Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json)
Hash identifier: 48DtfxDYGAgq6v59wFXx/RJc6Do1Tgha2nQ/2PAWhwY=
Subject key identifier: ED:01:18:DC:52:38:61:E6:19:6D:EF:0F:49:E0:0F:45:B7:37:80:52
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 019D99995E7708C0DD7EAC99C862F9121D1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
Manifest number: 15D1
Signing time: Fri 17 Apr 2026 04:00:58 +0000
Manifest this update: Fri 17 Apr 2026 04:00:58 +0000
Manifest next update: Sat 18 Apr 2026 04:00:58 +0000
Files and hashes: 1: CAzUJBJl_S6fY4g8OpP_PRPQJAc.roa (hash: 6YZqZyeQI2OCFKYEz3xohlsoJMTAW7st+b+x7M/6aO8=)
2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: qAq+pYdzl70wPVoKC8CcSw49/lesRyX6gWu/FBW8bHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:5e:77:08:c0:dd:7e:ac:99:c8:62:f9:12:1d:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Apr 17 04:00:58 2026 GMT
Not After : Apr 18 04:00:58 2026 GMT
Subject: CN=ed0118dc523861e6196def0f49e00f45b7378052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3d:65:29:68:14:32:cf:ac:4f:d5:2c:15:de:
44:21:84:82:51:66:1b:dd:6c:cd:87:77:77:c4:df:
69:a1:0f:98:17:c1:9e:5e:1c:d8:dc:12:41:5a:c4:
8c:5e:5a:e7:67:52:2d:4f:95:5e:11:62:6d:47:5a:
dc:6f:73:67:ed:29:13:7f:f9:ee:79:c9:12:15:d0:
a2:09:f0:4c:f8:cd:85:5a:46:68:bc:9b:51:d3:50:
fb:4f:69:04:71:7d:9c:4e:eb:b1:80:1c:53:4a:a3:
7d:24:9b:0b:a1:06:4a:d4:e6:bd:51:e7:05:55:94:
57:6c:ac:d7:9d:5d:c9:34:86:ca:63:3e:af:06:a0:
0b:6d:e3:be:ce:54:6c:5d:37:39:1a:67:72:f1:2e:
66:e9:00:7c:e5:7c:bf:88:1c:76:e2:12:6e:f4:b2:
9b:68:71:79:13:59:ae:12:7d:8c:25:85:de:c8:c9:
71:93:fd:42:ce:11:50:0b:82:15:14:ba:e4:c5:c2:
e4:da:94:6b:70:51:c1:d2:4b:e1:30:e0:af:da:1a:
6f:af:0b:b0:7f:ea:29:21:03:65:ba:9c:82:14:01:
1a:96:fd:71:89:4a:34:20:69:bb:76:a2:0f:d4:51:
16:11:24:bf:7b:e4:75:a8:b1:aa:e6:08:6d:85:70:
98:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:01:18:DC:52:38:61:E6:19:6D:EF:0F:49:E0:0F:45:B7:37:80:52
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:77:df:29:59:d3:b8:bc:00:ca:2c:1a:34:d2:f0:24:25:45:
17:cf:98:e3:eb:8a:64:b5:c0:ea:84:8e:dd:1e:d1:ff:36:22:
fa:6e:f5:ed:4d:cf:b8:08:92:f1:fe:e5:51:19:0b:9c:b6:af:
e8:74:21:6b:15:45:7d:07:b0:f0:d9:19:44:b9:07:8d:d7:e8:
ef:c6:20:a4:cc:ee:2a:c4:4a:0a:d9:c2:65:1b:74:e9:c5:ac:
68:1c:dd:82:d9:fe:f2:dc:8d:42:ae:c7:64:75:86:d8:f3:78:
38:b2:cb:75:31:db:ad:de:5e:01:a2:78:82:c5:90:7c:d8:59:
ab:fa:e0:0d:b8:d6:7d:05:3a:5c:f3:c3:b8:bd:19:4c:f3:47:
4d:2b:49:b8:11:2f:f8:6d:a3:27:80:84:1d:0b:ec:ff:c7:14:
b4:36:c1:6d:a9:f5:18:99:4b:f4:5f:d2:92:49:dc:3e:81:72:
54:ab:42:80:33:c4:e2:3c:dd:9e:0c:c3:50:63:2a:ef:83:2c:
85:f1:14:20:2c:9d:f7:0d:6c:3a:15:46:e8:d9:e8:25:e0:b6:
67:3b:47:94:b3:8b:61:34:2a:b8:0b:36:dd:1f:d4:9e:c9:5c:
72:de:3e:d3:4f:72:13:63:3e:78:54:6d:fe:c6:fd:99:af:49:
68:79:40:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:08:18 2026 by rpki-client