Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
File: FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft (raw, json)
Hash identifier: 1wixB1GyalrVMov0vZx2SmPm5sy6+LlEQtY63tbhukA=
Subject key identifier: 08:0A:9C:7F:FE:03:37:C8:83:11:2C:E3:20:CC:68:CD:F3:73:87:BE
Authority key identifier: 14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A
Certificate issuer: /CN=14c2eab6a2960506046a1da4312773d98e97cd5a
Certificate serial: 019D98F54FD4B4A98A3E896D9A8610AB1523
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
Manifest number: 0D63
Signing time: Fri 17 Apr 2026 01:01:46 +0000
Manifest this update: Fri 17 Apr 2026 01:01:46 +0000
Manifest next update: Sat 18 Apr 2026 01:01:46 +0000
Files and hashes: 1: FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl (hash: BKTRTDYbGs45fful6d8d6YoFcdiB1H3awKFf4Kb9rJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:4f:d4:b4:a9:8a:3e:89:6d:9a:86:10:ab:15:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14c2eab6a2960506046a1da4312773d98e97cd5a
Validity
Not Before: Apr 17 01:01:46 2026 GMT
Not After : Apr 18 01:01:46 2026 GMT
Subject: CN=080a9c7ffe0337c883112ce320cc68cdf37387be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:4c:84:76:19:44:9d:2a:2c:8c:b2:e3:1d:
e1:e9:9b:ad:2f:1e:db:fe:07:84:d0:97:86:dd:46:
69:4f:a5:aa:71:0d:f7:c1:35:63:d9:63:9d:09:76:
e2:48:14:b1:24:83:69:84:f4:33:94:e8:37:c0:3b:
81:fa:78:fb:3e:cf:52:7a:a7:25:bc:cb:06:56:41:
1b:f4:d7:84:ad:d5:61:62:ab:6f:94:e1:89:98:da:
0e:41:f9:29:7d:d6:ef:68:39:f5:44:a7:33:f1:d9:
0c:1b:8f:82:85:53:e8:5a:a7:2f:8b:f0:ed:ee:0c:
ed:81:dc:e8:f2:a0:49:9c:8e:85:3f:7f:c1:a1:ed:
c2:4f:16:b8:1a:a2:90:7a:42:10:ab:12:01:78:06:
59:e5:37:5a:0f:85:30:93:1a:9f:13:a1:76:55:6a:
1f:03:3a:7c:c4:d1:74:e9:92:f4:aa:f2:1c:87:14:
01:ff:73:e1:c9:10:fd:0e:9f:8b:a8:c7:87:1c:e5:
85:96:0a:89:b2:bc:55:fc:7b:6a:d1:7c:c0:ff:d3:
fa:e3:9c:79:ce:ee:ca:a8:79:66:b1:b1:2d:77:0f:
4d:02:bf:39:7d:b4:d5:c1:fc:12:9f:34:78:b5:5c:
af:45:18:a5:c8:ce:24:db:0b:14:68:61:a8:a7:7e:
00:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0A:9C:7F:FE:03:37:C8:83:11:2C:E3:20:CC:68:CD:F3:73:87:BE
X509v3 Authority Key Identifier:
keyid:14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:8c:35:39:77:41:b3:2f:f2:5e:c2:c8:12:c3:02:91:5b:8b:
7b:39:d1:da:80:ff:ed:bd:06:c4:1f:b3:18:62:67:2f:d6:15:
f4:e3:e7:91:18:ed:3f:43:08:27:f0:a4:df:61:7b:f9:4d:1e:
4b:5b:b8:ce:50:44:9e:0d:28:8e:3c:fb:a8:01:1f:22:f2:5a:
ae:f3:4c:87:94:e4:12:e9:95:49:da:e8:91:2b:2f:ed:34:46:
62:5a:b7:3d:65:16:c0:8d:0b:12:03:19:ef:e7:f8:91:a5:b2:
e8:cc:b7:03:29:19:5e:31:6f:fc:fe:35:10:ed:27:04:ff:92:
20:d3:ba:55:2f:3c:ff:47:8b:f4:68:27:a6:f8:d4:45:5e:e4:
cd:09:61:0f:7b:dc:05:a7:58:86:ae:92:4d:09:89:35:ef:7c:
8c:e9:93:3a:15:4f:27:45:b6:e2:7e:51:b1:c2:18:8a:c2:09:
38:17:5c:32:22:88:20:cd:26:1c:7b:46:dd:ae:df:27:45:ba:
2c:ec:4d:57:ba:62:71:b3:b9:ee:d3:d6:57:f5:df:72:94:8d:
1e:ac:b6:a2:89:11:0c:61:5d:58:7d:02:c3:75:fd:22:95:75:
c3:d5:1a:51:6b:3d:58:cd:dd:ba:8f:0c:77:3c:ed:1d:23:1d:
65:48:c3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:09:36 2026 by rpki-client