Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File: fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier: HmYQ1RfUyAFrnAhBR5/KnSwQ4BXLmWRn2fxkCBeiCW8=
Subject key identifier: B6:6B:D5:FD:82:4E:B6:5A:BF:4E:8F:48:0E:18:A9:DF:B6:FC:8D:54
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer: /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial: 019D99620CF3FE8619BD4D6C3E0F4EF62408
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number: 049F
Signing time: Fri 17 Apr 2026 03:00:33 +0000
Manifest this update: Fri 17 Apr 2026 03:00:33 +0000
Manifest next update: Sat 18 Apr 2026 03:00:33 +0000
Files and hashes: 1: 7CcrAdktIbmIWLIGRKt4XmzFkcg.roa (hash: iem2l37ZP4AP5T+ke2deoIOETFCnj1X7HBG1zJalTyg=)
2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: FE6Xpj0OTTON+hc18SvjKLdhzvxV20q6XjYd4gcLEyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:0c:f3:fe:86:19:bd:4d:6c:3e:0f:4e:f6:24:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Validity
Not Before: Apr 17 03:00:33 2026 GMT
Not After : Apr 18 03:00:33 2026 GMT
Subject: CN=b66bd5fd824eb65abf4e8f480e18a9dfb6fc8d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4a:de:38:c4:cd:9a:80:b8:06:46:d5:91:08:
17:ea:73:0a:6b:80:c9:7d:25:62:e6:90:a0:2a:ed:
e6:83:1f:bb:7e:09:7e:13:fb:0b:61:c7:98:db:3c:
63:4b:95:da:90:3e:68:46:20:92:4d:83:70:59:02:
c0:1b:dc:b8:97:94:58:e7:a6:bd:bb:dd:91:f4:25:
fd:01:e4:fe:33:8b:18:44:63:3d:04:1b:57:54:3c:
ec:98:0a:bc:8e:7e:dc:bf:45:7b:d0:31:40:d5:37:
d5:e1:87:21:2b:be:f2:6f:00:0e:01:9d:7a:53:b1:
5d:32:db:fd:e9:ed:48:e5:c3:9b:9b:96:45:b4:6d:
18:e4:21:8b:33:c0:ef:49:e1:4a:30:9f:a3:28:e5:
db:0e:c7:71:00:da:96:ec:ec:cc:9e:e2:37:e9:55:
ed:b1:b9:15:4e:16:e7:a9:13:40:b5:2d:c3:62:6c:
73:c3:13:a6:2e:45:3c:7f:23:c9:f6:17:f7:02:9a:
a1:64:28:c3:18:42:9a:96:5a:66:8e:ac:28:2d:f1:
ac:dd:10:39:72:a7:c0:a4:f4:71:6f:37:05:93:f7:
b1:3e:78:a0:34:f7:81:67:c1:d4:6f:c3:12:13:b2:
25:1c:63:23:12:ac:a2:cf:df:61:46:9c:73:e0:07:
17:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6B:D5:FD:82:4E:B6:5A:BF:4E:8F:48:0E:18:A9:DF:B6:FC:8D:54
X509v3 Authority Key Identifier:
keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:32:ca:f4:0f:5a:b4:43:6d:93:b0:00:d0:2b:59:f7:2c:05:
d8:b2:9c:04:30:94:85:18:51:c0:ea:c5:6f:77:b4:e0:b5:8a:
2d:d9:bb:bd:10:d5:75:5a:7e:3c:b8:ea:01:6f:0e:a7:35:fc:
b3:f7:48:ac:c1:38:a9:17:c8:d2:38:8e:ee:cd:ec:51:83:4d:
c1:0a:42:d7:b9:17:5a:a2:e8:f6:69:8e:b5:7f:53:96:eb:e7:
9b:3c:72:e7:54:08:90:6c:3a:43:bb:d9:8b:69:83:33:d2:fb:
3b:2b:b3:ce:44:df:dd:70:fc:fe:1a:a5:bc:82:a0:87:bb:22:
87:29:6f:6c:e4:54:ae:dc:e8:0e:e3:e0:e7:ad:36:52:1e:56:
59:1e:82:7d:f3:36:5a:2a:56:df:b8:75:71:5c:8e:a4:a3:c6:
36:73:98:44:fb:37:85:3a:63:d0:8c:71:a2:d8:43:ee:a2:9d:
36:0c:ae:44:c4:51:b8:67:96:e9:44:ce:05:d5:0c:f0:dc:5d:
b8:2f:35:b7:b4:3d:28:8e:33:3a:55:c2:a1:d9:5c:7c:11:8c:
01:5c:6c:8a:66:22:00:58:d0:38:a4:23:61:19:b1:d7:29:01:
1a:1d:9b:c5:9c:aa:df:56:8c:14:35:22:4a:5e:39:9a:84:52:
eb:48:b7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:39:26 2026 by rpki-client