Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: xZUwODK4tesKxF9lKbtxp+jpuv6giRKpOWAOs7VdcE8=
Subject key identifier: 2C:7B:3C:F2:2D:85:9E:56:4F:B5:33:F7:B8:CA:59:F5:7A:EE:20:7B
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 019E1F115ADE21AABAC5575EFCD162517620
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 08B1
Signing time: Wed 13 May 2026 02:01:31 +0000
Manifest this update: Wed 13 May 2026 02:01:31 +0000
Manifest next update: Thu 14 May 2026 02:01:31 +0000
Files and hashes: 1: 0yr8aXhOgym_087pCWjaXD2xwbo.roa (hash: ibUboXeSVZSey6KFBr4VW/S44K1bXt0+EVOA97v+hoA=)
2: IbaW7xjndY6EP4RVlLBG-ZEnYYo.roa (hash: ysgDo6QmZenYrn+i6Pxn3RI9PAFzW45gWtKEwSVQWB4=)
3: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: 0ylHK8ttKobZFqx9mW8RVMRvsrEsrag2Lo2sxsdKAgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:5a:de:21:aa:ba:c5:57:5e:fc:d1:62:51:76:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: May 13 02:01:31 2026 GMT
Not After : May 14 02:01:31 2026 GMT
Subject: CN=2c7b3cf22d859e564fb533f7b8ca59f57aee207b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:41:46:ee:b0:d0:eb:74:7b:15:bf:ec:8f:73:
e4:8a:a9:3c:05:d0:62:e4:ab:e2:5e:c5:5f:c0:7c:
22:d5:c5:b9:1b:45:15:fb:db:d7:4b:4b:6e:41:d5:
48:0f:53:4e:2b:97:68:98:1b:f6:71:af:45:0d:50:
13:32:eb:cc:99:7d:39:67:a6:ff:b1:95:bd:53:23:
78:39:2d:56:b8:86:6c:fd:0c:d3:50:6a:bb:3c:24:
5f:ca:d4:af:5b:42:d9:5e:f6:03:4f:d8:a2:26:56:
89:14:83:3f:02:6f:09:fc:46:55:a4:91:1c:55:c6:
26:56:f0:4e:f2:e4:20:aa:ce:a7:4e:32:0f:19:8d:
29:a1:67:ef:cf:7c:b2:8c:dc:53:0d:ae:32:68:7f:
74:51:f7:b0:73:d6:ec:d4:05:92:01:47:90:ed:7a:
ca:1c:61:3c:ea:ec:ea:10:45:ec:ce:9b:9f:73:ba:
58:52:ed:15:e4:65:fa:f5:a4:41:cb:db:60:bb:21:
1d:da:f2:73:19:66:91:07:d3:11:16:65:1c:f1:c4:
6f:08:72:fa:1a:3d:0d:1a:09:86:e7:d6:3f:ca:bf:
ea:91:b3:10:30:17:f1:03:66:9c:cf:64:52:39:91:
62:51:68:4e:0f:4b:54:1b:82:b9:36:2d:ce:99:79:
72:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7B:3C:F2:2D:85:9E:56:4F:B5:33:F7:B8:CA:59:F5:7A:EE:20:7B
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:5a:40:b1:ae:de:e2:b9:52:ac:66:b4:97:fa:ef:5f:26:d8:
6a:be:b9:12:93:96:e5:bb:e6:e0:3c:4d:b0:42:fa:53:0a:c6:
18:57:c7:2e:ab:c3:f4:1b:ae:85:e2:41:b1:87:d5:f7:eb:fa:
93:42:09:c1:b8:05:6d:84:e1:d6:49:00:25:ff:93:5e:f8:24:
ab:6d:70:03:d0:a6:b8:86:64:06:b4:71:a6:81:d4:da:70:58:
7d:6b:0e:b0:09:87:6e:f7:c6:f5:89:b4:71:30:ba:46:b9:a3:
a6:12:7e:f1:78:19:2e:e6:f0:05:9f:0e:32:64:9a:3b:60:78:
74:f6:c6:24:e5:71:bc:ec:b7:17:a7:0e:83:b7:6e:8e:70:23:
76:a7:72:7f:c7:9c:05:cc:0b:f7:4d:96:94:0e:b7:12:6e:f8:
7b:f9:7e:4a:68:db:93:2c:7e:f0:06:ed:8a:2f:3b:80:96:73:
f9:f0:50:9a:c4:1a:e7:5d:e3:94:64:90:de:8d:5f:05:4b:3f:
80:98:dd:b0:27:a2:51:67:71:6a:f1:e9:bf:37:c6:ef:7d:35:
09:a3:e7:8b:12:70:73:ab:92:10:c3:3b:2a:f7:36:28:93:97:
db:25:9d:52:81:a5:ce:60:4e:16:b2:2f:6d:ea:40:6d:a2:62:
40:fb:50:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fEVreIaq6xVde/NFiUXYgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2
NmMxNGIwHhcNMjYwNTEzMDIwMTMxWhcNMjYwNTE0MDIwMTMxWjAzMTEwLwYDVQQD
EygyYzdiM2NmMjJkODU5ZTU2NGZiNTMzZjdiOGNhNTlmNTdhZWUyMDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkFG7rDQ63R7Fb/sj3Pkiqk8BdBi
5KviXsVfwHwi1cW5G0UV+9vXS0tuQdVID1NOK5domBv2ca9FDVATMuvMmX05Z6b/
sZW9UyN4OS1WuIZs/QzTUGq7PCRfytSvW0LZXvYDT9iiJlaJFIM/Am8J/EZVpJEc
VcYmVvBO8uQgqs6nTjIPGY0poWfvz3yyjNxTDa4yaH90Ufewc9bs1AWSAUeQ7XrK
HGE86uzqEEXszpufc7pYUu0V5GX69aRBy9tguyEd2vJzGWaRB9MRFmUc8cRvCHL6
Gj0NGgmG59Y/yr/qkbMQMBfxA2acz2RSOZFiUWhOD0tUG4K5Ni3OmXly/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCx7PPIthZ5WT7Uz97jKWfV67iB7MB8GA1UdIwQY
MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt
NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx
LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPFpAsa7e
4rlSrGa0l/rvXybYar65EpOW5bvm4DxNsEL6UwrGGFfHLqvD9BuuheJBsYfV9+v6
k0IJwbgFbYTh1kkAJf+TXvgkq21wA9CmuIZkBrRxpoHU2nBYfWsOsAmHbvfG9Ym0
cTC6RrmjphJ+8XgZLubwBZ8OMmSaO2B4dPbGJOVxvOy3F6cOg7dujnAjdqdyf8ec
BcwL902WlA63Em74e/l+Smjbkyx+8Abtii87gJZz+fBQmsQa513jlGSQ3o1fBUs/
gJjdsCeiUWdxavHpvzfG7301CaPnixJwc6uSEMM7Kvc2KJOX2yWdUoGlzmBOFrIv
bepAbaJiQPtQhA==
-----END CERTIFICATE-----
Generated at Wed May 13 06:29:44 2026 by rpki-client