Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
File: fzErCdH2kPJXAL1dzwfJGAxelmM.mft (raw, json)
Hash identifier: ibdnK16oSg9OO3haCVTzsCM6ZJpT6HGxtvi2B/XuJVc=
Subject key identifier: 7C:CA:B6:97:F2:D9:FA:E1:41:5D:16:9D:05:86:2C:E1:E5:98:1B:93
Authority key identifier: 7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
Certificate issuer: /CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Certificate serial: 019E22808D1F7D7A4FE9457B9EF2B06FE4F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
Manifest number: 0231
Signing time: Wed 13 May 2026 18:01:50 +0000
Manifest this update: Wed 13 May 2026 18:01:50 +0000
Manifest next update: Thu 14 May 2026 18:01:50 +0000
Files and hashes: 1: BCFG1E3vkLJzX3xYHBAXCR2M-Dk.roa (hash: kLXCiyzJI0lL3gfuo31f6jHCm4NoCsgw/6nrJV+kat0=)
2: fzErCdH2kPJXAL1dzwfJGAxelmM.crl (hash: 4UTDg4RpHdTbQYfrhmkD3+NSsIBQWtXFIwtHDPsrOuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 14:48:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:22:80:8d:1f:7d:7a:4f:e9:45:7b:9e:f2:b0:6f:e4:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Validity
Not Before: May 13 18:01:50 2026 GMT
Not After : May 14 18:01:50 2026 GMT
Subject: CN=7ccab697f2d9fae1415d169d05862ce1e5981b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a3:fe:43:5d:80:9f:55:2c:1d:c4:a6:b4:fe:
ab:bf:50:ef:0b:f6:78:d3:81:b8:de:cc:f8:66:69:
00:8f:41:df:ed:d4:40:a1:1d:07:aa:a6:74:03:e4:
4d:5c:54:3c:6e:07:17:3e:a1:b5:0e:03:b7:ef:ec:
86:4f:f1:02:67:82:79:5e:8d:d4:90:20:dd:53:9f:
02:72:a7:53:3e:1e:ee:67:d0:c3:95:be:a8:51:d5:
96:75:f2:11:36:6e:64:84:cd:c7:0d:e4:e9:d2:24:
9d:7e:13:f5:38:2f:11:70:50:1b:51:f2:4d:6e:f2:
69:95:54:89:d5:c3:2d:df:80:4f:59:ab:36:b5:a7:
bc:d3:8a:06:40:ef:85:d0:d6:31:8e:97:27:e5:9a:
67:52:c0:86:4e:74:96:45:a7:0c:b1:f6:e0:c6:e8:
39:92:ba:95:6f:cb:04:b0:c4:ab:38:3d:52:31:81:
7e:2a:44:bd:c2:d5:5d:fa:e4:fa:e9:de:31:ff:59:
85:64:34:72:0b:37:8f:f1:ea:a0:e6:3f:11:79:b3:
4e:11:6e:bd:36:fe:6a:45:c4:ec:42:8a:a6:c9:a0:
b3:90:b0:fa:f7:99:b4:07:d0:54:70:90:0d:a6:88:
d3:da:a8:63:f1:88:88:79:34:78:7b:d6:6f:62:fc:
9a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:CA:B6:97:F2:D9:FA:E1:41:5D:16:9D:05:86:2C:E1:E5:98:1B:93
X509v3 Authority Key Identifier:
keyid:7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:b4:82:c8:b0:cb:33:5e:2f:a5:80:d1:07:3f:c8:c6:61:24:
46:4c:e1:9e:f0:d6:1f:23:53:be:fe:9f:2a:70:0c:c0:a6:ec:
73:f0:78:a3:bd:66:25:21:28:29:41:0e:7d:bb:60:9b:12:f4:
ef:28:f7:0b:3d:bc:67:58:d3:e4:47:4c:6e:c1:8e:74:8e:c8:
2d:2f:80:be:d8:5e:15:d7:cc:90:01:b1:d0:e4:da:b1:d8:3e:
bd:70:33:91:ca:8f:24:7e:6f:4b:bb:67:a6:59:62:1c:d9:10:
42:6b:71:c2:88:2d:94:08:9e:e8:07:1f:76:dd:2b:72:86:0b:
f8:6f:77:ef:b0:49:d5:e3:ac:cb:69:14:15:dd:d2:c4:55:c3:
62:75:e1:fd:8e:9f:0c:e4:c9:7f:7f:84:fd:ff:54:9e:bd:bd:
ca:b8:52:d4:e8:e3:73:fc:40:e2:82:71:46:26:1a:3c:a5:e2:
ab:0e:23:b8:8c:7c:69:57:e5:0c:7e:90:8d:8a:f5:bb:38:db:
d4:25:e6:6d:4c:44:47:3f:89:62:19:18:be:b2:40:37:24:54:
91:f0:40:0e:78:76:31:7e:5e:6b:77:56:7f:01:98:f2:9f:52:
c4:2f:41:0e:15:9f:83:ff:c5:34:6c:bb:92:02:0b:4f:17:9b:
d6:20:ea:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 23:02:18 2026 by rpki-client