Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json)
Hash identifier: pVYhtVJSPqzOYMCLiDinSEaV74U1N1NK/acmdeAYDsc=
Subject key identifier: 29:A2:7E:A2:FA:A1:26:AD:49:CF:EC:47:B2:97:D0:22:94:DF:F1:2D
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 019EC1B669CDE0CBAEB0B70C71911B13DB83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
Manifest number: 196B
Signing time: Sat 13 Jun 2026 16:00:17 +0000
Manifest this update: Sat 13 Jun 2026 16:00:17 +0000
Manifest next update: Sun 14 Jun 2026 16:00:17 +0000
Files and hashes: 1: ATx_EPHk5Vz1v-SpkJd7Yp6y99I.roa (hash: wd0rlsu9n+czEzHQALtAg7xmPAM6xOroSrrnXWF3Lfo=)
2: JO3t4wzj5pMO8pakWAwlzqvqqRM.asa (hash: RPS36XqFSQhGe2AwlqqHc/6mflgEGlaBrX53Fqp34Rw=)
3: U94b541NpMgAwKP9ouuvvL3DKeY.asa (hash: 3/0upql9LNQyluPXuFCuGStTRhsE9wxGljd6ckKQ/wo=)
4: fX3tPrrAy5l65982bntPZMbTKXM.asa (hash: elpKOW5KwuHELtxjMPO/HnU5rqNl0Ef4AHZpAwWCRy8=)
5: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: sUXbFhV9VsXyt5ZUrdUJhc1eRq2EWMszyxZ+lJxoXVg=)
6: ly50p6bn7OtoWGksmAe1FXQRbrM.roa (hash: WvJTgADr+6l6uiBzvWmW2KhgcRN1ZPaB7zKRd38ejzU=)
7: p1pAyUX-fSx4X5xlNyO_Vq2ry7w.roa (hash: 4qf1lMGx7tWHDVof2zNBnir3ltwLgCwXuL9BwrRJPhU=)
8: uiCDkRFrRbQXEYOboMj925yrGQ0.roa (hash: gojhd9ZvaD3lpAzgnUVGx9Pc+ubn7hLvE/bd+7GeQHs=)
9: wr5OBu9Kg5fiAynMByNWWanKodQ.roa (hash: xpQiib4Ztk+0sSwtkw/MfpFjKcsKXQPv65ui0X+24sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:69:cd:e0:cb:ae:b0:b7:0c:71:91:1b:13:db:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: Jun 13 16:00:17 2026 GMT
Not After : Jun 14 16:00:17 2026 GMT
Subject: CN=29a27ea2faa126ad49cfec47b297d02294dff12d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:aa:78:00:4f:9b:36:ed:a4:db:34:d5:fc:91:
8f:d3:3a:bd:28:4b:a3:45:c3:06:6d:f4:a7:9f:2b:
dc:3c:8e:b2:a6:32:23:14:f7:de:a1:3f:c3:19:a7:
65:ea:39:85:37:0c:b6:9a:82:d7:74:19:c7:5d:be:
19:4e:bd:28:90:37:49:d3:d3:91:ef:2a:5c:35:0e:
23:40:c9:16:0b:4c:dd:51:df:1b:75:cd:e4:20:c4:
65:f7:b0:26:b7:4c:e6:31:e6:af:2f:cc:7d:a1:a9:
e1:c8:9b:8c:8c:d7:04:c3:bf:ac:61:da:fb:ea:7d:
4a:0d:41:e8:7b:a8:44:c6:99:11:99:8a:ed:95:49:
b2:a3:0b:d0:c5:dd:dd:90:35:fa:51:b0:bb:11:d5:
eb:5f:03:2d:b3:d4:76:90:01:cf:4a:62:57:66:79:
39:8c:f0:69:00:7f:9a:ad:01:41:8b:02:b4:ce:b7:
3f:d9:ad:0f:3a:43:e8:79:da:46:6b:9e:37:cb:3f:
9a:80:54:e5:94:84:4a:7f:c6:3f:bf:c2:53:48:a6:
7c:f9:88:70:7a:c7:29:bb:4b:6c:83:29:1c:64:93:
5f:27:b8:0c:8a:9a:21:6c:18:cd:35:8e:70:20:12:
b4:cc:f0:a2:28:b4:27:0c:7e:c0:2c:45:c0:2c:4a:
96:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A2:7E:A2:FA:A1:26:AD:49:CF:EC:47:B2:97:D0:22:94:DF:F1:2D
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:a3:d3:73:9c:76:bb:af:df:05:6b:1b:b8:10:05:7a:b5:29:
2d:da:48:87:8a:16:f2:5f:40:2f:4d:73:f7:59:84:84:12:79:
b6:81:ff:a2:1e:f7:6c:e3:a8:8d:1e:64:ff:d2:f6:84:c0:a7:
c9:5b:d8:9c:2f:6f:1f:80:b3:4d:a8:ac:64:b5:18:6f:4c:88:
45:69:25:a0:1e:f4:e8:80:1e:35:75:3e:3e:6b:5c:f2:c6:55:
72:7e:0d:d0:8b:d0:d5:ea:ad:58:f0:6a:fe:37:c6:7d:64:58:
ab:5b:99:7e:53:fb:59:1c:da:52:10:7d:6a:b1:a2:a7:c5:f6:
f5:f7:7b:88:3b:a7:62:49:30:79:7a:8b:5b:60:17:d0:39:34:
6e:5d:c6:46:f1:51:fc:a9:98:58:07:58:f1:9b:d4:89:7c:66:
b1:a5:ef:ac:04:23:c7:03:5e:51:6c:a7:9a:63:52:d7:49:63:
2a:a4:57:aa:87:ca:3a:33:1e:1d:7e:cb:23:95:59:80:76:bc:
a0:ea:d0:7d:7f:36:cc:53:67:2c:94:31:bd:1b:af:ec:ad:50:
fe:a5:f0:e9:31:13:63:ad:b0:20:b8:74:53:6d:5b:1f:bd:24:
f7:db:45:70:53:be:90:d9:24:08:92:9c:29:34:e7:6c:ef:0a:
68:08:c2:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:15:36 2026 by rpki-client