Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: o1NsJNZ3QbhnGNwdBwcQVW8OBLaanvrNp7TiM1vlRBw=
Subject key identifier: 2F:AC:F3:A5:4A:0A:08:45:85:04:A6:C4:86:F6:69:FC:3B:43:E0:89
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 019CA945E41EDCD78B3D6A9FF62E94B25B34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 1851
Signing time: Sun 01 Mar 2026 12:00:55 +0000
Manifest this update: Sun 01 Mar 2026 12:00:55 +0000
Manifest next update: Mon 02 Mar 2026 12:00:55 +0000
Files and hashes: 1: ATx_EPHk5Vz1v-SpkJd7Yp6y99I.roa (hash: wd0rlsu9n+czEzHQALtAg7xmPAM6xOroSrrnXWF3Lfo=)
2: JO3t4wzj5pMO8pakWAwlzqvqqRM.asa (hash: RPS36XqFSQhGe2AwlqqHc/6mflgEGlaBrX53Fqp34Rw=)
3: KVan9Pcjft5JIZrcZQHR4i1sEDc.roa (hash: 7Kj/wx1OYLRBwB8Ljtm8I7zBf7kVbnSHVXIyDdmYFnA=)
4: QajoMPTah5HmQYWazmOhTmEgdy4.roa (hash: vdxOYd3C96luAne3fsVsAc2/Kvs7MPuLrsOoLRiJHqk=)
5: U94b541NpMgAwKP9ouuvvL3DKeY.asa (hash: 3/0upql9LNQyluPXuFCuGStTRhsE9wxGljd6ckKQ/wo=)
6: fX3tPrrAy5l65982bntPZMbTKXM.asa (hash: elpKOW5KwuHELtxjMPO/HnU5rqNl0Ef4AHZpAwWCRy8=)
7: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: A7KQSnzF8FPZNDJerEIqli8h3xiT1GT1AlEDnEZNB/0=)
8: p1pAyUX-fSx4X5xlNyO_Vq2ry7w.roa (hash: 4qf1lMGx7tWHDVof2zNBnir3ltwLgCwXuL9BwrRJPhU=)
9: wY-Cs55am_CMQf8p1GQXagMI6tE.roa (hash: LKZ2Oa7r49TtzT8prI98TwirtVVWtnVlmoHvBJjp2PI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:45:e4:1e:dc:d7:8b:3d:6a:9f:f6:2e:94:b2:5b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: Mar 1 12:00:55 2026 GMT
Not After : Mar 2 12:00:55 2026 GMT
Subject: CN=2facf3a54a0a08458504a6c486f669fc3b43e089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3d:6e:03:e8:96:a4:58:56:6a:05:63:55:30:
7b:c8:e8:6d:c4:b9:6d:c2:84:6b:3a:5a:c7:c8:97:
a0:49:39:a5:78:03:b5:de:3e:2e:57:f2:09:fe:09:
2e:50:2b:28:66:fd:f2:14:25:38:bb:c1:39:23:79:
5b:a3:81:ee:bb:de:3b:0e:3e:49:1f:6a:1b:3a:de:
2f:26:0a:d5:bf:d4:aa:e1:2c:02:85:1e:b2:21:86:
7b:4d:33:6a:7e:83:98:83:57:f5:73:b8:35:ea:d8:
9d:30:a5:c0:48:ea:3a:26:9d:34:a1:f4:24:f2:3b:
6f:32:78:81:87:90:06:22:1d:89:48:eb:99:7f:aa:
a9:0e:11:0b:ab:db:f1:99:0b:d9:84:86:59:21:f4:
7c:90:fe:d1:b7:09:36:43:78:e1:5a:90:bf:71:e3:
80:06:3f:fa:39:09:c7:cf:97:2f:c2:22:a8:e8:c0:
b6:a8:5c:e6:2b:16:09:0b:aa:7d:c3:b9:a4:a9:ff:
29:1c:f2:04:19:d9:4f:a8:92:28:87:92:df:5a:80:
a0:23:d4:19:c2:d7:f0:9c:dc:87:9f:21:51:5b:3a:
da:ec:43:7e:b2:a6:69:27:49:b1:14:a5:00:5e:75:
18:48:82:9a:3c:09:13:d6:66:f6:3a:32:bc:f3:a3:
fd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AC:F3:A5:4A:0A:08:45:85:04:A6:C4:86:F6:69:FC:3B:43:E0:89
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c5:e0:ce:8c:37:42:c0:18:47:aa:fd:c8:ca:4e:10:15:bb:
b3:16:fd:ca:31:05:a6:9e:92:d5:4d:c4:2e:de:c7:fe:35:e4:
6a:ed:4f:45:64:36:67:d8:0d:46:26:21:a0:a3:22:7d:dd:38:
19:0f:07:d6:ef:f9:34:2c:50:e2:0d:aa:55:ea:f1:22:a4:1c:
ce:c9:d2:00:35:24:86:15:9f:e5:53:c4:cb:1b:05:aa:0d:99:
f5:93:f4:52:ef:76:c3:ca:75:b5:04:25:f9:05:f1:18:79:6c:
14:14:e9:49:75:dc:3f:68:ff:0c:33:d4:09:13:73:fe:9c:a1:
db:bb:d9:28:2d:d3:b2:82:92:17:ca:ec:f2:36:3b:ca:6c:fe:
d0:d2:79:5e:3f:1b:83:e8:44:bd:52:83:60:a4:fe:fe:a9:e8:
2e:29:e1:8d:96:79:c1:d6:7b:bb:69:c9:ea:de:b1:3b:a6:88:
c1:56:64:d8:f8:23:ee:cc:87:be:84:9a:50:58:37:aa:9e:4e:
15:63:83:d8:4a:44:e5:9f:27:9d:cd:fd:9c:45:d0:6b:09:bf:
1d:33:bd:b8:a9:69:8f:b1:eb:eb:25:9e:5d:b8:2a:b1:50:1d:
34:49:69:42:45:a5:e0:66:52:9d:22:97:b2:6f:0d:1d:94:97:
1c:81:3f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 14:47:59 2026 by rpki-client