Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File: fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier: fZSN15M32+wZj1JdCKp8pAiANEr5HcFsAIGk/lHTezM=
Subject key identifier: 74:8A:5E:CF:25:21:95:71:85:81:35:6A:88:CD:F0:67:FC:99:A1:17
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer: /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial: 019CABD8F5D985D831F9AEC631DF185C93CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number: 0424
Signing time: Mon 02 Mar 2026 00:00:48 +0000
Manifest this update: Mon 02 Mar 2026 00:00:48 +0000
Manifest next update: Tue 03 Mar 2026 00:00:48 +0000
Files and hashes: 1: 7CcrAdktIbmIWLIGRKt4XmzFkcg.roa (hash: iem2l37ZP4AP5T+ke2deoIOETFCnj1X7HBG1zJalTyg=)
2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: za6T7T08Iep/uMm7dljk4HY5puqGROHH4pZMTEVlTdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:f5:d9:85:d8:31:f9:ae:c6:31:df:18:5c:93:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Validity
Not Before: Mar 2 00:00:48 2026 GMT
Not After : Mar 3 00:00:48 2026 GMT
Subject: CN=748a5ecf252195718581356a88cdf067fc99a117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:20:fe:95:47:60:ad:1a:1f:c3:22:f7:29:86:
2b:be:a6:20:d7:2a:e0:28:22:57:36:d9:41:e5:44:
9f:1c:1b:18:a1:32:6c:aa:5d:8c:a9:8b:e5:2c:ea:
fa:04:7c:94:5a:4f:35:5d:07:6c:f2:01:41:e7:ab:
8d:bb:8f:30:13:f7:b6:cf:bb:a0:af:45:e8:4c:42:
79:bc:6a:7c:e7:ed:b5:90:94:a1:09:a9:b9:e2:58:
a0:2c:43:94:22:59:8a:e1:58:b5:21:b6:d5:e7:ba:
8c:18:42:15:2e:b9:2a:9c:c4:55:b3:bc:0f:40:8c:
5d:0a:59:50:a6:27:8a:f3:71:9e:57:89:60:46:fe:
96:26:35:c3:00:ab:df:97:ca:6f:1b:c7:f0:8a:11:
80:53:56:59:f1:a3:3c:ff:fd:71:83:65:ce:99:b0:
2b:aa:78:15:c0:e9:11:3a:a4:53:fa:ea:e8:70:70:
fb:8c:36:9d:31:0c:d9:4b:10:bc:e5:58:0d:17:c9:
25:28:75:11:0a:e5:05:d3:31:4f:77:e3:c8:36:40:
56:b1:0a:33:b3:48:d0:48:fa:bc:80:18:96:58:d5:
80:ee:ae:d4:6b:48:b5:c3:e7:41:74:a2:12:2e:6f:
f2:47:76:06:de:23:34:31:33:b4:af:cd:43:87:36:
ef:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8A:5E:CF:25:21:95:71:85:81:35:6A:88:CD:F0:67:FC:99:A1:17
X509v3 Authority Key Identifier:
keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:49:a0:ba:bd:28:18:ef:c7:77:88:d2:c1:41:c8:77:4b:ce:
66:8b:fd:6a:35:ef:80:96:e3:84:dc:01:7a:c1:7a:df:a8:b1:
48:58:7f:7f:1f:03:5c:5b:70:c7:ba:f5:a5:5c:3c:78:46:92:
79:88:2b:1d:c1:44:4e:d3:78:cf:c2:ee:e5:61:ad:72:b0:f5:
49:b9:81:36:35:86:5c:38:2d:56:78:30:c3:f5:7c:34:13:fc:
9f:85:72:80:4c:44:95:ce:fa:4b:96:68:ea:51:7f:0a:fa:92:
f4:e3:84:bd:57:ca:ef:45:e0:29:c8:dd:e5:8a:a7:29:50:ee:
4c:1b:2d:f2:a6:34:c6:df:da:59:93:74:5b:30:94:30:ae:2e:
c7:06:04:f7:44:56:05:71:b9:18:5b:14:40:f6:4b:70:93:10:
6a:f1:6b:c4:02:9d:dd:fd:6f:4e:2c:c4:8d:fc:fa:63:38:aa:
94:a4:71:95:58:91:89:83:54:e0:9f:9c:a4:de:78:bf:d4:cd:
e2:f9:54:06:8d:bf:b8:cf:dc:68:9c:22:29:e6:dd:7c:9c:b5:
c6:72:95:30:19:cd:bc:3d:1e:9f:1f:d0:b8:df:dc:a5:13:8d:
89:43:f5:db:db:ae:0a:ba:0e:5a:64:78:09:78:10:5e:f2:dd:
eb:f4:d4:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2PXZhdgx+a7GMd8YXJPLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTk2MmIzYjE3ZWVmMDY5ZTNhYmEyMTI4OGJiMmM2NDIy
MWJmZWQwHhcNMjYwMzAyMDAwMDQ4WhcNMjYwMzAzMDAwMDQ4WjAzMTEwLwYDVQQD
Eyg3NDhhNWVjZjI1MjE5NTcxODU4MTM1NmE4OGNkZjA2N2ZjOTlhMTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzCD+lUdgrRofwyL3KYYrvqYg1yrg
KCJXNtlB5USfHBsYoTJsql2MqYvlLOr6BHyUWk81XQds8gFB56uNu48wE/e2z7ug
r0XoTEJ5vGp85+21kJShCam54ligLEOUIlmK4Vi1IbbV57qMGEIVLrkqnMRVs7wP
QIxdCllQpieK83GeV4lgRv6WJjXDAKvfl8pvG8fwihGAU1ZZ8aM8//1xg2XOmbAr
qngVwOkROqRT+urocHD7jDadMQzZSxC85VgNF8klKHURCuUF0zFPd+PINkBWsQoz
s0jQSPq8gBiWWNWA7q7Ua0i1w+dBdKISLm/yR3YG3iM0MTO0r81Dhzbv3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHSKXs8lIZVxhYE1aojN8Gf8maEXMB8GA1UdIwQY
MBaAFHypYrOxfu8Gnjq6ISiLssZCIb/tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktsaXM3Ri03d2FlT3JvaEtJdXl4a0lodi0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mMDE3ZGYtMGQwZi00YTM2LWFjMjUt
NDk2OGFhYWZjNTliLzEvZktsaXM3Ri03d2FlT3JvaEtJdXl4a0lodi0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9mMDE3ZGYtMGQwZi00YTM2LWFjMjUtNDk2OGFhYWZjNTli
LzEvZktsaXM3Ri03d2FlT3JvaEtJdXl4a0lodi0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApEmgur0o
GO/Hd4jSwUHId0vOZov9ajXvgJbjhNwBesF636ixSFh/fx8DXFtwx7r1pVw8eEaS
eYgrHcFETtN4z8Lu5WGtcrD1SbmBNjWGXDgtVngww/V8NBP8n4VygExElc76S5Zo
6lF/CvqS9OOEvVfK70XgKcjd5YqnKVDuTBst8qY0xt/aWZN0WzCUMK4uxwYE90RW
BXG5GFsUQPZLcJMQavFrxAKd3f1vTizEjfz6YziqlKRxlViRiYNU4J+cpN54v9TN
4vlUBo2/uM/caJwiKebdfJy1xnKVMBnNvD0enx/QuN/cpRONiUP129uuCroOWmR4
CXgQXvLd6/TUVA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:19:47 2026 by rpki-client