Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: d9orOSwcO7jBjVDBZ8AvVPgm3CDLhjfxD4lnS0tzGPI=
Subject key identifier: FD:0E:49:CC:C3:F2:66:6B:EC:0F:99:0E:89:D7:BA:E1:D2:C8:18:43
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 019D985054CF0EAB57345EB822DC652122EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 18D1
Signing time: Thu 16 Apr 2026 22:01:34 +0000
Manifest this update: Thu 16 Apr 2026 22:01:34 +0000
Manifest next update: Fri 17 Apr 2026 22:01:34 +0000
Files and hashes: 1: ATx_EPHk5Vz1v-SpkJd7Yp6y99I.roa (hash: wd0rlsu9n+czEzHQALtAg7xmPAM6xOroSrrnXWF3Lfo=)
2: JO3t4wzj5pMO8pakWAwlzqvqqRM.asa (hash: RPS36XqFSQhGe2AwlqqHc/6mflgEGlaBrX53Fqp34Rw=)
3: U94b541NpMgAwKP9ouuvvL3DKeY.asa (hash: 3/0upql9LNQyluPXuFCuGStTRhsE9wxGljd6ckKQ/wo=)
4: fX3tPrrAy5l65982bntPZMbTKXM.asa (hash: elpKOW5KwuHELtxjMPO/HnU5rqNl0Ef4AHZpAwWCRy8=)
5: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: XTOkSmBeMuyYwh/V7CR4S1+u9CfFC46Ek6cWHDHq/BI=)
6: ly50p6bn7OtoWGksmAe1FXQRbrM.roa (hash: WvJTgADr+6l6uiBzvWmW2KhgcRN1ZPaB7zKRd38ejzU=)
7: p1pAyUX-fSx4X5xlNyO_Vq2ry7w.roa (hash: 4qf1lMGx7tWHDVof2zNBnir3ltwLgCwXuL9BwrRJPhU=)
8: uiCDkRFrRbQXEYOboMj925yrGQ0.roa (hash: gojhd9ZvaD3lpAzgnUVGx9Pc+ubn7hLvE/bd+7GeQHs=)
9: wr5OBu9Kg5fiAynMByNWWanKodQ.roa (hash: xpQiib4Ztk+0sSwtkw/MfpFjKcsKXQPv65ui0X+24sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:45:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:54:cf:0e:ab:57:34:5e:b8:22:dc:65:21:22:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: Apr 16 22:01:34 2026 GMT
Not After : Apr 17 22:01:34 2026 GMT
Subject: CN=fd0e49ccc3f2666bec0f990e89d7bae1d2c81843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ef:92:36:fa:90:f1:ab:7f:89:c0:32:6a:3f:
af:9c:7f:c5:bb:4c:62:21:80:f4:6b:9d:b8:07:86:
9d:9a:9c:c7:57:2c:f1:a5:5a:79:67:1d:1f:2e:cb:
9c:21:ba:06:47:0f:a9:0e:d0:6a:ce:5d:0c:14:a2:
0a:4e:64:ea:92:f1:98:a4:52:b9:ed:da:e7:27:f3:
0b:15:5e:75:92:64:b3:14:e0:19:6c:85:a9:b4:5c:
34:af:24:8f:d4:b2:2a:a6:7b:01:c1:6a:ee:15:92:
4d:8b:61:7f:f2:33:43:2e:e1:6b:40:df:e4:18:51:
80:48:d8:2e:ec:8e:0b:a0:e5:db:7c:8a:80:86:fb:
af:53:de:2b:53:85:89:b9:8d:41:56:00:2f:7e:12:
a9:fb:80:e7:d2:36:14:ea:21:f9:49:19:40:ab:30:
c2:30:a6:2f:47:68:26:01:03:e6:6c:b9:36:53:c5:
81:15:c4:17:f6:be:1b:14:c4:5e:3b:69:3c:62:b8:
26:ab:8a:3e:85:45:45:56:1a:53:18:d9:b8:e3:17:
32:60:cf:0d:00:93:d4:4e:43:2b:cf:ba:dc:d9:0a:
ef:07:15:c9:db:d9:05:67:b9:1c:81:2e:6e:9d:fa:
5f:fa:22:88:cb:c1:fe:fc:5d:1f:24:60:2a:82:4e:
21:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:0E:49:CC:C3:F2:66:6B:EC:0F:99:0E:89:D7:BA:E1:D2:C8:18:43
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:c9:6b:25:40:52:ca:a8:46:58:59:cc:b3:c3:78:0e:5d:dc:
c7:af:d7:94:24:5d:ba:dd:74:21:53:8e:5d:56:0e:1a:e0:0f:
97:d9:db:c0:50:f5:e6:f3:c0:56:9f:11:39:e9:21:93:f8:63:
ed:c1:84:24:68:e5:b1:21:a5:33:f4:5a:dd:f3:ed:4c:8c:62:
3e:8b:e5:f6:09:c5:04:42:6f:f1:a1:d0:64:d0:b5:78:ed:00:
9e:14:17:a2:5c:99:91:81:be:20:60:c9:27:ec:5e:4b:24:58:
9d:6f:70:61:71:91:0c:43:e1:d9:54:8c:31:f7:5b:b0:4a:9f:
2f:3c:3d:36:3b:6f:e5:b7:42:1d:68:3e:50:65:be:d1:dd:64:
cc:80:66:c3:02:a8:f7:d4:f4:36:11:1e:d7:f8:8f:c4:ec:ce:
6a:28:1e:41:bd:73:f3:86:f4:f5:75:33:9b:2c:1a:2c:3d:e5:
3e:6d:c2:a2:f4:36:ef:b7:2d:4c:9b:eb:ee:2d:fe:f2:21:91:
c6:25:8a:97:3d:f7:8c:b9:cd:12:24:8e:c3:db:12:5e:c2:7e:
44:b6:cd:98:dc:f1:8a:1a:5f:20:af:f1:bd:8b:31:ca:33:f0:
e5:ca:e7:2b:08:b9:48:41:df:e4:94:ed:b6:95:fd:58:77:7f:
3a:03:06:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 23:56:42 2026 by rpki-client