Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
File: FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json)
Hash identifier: 0+lOtW80t18kK+spTY4eI+BgWABU3t+YsRqTwml2Y34=
Subject key identifier: 51:55:EC:3C:63:03:7A:1B:6B:45:A2:DA:5F:AE:19:80:C1:EE:0E:62
Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Certificate serial: 019E1F10AFC35376DE7A644B68974C006101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
Manifest number: 1916
Signing time: Wed 13 May 2026 02:00:47 +0000
Manifest this update: Wed 13 May 2026 02:00:47 +0000
Manifest next update: Thu 14 May 2026 02:00:47 +0000
Files and hashes: 1: E4NAfEwW3jbfNnqs4s6wX2om-oU.roa (hash: fdTtA83SV7tJMvW5toFMANKX74HjpiK+6fBeEianyoA=)
2: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: y4y79JBRbArtwDxr7kiXldfNniR10nVV++Vodisd2yA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:af:c3:53:76:de:7a:64:4b:68:97:4c:00:61:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48
Validity
Not Before: May 13 02:00:47 2026 GMT
Not After : May 14 02:00:47 2026 GMT
Subject: CN=5155ec3c63037a1b6b45a2da5fae1980c1ee0e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5a:5e:7b:60:d0:e9:96:f5:79:f5:5c:aa:44:
33:b9:40:79:8b:d4:a3:4f:8c:60:d0:16:6b:c1:5c:
e4:ff:27:3e:a3:f9:79:f9:a8:28:86:73:a2:67:d3:
01:02:28:21:b8:3a:90:88:3f:af:0e:f1:73:33:0c:
5b:e6:74:ae:00:de:72:9b:a7:22:2e:83:e2:eb:57:
b6:c9:31:8d:09:d3:b3:db:f6:30:14:78:7e:01:2a:
d2:fc:7e:14:79:2f:5a:80:75:8b:56:3f:d8:79:51:
40:67:ef:bf:ee:37:f6:20:6b:92:a4:53:e3:32:05:
e3:8b:20:92:f9:63:f4:af:20:3f:db:9d:53:3f:fa:
cf:f5:f3:33:3f:be:9f:b8:7f:13:e0:c3:bb:3b:b3:
74:39:ee:be:a9:7f:d3:2d:38:0a:a6:b2:0f:cd:d2:
8d:b0:1b:d6:3a:c0:13:20:f9:00:92:5c:17:c0:50:
b4:30:f3:a3:fa:35:f7:3f:90:b9:86:5b:b7:ab:62:
cd:47:7c:ed:e0:c0:d7:d7:e8:40:e9:ea:1a:4c:d9:
85:dd:1c:ad:1a:00:f2:c0:16:6f:fa:16:78:07:c6:
85:86:4a:70:73:11:28:59:32:ae:ea:89:0b:6d:76:
f5:cf:e8:3e:4a:ca:2c:cb:66:ef:63:5a:d1:12:f6:
31:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:55:EC:3C:63:03:7A:1B:6B:45:A2:DA:5F:AE:19:80:C1:EE:0E:62
X509v3 Authority Key Identifier:
keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:36:98:13:62:91:19:cb:24:b9:ac:a6:05:9c:42:18:4a:b1:
e3:72:0a:05:99:1f:d6:58:3d:7f:df:e8:c2:6a:56:09:8e:ea:
c4:52:d2:37:29:a1:03:88:84:20:8b:92:34:95:e6:d8:8d:3c:
b5:53:b1:88:42:3e:50:55:8a:ee:9a:d3:30:1e:b6:ee:a8:41:
b8:78:74:93:04:08:a4:98:a9:1d:40:4d:7d:30:3c:e0:b1:ef:
69:ca:88:4d:ee:56:68:00:92:80:d1:7c:95:cb:df:e2:3d:9c:
bb:57:ea:a7:05:7a:25:62:4a:39:ad:ac:ba:22:99:50:59:90:
df:9a:8f:80:98:75:e3:a7:d7:6f:6a:a1:83:07:7f:a2:39:0a:
9e:0b:be:18:34:67:58:19:62:32:4f:f7:15:3e:3c:20:b1:71:
2e:66:9f:3a:d6:f3:48:75:78:e7:62:ee:35:65:9c:fa:1c:e9:
7c:7a:c4:45:14:62:17:54:22:74:b2:e3:13:40:0d:41:67:2b:
93:c5:fc:49:05:03:78:c9:66:f0:48:f8:2c:fb:52:63:6a:2c:
f9:8f:5b:b3:e2:7f:9f:a7:1f:14:56:f1:16:1f:21:33:66:8a:
ef:b3:43:a0:50:12:1c:b5:7d:52:ca:74:45:c0:6b:f6:7f:be:
93:ae:81:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:30:37 2026 by rpki-client