Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
File: Fzn5ZM1In80lALN2gdWEedVTyKs.mft (raw, json)
Hash identifier: WGjs9c/40uusC+1zzO0I5VLpObqaDpzUebBDbV+GlF4=
Subject key identifier: 29:13:50:C2:C9:7E:91:6C:08:13:F1:83:CC:64:46:C0:EE:F8:16:AF
Authority key identifier: 17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
Certificate issuer: /CN=1739f964cd489fcd2500b37681d58479d553c8ab
Certificate serial: 019D98506CFDDF7CAD4688F677B8F361B457
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
Manifest number: 135F
Signing time: Thu 16 Apr 2026 22:01:40 +0000
Manifest this update: Thu 16 Apr 2026 22:01:40 +0000
Manifest next update: Fri 17 Apr 2026 22:01:40 +0000
Files and hashes: 1: Fzn5ZM1In80lALN2gdWEedVTyKs.crl (hash: qd6yNLZFtfgC5eAQyVYumGNDDAPIPHG28Qo2e2E3FII=)
2: gYLvy5DjMihQxbK3CpNYolCJCbs.roa (hash: nk0QPIHhBJ+tkBFjYJBMoGr2Na3j2yW9OuuUU/oPTZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:6c:fd:df:7c:ad:46:88:f6:77:b8:f3:61:b4:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1739f964cd489fcd2500b37681d58479d553c8ab
Validity
Not Before: Apr 16 22:01:40 2026 GMT
Not After : Apr 17 22:01:40 2026 GMT
Subject: CN=291350c2c97e916c0813f183cc6446c0eef816af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:c6:54:91:0a:d2:4f:80:b2:3d:b1:42:ae:65:
13:74:27:b6:c4:90:c1:e8:e0:32:7c:66:9c:d3:fc:
1d:8a:8b:50:6c:8a:fc:eb:3f:27:56:74:ca:2a:2b:
7c:76:19:3f:c6:79:00:d0:d9:7f:2e:b2:0b:53:dd:
97:a2:31:ef:4a:9f:52:31:78:b2:f4:aa:31:b4:e0:
de:f3:d0:fd:f5:4d:c6:6b:6b:08:22:c2:24:cc:62:
28:9e:a3:13:89:c8:7e:c4:9e:65:97:34:d7:05:cc:
38:5d:2c:34:81:cb:88:64:06:0c:01:4a:dc:0b:fe:
62:03:54:b0:24:6f:66:1e:76:18:e8:ed:f4:2f:d6:
e4:3e:25:fa:86:f0:93:94:ed:bf:50:31:6f:e3:55:
a7:d6:10:f6:f9:05:81:d3:65:5b:af:e7:5a:38:17:
1b:ff:e8:42:a3:a5:1d:e6:ae:0b:e6:ed:21:e1:43:
82:bf:d9:7f:c0:02:49:f3:de:21:ed:46:44:47:27:
9d:13:91:ba:83:1c:c1:9a:da:59:52:da:28:3d:4a:
34:16:7c:28:76:f0:36:93:a2:14:0a:79:c0:3f:85:
78:44:7f:8c:82:c6:d2:07:65:21:b3:c6:00:33:0e:
02:67:db:26:20:90:da:5e:d3:ac:eb:58:7b:1a:b7:
27:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:13:50:C2:C9:7E:91:6C:08:13:F1:83:CC:64:46:C0:EE:F8:16:AF
X509v3 Authority Key Identifier:
keyid:17:39:F9:64:CD:48:9F:CD:25:00:B3:76:81:D5:84:79:D5:53:C8:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fzn5ZM1In80lALN2gdWEedVTyKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/394455-64b6-4e10-a792-72d1ffe25bd3/1/Fzn5ZM1In80lALN2gdWEedVTyKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:36:16:a3:36:30:37:69:cf:5d:bd:55:6e:1c:a7:dd:3e:5f:
b5:d4:76:34:c5:ba:75:76:b3:15:d7:b9:aa:a1:da:e1:20:a3:
b1:38:7c:83:9b:21:5a:d2:d1:0b:23:06:69:52:f2:80:8a:00:
ab:b0:3b:e7:e9:33:58:d4:c7:d8:05:8b:00:ca:dd:f7:35:05:
ae:f0:90:09:63:41:34:e0:57:6f:90:3b:fe:7f:b1:98:3b:67:
c7:a4:5d:7b:5a:eb:4d:00:aa:7a:91:2a:04:21:bf:35:39:58:
94:37:4e:bc:39:87:9a:06:85:a5:b7:52:a6:ae:bc:7c:33:5c:
24:60:36:75:a8:58:ec:55:66:bc:51:67:01:06:1d:ff:b6:70:
6f:d1:d4:81:10:30:b3:34:48:c2:a9:70:04:06:5c:eb:11:96:
f6:60:86:3b:ce:19:a4:01:a9:f5:a4:16:2f:4a:1d:52:d6:92:
75:77:ba:ea:21:f0:f8:ce:a9:6a:25:af:f3:31:20:f5:53:0c:
07:d2:c4:bc:39:38:01:c6:ff:a7:85:29:5a:26:28:84:d9:57:
d6:59:4a:71:21:a1:ff:f8:0e:d6:34:57:57:f7:3c:21:84:72:
ac:a7:e5:b0:32:59:a1:4c:46:bf:6a:83:ba:74:c2:73:ff:71:
1e:55:a0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:56:25 2026 by rpki-client