Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
File: fi4pGEMoSetx6V3EDRB56oZfYQk.mft (raw, json)
Hash identifier: HrJaeEnN7avagOMuorVUidBM50AEHaMKW0NbIa8gmYM=
Subject key identifier: 9C:18:DE:53:28:DC:3A:BC:15:61:63:92:84:79:83:46:B6:09:F5:73
Authority key identifier: 7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
Certificate issuer: /CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Certificate serial: 019D9962EE08CF05046F75321BCF7DCCD62E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
Manifest number: 0BDD
Signing time: Fri 17 Apr 2026 03:01:30 +0000
Manifest this update: Fri 17 Apr 2026 03:01:30 +0000
Manifest next update: Sat 18 Apr 2026 03:01:30 +0000
Files and hashes: 1: 1qfpefK-IKLyRX2WbiD-8WMvtIo.roa (hash: 92M9a8T4KZ/HeDVtYT2qczbOaea03AQx3PHj+D4fEdU=)
2: fi4pGEMoSetx6V3EDRB56oZfYQk.crl (hash: YsX9m7M+KyfJc6Ms+fxfg+ZSEYbY7WN/i5MTn8UJL4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:ee:08:cf:05:04:6f:75:32:1b:cf:7d:cc:d6:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Validity
Not Before: Apr 17 03:01:30 2026 GMT
Not After : Apr 18 03:01:30 2026 GMT
Subject: CN=9c18de5328dc3abc1561639284798346b609f573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:66:e5:4e:64:97:3a:5d:9e:20:60:9f:ca:bd:
23:a9:c6:66:85:69:21:7d:97:4b:4e:fb:90:54:89:
93:f8:f0:77:d7:4c:0a:13:72:09:29:a5:26:b9:bc:
8f:94:63:1c:49:04:9e:c0:d9:42:df:7b:b7:ee:27:
ea:55:fe:ab:61:55:6f:1d:ac:ae:b2:a5:d7:4b:b7:
29:0f:97:91:f2:05:9f:4d:2b:d0:dd:6c:f4:dc:fb:
e0:b0:57:1f:97:66:14:12:77:31:10:36:65:9c:a7:
47:65:99:6c:ac:c0:14:de:2a:e0:3a:9c:a8:fb:b7:
8e:60:2a:e1:ec:7d:fa:8d:d6:59:46:03:4a:b4:de:
0b:f4:96:15:aa:95:7f:35:b6:a3:0e:82:e0:ee:d8:
34:6c:40:45:a4:27:ab:b3:bd:23:e9:49:8c:e7:61:
5f:da:f9:36:82:5c:b2:14:8b:da:7e:21:42:75:45:
af:0b:e6:6f:43:62:39:1b:01:9d:f4:9f:89:76:01:
da:45:32:02:c7:15:6c:dd:ce:34:e5:89:15:7a:c6:
f9:98:a4:0b:bc:15:fb:52:78:96:62:29:a5:64:92:
c3:a9:22:29:90:f8:34:ec:2b:c1:2b:30:8a:ef:34:
6e:aa:21:f1:85:e4:01:dc:a2:81:09:b3:fb:a2:cf:
12:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:18:DE:53:28:DC:3A:BC:15:61:63:92:84:79:83:46:B6:09:F5:73
X509v3 Authority Key Identifier:
keyid:7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:30:8e:aa:fd:f0:7d:4e:74:68:c2:d9:81:bc:34:fb:90:93:
20:45:91:b7:b7:c1:bf:47:f4:3d:18:3c:2c:81:14:22:cb:89:
5d:05:15:81:c1:7c:d9:92:04:1d:86:22:61:46:48:60:98:af:
61:58:76:1c:9c:04:6a:4f:12:23:05:bc:64:72:69:de:a5:c7:
02:ca:60:0a:ce:88:0d:46:cb:d1:eb:a8:26:b8:3d:21:d4:ab:
7f:3a:30:8e:c3:c8:a8:7a:66:01:d5:69:e1:39:a9:9c:af:6d:
68:8e:95:62:8c:c2:04:24:38:09:64:bc:26:0b:7e:a7:73:8e:
4c:13:c7:0b:5a:64:03:36:57:84:90:46:fa:4b:c7:90:ba:81:
a3:e9:63:e6:28:01:88:77:7a:66:6e:16:a9:b1:8e:7e:aa:3c:
42:5e:1d:74:c2:5e:2b:e4:0f:62:d7:f4:39:9b:a8:e6:e0:04:
dc:95:18:73:f7:11:8c:2f:b6:e5:25:a1:82:ed:11:8b:3f:50:
56:18:92:8e:98:26:d4:af:42:ff:a1:ca:2c:6d:1a:bc:32:1c:
ad:d0:b1:d8:4a:35:be:43:b3:28:59:4d:46:cb:95:5a:20:2b:
77:53:6f:6d:62:dc:36:81:c9:05:ed:ad:25:a5:6d:d9:f2:69:
98:48:4c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:53:23 2026 by rpki-client