Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
File: fi4pGEMoSetx6V3EDRB56oZfYQk.mft (raw, json)
Hash identifier: brsPcte19hGb+d+TJnDC6yFGV+pSELD5CLmIpRYtaYE=
Subject key identifier: 23:7F:4D:01:49:7D:CC:92:03:F0:B0:13:53:AA:DB:DB:9D:87:4B:8E
Authority key identifier: 7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
Certificate issuer: /CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Certificate serial: 019CABD93E4A4DDA6738AD04CDC52F85A219
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
Manifest number: 0B62
Signing time: Mon 02 Mar 2026 00:01:06 +0000
Manifest this update: Mon 02 Mar 2026 00:01:06 +0000
Manifest next update: Tue 03 Mar 2026 00:01:06 +0000
Files and hashes: 1: 1qfpefK-IKLyRX2WbiD-8WMvtIo.roa (hash: 92M9a8T4KZ/HeDVtYT2qczbOaea03AQx3PHj+D4fEdU=)
2: fi4pGEMoSetx6V3EDRB56oZfYQk.crl (hash: fNFPe9U/yCk6zpUfN9mQK2s83s2hXXFg4jzsZ+AVVvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:3e:4a:4d:da:67:38:ad:04:cd:c5:2f:85:a2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Validity
Not Before: Mar 2 00:01:06 2026 GMT
Not After : Mar 3 00:01:06 2026 GMT
Subject: CN=237f4d01497dcc9203f0b01353aadbdb9d874b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:74:e3:d1:2f:74:b1:2a:a2:93:00:b3:75:e7:
49:87:1e:fe:de:4e:af:0c:d0:7d:09:60:69:c9:59:
08:48:03:7c:c5:fb:96:8b:db:57:46:93:bb:9b:9b:
b8:69:f2:f0:fc:b9:c1:c2:57:ed:ee:b4:e6:fe:73:
4f:c2:91:4f:ed:fd:c4:a2:49:2c:bf:1c:5d:69:06:
96:6a:af:48:8a:d9:16:bc:c4:fa:ff:3c:a4:7f:0c:
af:c6:5c:e4:da:8c:b4:bf:c0:b2:0e:6e:b0:29:df:
84:05:ea:a4:88:c6:ff:d9:4b:5b:16:20:2c:48:ce:
ba:95:59:1b:f3:1f:36:b5:b3:a3:76:82:87:49:6f:
2b:dd:fc:20:5e:44:42:1b:ac:fc:03:a8:2e:35:59:
78:10:50:d2:30:28:0b:a2:d9:7b:3f:b8:76:d8:e2:
7d:be:ac:05:63:96:a1:85:2a:64:53:fb:38:f5:5d:
17:a7:cf:d0:08:cd:73:01:a3:c6:ca:33:4d:2b:8f:
09:d3:b6:2a:4a:f2:9a:85:46:97:2d:df:25:aa:f0:
9b:2b:aa:49:6c:e9:47:31:d2:03:d7:2e:ee:fc:4f:
5e:03:50:90:0a:40:95:9e:30:23:0c:cf:f5:5d:a5:
9b:75:77:93:1a:02:84:b8:09:b0:6e:a8:12:94:28:
1b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7F:4D:01:49:7D:CC:92:03:F0:B0:13:53:AA:DB:DB:9D:87:4B:8E
X509v3 Authority Key Identifier:
keyid:7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:65:53:3c:c4:a3:75:71:a0:5f:13:ea:d8:f8:8c:9a:05:12:
d4:eb:06:77:d4:3d:f4:9c:f4:b2:21:cc:21:a1:ee:ce:5a:49:
8f:c0:5b:2b:c7:97:b2:06:26:35:c6:2b:37:c1:87:a1:57:ae:
51:2d:a3:ea:ca:4f:3f:2e:38:58:4b:1b:a5:59:56:9b:72:5a:
ba:e7:11:62:94:77:e7:7f:8b:3f:ff:51:40:c9:a6:89:a2:89:
fb:44:b1:ab:5b:19:63:88:a3:a2:ba:33:2f:83:c6:2b:c3:ef:
a1:fd:93:43:cb:97:07:3f:bd:4b:49:26:59:75:37:5e:a3:b0:
32:7e:0a:cd:97:cf:b0:79:1a:82:31:09:40:7c:c6:7d:6b:ba:
1f:0a:1d:53:2e:56:c8:c3:04:72:40:15:7f:92:68:8d:70:0e:
d8:aa:2a:ad:66:52:dd:d4:a4:e7:cd:d4:d6:3a:e0:ba:b9:d2:
9d:f9:39:45:86:42:89:50:96:28:61:ca:2d:a1:86:91:9d:7b:
2e:ea:0f:a1:9c:c8:38:9b:0f:b1:f0:fe:fd:97:1b:f2:29:f6:
67:f7:04:97:03:45:34:a2:fc:65:e1:0a:52:d4:cb:c8:d6:e3:
7b:52:62:73:46:a4:b5:ca:f7:9d:a1:9e:20:4d:2b:4d:58:42:
00:c1:67:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:06:28 2026 by rpki-client