Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft
File: fPxZzhNuPpOobeVfBdSaWeFcu78.mft (raw, json)
Hash identifier: 9b4TQvy4O0en5qxDItXJegFNkBcga36JwlxuFb+e7VQ=
Subject key identifier: A1:01:95:21:78:CC:4D:3A:D0:42:4A:C1:B7:AA:B5:0D:22:E6:50:DE
Authority key identifier: 7C:FC:59:CE:13:6E:3E:93:A8:6D:E5:5F:05:D4:9A:59:E1:5C:BB:BF
Certificate issuer: /CN=7cfc59ce136e3e93a86de55f05d49a59e15cbbbf
Certificate serial: 019CAAC7162837C415FE0AD5622D5D7DE00F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fPxZzhNuPpOobeVfBdSaWeFcu78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft
Manifest number: 0BE2
Signing time: Sun 01 Mar 2026 19:01:39 +0000
Manifest this update: Sun 01 Mar 2026 19:01:39 +0000
Manifest next update: Mon 02 Mar 2026 19:01:39 +0000
Files and hashes: 1: fPxZzhNuPpOobeVfBdSaWeFcu78.crl (hash: Gvc6o/QLUt6itkX8cJFVVfpCZLzsyI2YXOlZEQDWsPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft
rsync://rpki.ripe.net/repository/DEFAULT/fPxZzhNuPpOobeVfBdSaWeFcu78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:16:28:37:c4:15:fe:0a:d5:62:2d:5d:7d:e0:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cfc59ce136e3e93a86de55f05d49a59e15cbbbf
Validity
Not Before: Mar 1 19:01:39 2026 GMT
Not After : Mar 2 19:01:39 2026 GMT
Subject: CN=a101952178cc4d3ad0424ac1b7aab50d22e650de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a4:86:4d:81:30:3b:5e:c9:d7:f2:d6:3a:53:
b7:6f:1f:87:4b:7f:b2:55:c1:b5:6b:cc:ae:68:5c:
1c:af:da:78:68:51:dc:a9:f3:b8:b5:90:e6:8a:b5:
75:8f:01:10:c7:9a:d4:e5:26:75:aa:c7:33:69:8c:
11:dd:23:29:81:40:67:25:a1:ad:33:91:75:6b:10:
56:36:8d:a7:84:4f:0f:84:35:52:f4:49:8d:b4:1c:
fb:51:76:cd:b7:1c:70:9b:5b:6b:7e:ac:63:3f:5f:
7b:6a:19:17:95:5b:a2:ce:fe:2e:7a:13:eb:48:d9:
95:c3:43:ab:04:bc:aa:f2:92:63:76:5d:32:c1:a2:
13:88:93:3d:d0:8c:68:06:e1:cc:50:9c:24:5f:4c:
a3:29:28:c1:43:99:8b:96:c1:b5:6d:10:b5:b2:71:
a1:d0:f5:86:6b:d3:18:25:7b:45:76:66:dc:d2:3a:
d8:0d:91:d2:65:4c:46:d5:40:b9:93:ae:07:6e:ca:
5e:96:c2:87:6a:e1:03:31:09:f0:4f:47:4b:3b:b7:
11:cb:34:f0:23:37:18:df:86:f8:24:bb:56:f7:14:
57:9a:64:9d:a4:90:ca:4e:b4:5d:26:0a:6c:89:37:
60:fd:8d:ca:bd:22:c2:5d:c8:8d:67:c0:2d:49:df:
5f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:01:95:21:78:CC:4D:3A:D0:42:4A:C1:B7:AA:B5:0D:22:E6:50:DE
X509v3 Authority Key Identifier:
keyid:7C:FC:59:CE:13:6E:3E:93:A8:6D:E5:5F:05:D4:9A:59:E1:5C:BB:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fPxZzhNuPpOobeVfBdSaWeFcu78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1acd3f-6f22-431c-a03c-80895f88f5d5/1/fPxZzhNuPpOobeVfBdSaWeFcu78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:32:5d:33:5c:12:4f:b3:57:fd:d1:78:55:20:cf:ac:12:21:
34:68:4a:7e:25:3f:c4:e5:ab:88:6e:b4:1e:02:9a:fc:3f:06:
7c:21:90:2c:4c:54:3e:21:7f:4c:5f:fa:96:f6:ca:31:bb:b9:
6f:a9:88:e5:63:60:31:54:3c:25:f2:62:1c:1a:66:46:73:7f:
c8:b4:70:77:bd:30:2b:83:ae:97:f5:a6:6a:65:b7:78:5b:43:
31:ae:36:89:32:0b:ee:51:2a:72:01:27:f5:f8:bf:6f:3a:58:
c3:ee:6c:c8:68:a1:8d:79:69:b0:75:6b:e4:da:17:65:98:e8:
ff:f1:24:e0:8c:37:5f:14:b9:61:c6:a2:34:3a:f1:3a:50:f9:
00:01:07:66:0e:6a:34:d4:08:b3:b0:11:92:cc:33:9f:2e:f4:
56:a7:5e:52:03:31:aa:33:0d:ea:c3:48:c1:bf:e7:1c:0c:73:
2f:8a:53:57:4f:42:4b:16:ff:54:5a:ce:5f:aa:d1:78:c2:8d:
02:e2:f5:fa:c2:1d:c4:a4:1e:b7:ee:f8:1f:26:76:60:f6:dd:
16:3f:26:67:3f:c1:7a:f0:5c:46:2d:30:1b:d9:d8:4d:d2:26:
54:35:30:39:cd:3a:0c:1c:c7:80:ab:8c:c8:26:15:69:6a:a1:
74:aa:37:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:52:27 2026 by rpki-client