Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
File: Fzn5ZM1In80lALN2gdWEedVTyKs.mft (raw, json)
Hash identifier: gxWdVT0xaKpnQvhoq6fygccOgP4WCwnCdWQoBn3UTQw=
Subject key identifier: 5B:99:F6:98:C4:D3:5B:50:45:56:88:60:14:83:9C:2C:F5:97:23:64
Authority key identifier: 17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
Certificate issuer: /CN=1739f964cd489fcd2500b37681d58479d553c8ab
Certificate serial: 019CACB4DF83E8FF568F0B698663B2B4A70D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
Manifest number: 12E5
Signing time: Mon 02 Mar 2026 04:01:00 +0000
Manifest this update: Mon 02 Mar 2026 04:01:00 +0000
Manifest next update: Tue 03 Mar 2026 04:01:00 +0000
Files and hashes: 1: Fzn5ZM1In80lALN2gdWEedVTyKs.crl (hash: 1AePQbZgtxU3WtxKPK1hZcw/0nx9Ke5LcsiBXvGa0Fk=)
2: gYLvy5DjMihQxbK3CpNYolCJCbs.roa (hash: nk0QPIHhBJ+tkBFjYJBMoGr2Na3j2yW9OuuUU/oPTZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:df:83:e8:ff:56:8f:0b:69:86:63:b2:b4:a7:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1739f964cd489fcd2500b37681d58479d553c8ab
Validity
Not Before: Mar 2 04:01:00 2026 GMT
Not After : Mar 3 04:01:00 2026 GMT
Subject: CN=5b99f698c4d35b504556886014839c2cf5972364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:db:46:15:14:25:51:34:44:a4:2a:c9:00:12:
98:89:fd:cb:00:6c:ab:1a:41:0d:0e:ac:a4:dc:e7:
96:8c:24:a1:ab:82:82:76:10:1d:07:e0:c7:96:ad:
bc:bc:e0:4e:64:d1:b1:25:b5:1e:aa:6a:c0:bf:2a:
eb:1a:39:63:70:41:78:61:8c:6b:60:8f:e9:45:7e:
f2:c6:93:b6:23:bd:78:0f:92:e1:75:3b:8b:3a:c7:
0a:c3:1f:b2:5d:7b:62:a3:c5:8f:e6:7d:aa:5a:bd:
0d:83:a5:d7:51:b9:d1:cb:75:68:d4:4d:59:14:c0:
7d:ba:dc:5a:06:1e:e5:22:b0:c2:af:57:49:54:4e:
dd:1d:54:46:4b:45:e5:8f:48:25:5d:63:1d:dc:51:
8d:97:42:0c:14:87:61:12:b0:6b:ab:2b:6f:ba:be:
a5:60:ca:fc:b3:24:5b:37:f6:f9:24:06:6b:16:d7:
cc:1f:8c:11:50:1f:7d:b0:5d:0f:42:24:67:7f:6e:
79:fa:0f:00:96:de:27:b1:99:d2:d3:d1:85:e8:cf:
a1:6a:ad:f9:27:c0:95:4b:5f:19:9d:2f:ef:2c:12:
6d:0d:90:00:cb:f8:c2:70:23:ac:32:7c:b2:2b:93:
e2:d8:65:01:3c:04:f1:09:b9:b9:97:ee:fb:16:cc:
46:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:99:F6:98:C4:D3:5B:50:45:56:88:60:14:83:9C:2C:F5:97:23:64
X509v3 Authority Key Identifier:
keyid:17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:40:94:b1:62:15:37:40:e9:c0:41:9b:db:99:ac:a1:97:aa:
a8:ec:b8:69:73:ad:22:3a:59:75:cf:3b:32:48:af:1c:2a:11:
63:05:c9:b6:54:b4:95:91:71:31:14:99:67:36:92:d6:d3:c9:
7f:26:0f:0a:fd:b7:a6:eb:3b:7d:19:c7:54:9f:00:e6:89:56:
c7:7d:11:a6:31:e4:46:52:d3:7a:f6:1f:bb:09:b9:7b:fc:3e:
c5:a1:87:a0:a5:92:5f:f1:f7:85:dc:fb:31:55:ea:82:37:14:
4b:25:24:18:17:5a:4a:38:55:b2:fd:11:21:d4:43:6a:a1:84:
4b:d3:9c:a5:8e:af:00:83:20:6b:af:4d:b5:80:1a:10:6b:1c:
62:e6:b3:ea:14:fe:ad:6d:6a:c0:47:6d:27:83:56:1a:04:b0:
37:56:4c:b9:c3:07:55:cf:ba:58:02:f3:8b:47:81:95:c5:62:
04:f3:87:1b:9e:c2:77:29:a6:4c:e5:46:7a:c1:07:c5:d6:52:
97:af:67:39:52:d3:da:db:0a:a0:92:70:26:50:a9:48:4c:6c:
cd:8d:98:51:a0:e3:63:ae:01:03:89:d8:24:25:d4:5b:b6:22:
cf:8e:99:81:04:d5:4b:ab:86:ba:04:39:59:fd:4d:ef:76:48:
85:fd:34:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:36:01 2026 by rpki-client