Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json)
Hash identifier: mKnXnzofWkmwtd18TFFw6aNRxNvz7G6bg/LCvJ6so2Y=
Subject key identifier: FC:2C:38:99:6C:67:C5:B8:4E:E7:03:7F:D9:49:9D:8D:A7:71:65:EB
Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Certificate serial: 019D24A793C87855C70C9943ADB826955E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
Manifest number: 03F9
Signing time: Wed 25 Mar 2026 11:00:55 +0000
Manifest this update: Wed 25 Mar 2026 11:00:55 +0000
Manifest next update: Thu 26 Mar 2026 11:00:55 +0000
Files and hashes: 1: 6_ZblNm9ZRmYGkapxWHWsVXv62A.roa (hash: l1m5QGoRdp/fQXdkGDAgYT7UXYr7yNDfK4bT6u+JkJo=)
2: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: IL3/YwH3QgloBYqjL2SjuQcG1xcTiwWnFucb9UBsrkU=)
3: nnVHZXt9DivgToJiSfHRWDPCX58.asa (hash: /8k8/1a46VaQnelGrFv4w1ybQa3EbefqWYHF9uEGkc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 11:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:a7:93:c8:78:55:c7:0c:99:43:ad:b8:26:95:5e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Validity
Not Before: Mar 25 11:00:55 2026 GMT
Not After : Mar 26 11:00:55 2026 GMT
Subject: CN=fc2c38996c67c5b84ee7037fd9499d8da77165eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e7:13:77:61:81:3b:12:82:b3:6f:fb:0c:0e:
0f:fe:a9:f6:ab:b6:6d:bb:07:d2:1b:0e:b3:13:ac:
2c:a5:13:9b:13:f4:e7:e9:49:72:71:2a:7e:09:fe:
60:9d:2f:aa:b7:32:91:a9:b4:d0:cd:cd:8b:1d:98:
0a:58:01:6e:56:d0:96:67:29:5e:d1:0b:dc:cc:64:
bc:6f:bd:9b:ce:3e:06:d1:5f:6e:c8:ed:15:0f:3c:
fc:3d:60:b9:ef:34:71:93:1a:c7:5c:22:56:ed:37:
67:13:c4:5d:6b:79:04:5e:72:a7:f5:af:40:24:cb:
d1:5b:6b:6d:8f:ca:f9:5d:86:6b:0b:35:58:99:77:
84:47:3d:4e:61:d4:78:e5:0c:b5:f4:cd:75:c1:34:
af:22:09:5d:8a:59:26:34:e1:cc:7c:cd:55:04:dc:
60:30:7c:b7:a2:9f:ac:c8:63:5c:15:c1:ca:ea:b0:
71:10:c9:d6:f1:6a:64:12:62:08:4b:4e:16:02:4c:
31:d3:0b:b9:d4:10:b6:d1:c8:96:ae:9d:38:74:24:
b3:2e:a4:2f:6f:0c:8d:c6:65:1a:03:8f:15:08:e3:
57:c7:0a:68:ad:3d:6b:81:40:b9:85:f3:00:69:43:
8c:cc:73:64:a6:02:4b:42:7f:45:ee:0e:ff:e4:a8:
8c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:2C:38:99:6C:67:C5:B8:4E:E7:03:7F:D9:49:9D:8D:A7:71:65:EB
X509v3 Authority Key Identifier:
keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:06:da:2e:58:0a:59:3f:19:60:05:49:e2:23:ff:88:6d:9f:
99:f2:7d:10:07:2d:c3:26:9d:62:24:1f:ea:b9:e8:64:89:45:
63:14:b6:d5:1a:66:eb:6b:67:69:84:6b:a1:cd:35:d3:cf:1a:
4c:13:02:f1:cb:60:c9:bf:24:3d:4a:89:5d:60:be:b8:e8:1d:
26:d2:5e:c5:a9:e1:c1:3f:25:21:a5:65:b3:10:d7:52:1c:2d:
86:bd:85:02:27:f8:94:72:1d:5d:79:1f:86:d7:4e:94:dd:67:
eb:1a:a3:98:d1:8c:b0:cc:5a:b7:20:52:90:f8:78:0c:1e:a4:
5a:81:94:8b:72:0a:f7:f4:bb:c6:eb:5f:29:0e:63:ee:51:bd:
61:0f:36:3c:d8:e9:9c:74:bb:f0:43:56:d1:26:cf:22:84:ba:
57:df:5f:62:83:09:df:02:c7:d7:b9:85:1a:9c:65:4a:a7:35:
f8:66:f5:fe:97:9c:53:af:8f:68:c5:ac:47:a6:69:74:e4:42:
47:fd:b1:39:6a:2a:8c:03:db:55:1f:a4:59:99:41:e8:64:a0:
38:d0:58:95:fd:e7:04:87:19:53:f1:2d:dd:55:89:9a:c8:07:
67:78:c4:22:e4:cc:17:bd:d7:81:02:ab:44:cb:35:44:86:b3:
5d:b2:59:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:38 2026 by rpki-client