Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: MuwQWFiGGp/bPQrc3IEzX35dTowRB8dzOF32YBMC33U=
Subject key identifier: FD:A3:F0:BD:69:A4:FE:45:D8:34:4E:63:3B:6C:9D:BF:FB:83:97:81
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 019D25F133CE212D2511DA6F72F4A0C2B92B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 082B
Signing time: Wed 25 Mar 2026 17:00:57 +0000
Manifest this update: Wed 25 Mar 2026 17:00:57 +0000
Manifest next update: Thu 26 Mar 2026 17:00:57 +0000
Files and hashes: 1: Xip4xkGmyDCpD1V1TAhyG7oBSoo.roa (hash: JS7Y9TGnxDiomHGfAPVHy5QyfD9ZOLvpsEHgj2zFlNg=)
2: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: mXOMfWgbRRJVUVD13V9Bqnn3k3WKTeMk4ToCj7VlJSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:33:ce:21:2d:25:11:da:6f:72:f4:a0:c2:b9:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Mar 25 17:00:57 2026 GMT
Not After : Mar 26 17:00:57 2026 GMT
Subject: CN=fda3f0bd69a4fe45d8344e633b6c9dbffb839781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:44:cd:f8:75:71:da:07:4b:19:02:92:ed:ad:
7d:a9:0a:52:fa:fd:e8:7b:51:06:7d:82:3c:30:0b:
cf:01:fc:bf:d9:ec:33:09:4e:a4:8f:d5:66:2c:d0:
fb:0f:5b:16:05:b4:4d:07:48:56:8a:ad:92:87:b5:
86:30:39:16:12:c4:6c:4f:eb:f3:ad:28:8e:93:59:
b9:26:0a:a9:32:95:62:44:67:1d:d1:19:a5:77:6a:
f8:ee:1f:ad:19:ae:d2:72:31:02:72:3b:38:03:15:
10:e4:2a:1d:c3:df:ab:cf:e2:06:46:ea:dd:82:f3:
98:40:c8:76:98:bf:cc:8f:ba:a6:31:a9:48:a0:38:
79:d7:03:bb:59:6e:03:8b:e7:7b:27:4e:b2:63:79:
bc:e0:cc:97:17:90:dd:4b:98:ba:e1:81:52:66:81:
13:76:f9:39:10:96:45:76:a3:e2:e4:14:98:2c:bf:
8e:7d:91:01:cc:ff:88:a9:07:72:dd:68:04:1a:40:
8b:88:37:6a:47:cb:72:82:30:a5:30:0b:8c:c6:51:
3c:5c:c1:7e:fb:b2:94:01:e3:d1:db:7f:ce:21:88:
aa:fb:32:bb:74:e7:58:69:c1:d0:88:51:28:d9:57:
46:db:b5:b2:28:c9:43:4c:f0:9b:e9:29:3b:72:32:
5c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A3:F0:BD:69:A4:FE:45:D8:34:4E:63:3B:6C:9D:BF:FB:83:97:81
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:2d:40:50:95:31:c2:1e:82:f8:a5:40:95:e2:8b:43:20:28:
c1:e7:f7:8d:8b:22:75:4a:62:c7:d2:2a:a3:66:c7:3c:1b:59:
42:19:ba:2e:72:97:d6:3d:a2:e5:63:e8:d4:a7:74:a2:44:d2:
50:d5:20:fd:7c:e3:3e:45:7a:63:c9:c1:45:64:f7:e9:a6:b4:
02:84:61:0c:7b:47:56:8b:28:f2:ca:70:95:56:ba:86:87:75:
c9:b8:e7:ee:81:c0:05:a5:75:e1:ca:3e:08:ee:eb:af:f8:aa:
e1:e1:37:12:2c:fd:bb:07:8d:12:1d:0f:4d:dc:4d:41:5a:20:
60:8d:80:ac:22:9e:5f:cb:c1:31:d6:a2:26:4d:49:d6:d3:35:
ca:e8:d4:f7:03:3f:ca:18:96:43:69:a4:ca:72:b9:07:ef:b1:
55:93:fe:5c:f2:0c:7f:83:50:05:02:7e:11:08:be:7e:b5:3a:
ab:09:fa:87:44:9a:97:50:39:89:b5:4b:23:fc:5f:64:6a:8d:
29:5d:26:19:3e:3a:86:0b:6f:3c:57:25:ce:9c:49:f6:b0:6c:
e8:6f:e2:46:5d:60:49:d4:32:38:44:7e:ef:da:f8:7a:b8:13:
1e:f9:9a:9b:d7:ad:f2:e2:5f:69:36:6b:93:55:d3:d6:a2:19:
c3:21:c0:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:00:22 2026 by rpki-client