:cb:69:6f:16:
34:ac:86:ae:a6:65:a9:7a:98:47:6f:1c:95:56:ff:
9a:c1:5c:ed:82:1d:a6:d1:a9:aa:51:b8:2a:f7:f6:
64:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A1:5E:63:CB:3F:DD:32:FD:D9:73:60:C9:E0:40:2B:55:CB:CB:A2
X509v3 Authority Key Identifier:
keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:7b:2d:31:20:70:d0:b9:09:aa:f5:b0:f5:c9:50:cc:ce:8b:
ef:6f:e1:e2:2e:36:f3:4a:cb:df:25:b8:96:8b:73:f1:41:17:
23:ed:41:3d:bc:40:65:57:f1:0c:03:f6:1f:62:e2:d1:a7:54:
25:7d:fd:de:04:09:ef:97:62:53:39:94:d4:90:07:5f:f4:32:
49:49:ea:68:55:08:f2:56:5c:a0:94:9c:15:11:f6:1c:9d:53:
70:16:42:b5:31:80:9e:1c:24:aa:f7:69:69:c4:d7:c6:ee:a1:
80:92:3d:18:60:31:f7:fd:19:6d:67:3a:20:ca:9b:e1:ed:58:
4c:e6:59:24:59:12:ad:46:7b:fa:dc:df:3c:3e:b2:47:24:b6:
4e:e1:f8:dd:73:d5:50:6b:90:88:77:11:bc:2e:4b:7e:03:8e:
00:91:a1:7f:72:22:68:f8:a7:52:10:d2:78:68:ac:e0:da:0f:
fe:ab:34:02:9f:80:7d:7a:18:86:22:84:d3:9b:e9:48:cf:f8:
cd:d3:a1:35:e2:bc:4f:c0:eb:59:0b:a5:ce:68:74:be:97:40:
59:6a:e5:a6:49:13:4d:cb:89:69:de:9a:62:43:25:0d:a8:9d:
e9:09:26:7a:4f:d1:c5:83:7a:a0:0a:e6:11:ca:62:35:c6:e4:
8d:03:ba:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:37:25 2026 by rpki-client