Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
File: fdw2QUyZG_qNkvYCflMINwsitqY.mft (raw, json)
Hash identifier: NfAwcGwq9AFxcBZuQIp1UEYw4VG6UGz/cOj51y1wE+0=
Subject key identifier: 98:97:34:C8:57:10:AB:0C:9E:0D:B3:12:7D:53:CC:4B:45:87:0C:43
Authority key identifier: 7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
Certificate issuer: /CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Certificate serial: 019D28BB76CE010A5231BC5C0FFBBEB6BFA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
Manifest number: 09DE
Signing time: Thu 26 Mar 2026 06:01:07 +0000
Manifest this update: Thu 26 Mar 2026 06:01:07 +0000
Manifest next update: Fri 27 Mar 2026 06:01:07 +0000
Files and hashes: 1: 7govs0WCyjg5wwJ4Lwd5TvIwb8Q.roa (hash: OGSpoOfbnujXgA13Y9803ByJNfvBnyQq9VcU8i/EB6s=)
2: fdw2QUyZG_qNkvYCflMINwsitqY.crl (hash: Rh583dMl5yrLCHJ7tTpk2gcJ7rNwNmYNqLFAXblOMhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:76:ce:01:0a:52:31:bc:5c:0f:fb:be:b6:bf:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Validity
Not Before: Mar 26 06:01:07 2026 GMT
Not After : Mar 27 06:01:07 2026 GMT
Subject: CN=989734c85710ab0c9e0db3127d53cc4b45870c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:87:99:49:b2:ad:56:40:98:df:7b:c5:a8:bd:
29:51:52:b2:b9:25:a0:b6:ed:42:72:62:ec:57:68:
3f:98:2d:59:ce:11:6d:8c:89:61:0f:2b:ec:0f:6a:
3b:47:f8:f4:78:0c:d6:62:7c:0d:24:5c:26:3a:3f:
7b:ec:8e:bb:7c:b6:ec:66:28:7e:9f:20:17:15:45:
94:27:65:b7:48:25:21:9b:3f:31:e2:7a:cf:92:85:
32:61:25:d8:aa:e0:e9:4a:81:0c:86:25:c4:cd:bb:
41:5f:80:c4:67:88:0f:80:d8:5f:71:1a:28:4f:76:
9b:55:80:67:90:94:88:99:66:ba:e4:ef:55:2b:ff:
8e:71:d4:25:4c:73:fa:41:f8:94:82:41:66:97:05:
66:34:0d:36:c7:5a:ac:bb:ac:6c:dc:6c:ed:a1:19:
77:1f:c5:d3:58:17:45:20:a4:09:8a:1d:7e:5e:64:
b6:0f:65:61:ef:2a:6a:54:aa:df:95:8d:75:20:65:
78:78:56:07:c0:fb:c0:e7:6a:3a:58:6a:91:f6:6e:
19:0f:30:20:c0:e7:c5:00:3a:1c:2d:f8:6a:69:e9:
95:04:09:b7:d3:16:3c:a5:27:cd:52:7a:fb:4b:f7:
d5:ee:b6:ce:83:2d:59:8f:05:5f:c5:6d:0f:ee:bd:
57:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:97:34:C8:57:10:AB:0C:9E:0D:B3:12:7D:53:CC:4B:45:87:0C:43
X509v3 Authority Key Identifier:
keyid:7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:e0:da:ac:de:0f:70:9f:87:b7:34:a8:9d:ae:47:ea:46:e9:
08:f7:4c:cb:b6:d6:a5:c8:0d:bc:44:65:97:f3:43:d1:3e:ae:
24:c7:b8:de:cc:a1:48:01:c8:d7:c7:c3:53:ef:0b:fe:c6:c3:
5d:a2:7f:2f:37:17:d6:64:1f:69:f8:12:f4:ad:a0:08:93:c3:
4e:9d:25:95:89:fe:de:ab:9b:86:ef:59:f0:91:9b:b9:c5:e6:
fe:3c:c5:d0:d5:29:73:ca:fb:df:01:f2:2a:7d:25:53:18:50:
de:f5:07:49:a0:81:c3:a3:27:69:89:16:47:fe:0e:49:65:93:
23:8f:07:8a:4a:08:77:c0:df:f9:0f:19:0a:c7:dd:4d:07:a6:
f3:12:2f:69:97:81:19:d0:64:bb:ca:51:ae:cc:ea:a3:69:78:
96:f2:ff:53:96:5c:65:d2:14:14:c1:64:30:02:6c:c2:9b:47:
e5:40:33:d3:75:58:60:86:a5:f1:d7:a5:44:b9:d3:48:a3:59:
d2:aa:38:1b:eb:3b:85:09:22:1f:2f:fd:aa:e5:7e:bd:9d:b0:
29:1f:ac:a6:19:f4:e5:9a:62:44:a5:d4:f7:8f:22:b1:cb:2f:
f2:58:5c:aa:53:1a:0b:d7:c9:f2:15:b3:bc:9d:f2:49:e4:e8:
13:ff:df:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:22:40 2026 by rpki-client