Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json)
Hash identifier: LYz9t1kPS48RfDBZl8dUKvLFFJXORDg8MD4tvk/E7NQ=
Subject key identifier: 54:9B:54:87:B6:AD:EB:FA:E7:E3:EB:24:CA:86:B0:0E:23:7F:48:54
Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Certificate serial: 019CAA213E0CE6647D393B15376547E0F4A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
Manifest number: 1555
Signing time: Sun 01 Mar 2026 16:00:31 +0000
Manifest this update: Sun 01 Mar 2026 16:00:31 +0000
Manifest next update: Mon 02 Mar 2026 16:00:31 +0000
Files and hashes: 1: CAzUJBJl_S6fY4g8OpP_PRPQJAc.roa (hash: 6YZqZyeQI2OCFKYEz3xohlsoJMTAW7st+b+x7M/6aO8=)
2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: olJJaFuEB6qTqFe1PN9vsazpUd8mXQRnStuxx0jOHEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:3e:0c:e6:64:7d:39:3b:15:37:65:47:e0:f4:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7
Validity
Not Before: Mar 1 16:00:31 2026 GMT
Not After : Mar 2 16:00:31 2026 GMT
Subject: CN=549b5487b6adebfae7e3eb24ca86b00e237f4854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:69:06:22:9d:bb:eb:a1:55:8d:d6:f2:34:f6:
26:ff:9f:10:76:fe:d5:d2:b1:19:93:a7:43:e9:5f:
8f:b5:42:74:8d:32:f9:f1:52:a9:c0:fc:7c:9f:68:
c5:f4:b5:d7:e2:9c:15:b5:7a:9a:dd:65:46:df:62:
91:b1:61:ed:2d:da:9a:05:91:e7:c6:f2:c8:68:08:
88:2a:fe:d5:1a:40:a9:52:7c:00:5c:d2:4a:72:11:
2b:8f:8f:de:11:c9:c1:09:c0:07:fa:12:a4:10:b6:
d0:78:20:eb:f3:59:32:6a:78:47:c9:c0:86:05:d1:
38:05:c9:0c:19:e6:ac:42:51:7e:21:35:e4:24:54:
c3:1c:bc:f9:b7:2d:c4:eb:3a:dc:6d:78:35:1c:5c:
a4:d4:34:04:47:b0:42:e4:18:ab:32:28:d5:65:2c:
0c:d9:26:fb:61:eb:7a:ad:ee:77:8d:17:f2:f7:59:
18:77:14:fd:b5:52:7f:f8:55:80:75:48:08:f9:62:
d5:f1:24:d1:5f:66:88:ea:63:89:2f:53:af:96:e3:
c2:6b:3f:fe:67:50:0c:20:a4:e0:a3:f3:ab:e8:91:
30:e3:8b:17:68:41:58:10:c5:23:05:a8:14:91:51:
74:ef:5e:db:09:e3:df:7c:38:b6:d4:2a:b5:83:bd:
ec:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9B:54:87:B6:AD:EB:FA:E7:E3:EB:24:CA:86:B0:0E:23:7F:48:54
X509v3 Authority Key Identifier:
keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:9e:32:4b:2f:40:e6:4c:84:88:19:48:29:67:4e:10:6e:dc:
7e:23:32:32:42:d6:45:5f:fa:39:a6:ed:55:2f:3b:2d:77:46:
af:9d:50:c8:d8:3f:a8:f4:5f:e4:06:0f:78:3a:90:e6:56:f0:
a4:74:30:9a:22:b8:87:c4:7a:7b:6f:17:ab:02:5a:9c:0f:07:
25:2b:97:bc:8c:77:a4:7f:fc:27:f4:42:9e:7a:8f:e8:c8:02:
97:a2:58:fe:a1:27:fa:7e:05:c3:2b:fa:0a:d9:87:69:9b:9e:
00:c4:e1:1f:8f:f1:7e:7f:bb:e1:19:53:5b:10:df:9c:40:a3:
eb:eb:97:4e:06:f3:52:9f:35:dd:4a:52:49:58:fa:5d:26:91:
8b:59:c0:b9:c6:ac:38:b6:e4:d4:aa:a3:3e:0b:3a:fa:b8:0f:
ad:15:6b:55:93:4d:f6:37:99:eb:23:0d:a3:d4:49:0e:76:48:
ad:c3:73:90:7e:94:27:14:ec:8a:21:bc:19:98:4f:c3:b1:1d:
bd:a6:4d:35:ab:28:ad:f3:f1:56:d5:7e:83:04:d6:bd:09:0c:
e9:41:ed:7b:7b:c3:f9:fe:a7:27:0e:da:3f:1b:16:72:6b:3f:
93:2b:1b:e3:e3:4a:96:ba:cc:36:27:4c:0f:cc:8c:2c:fc:0f:
05:74:3f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:13:08 2026 by rpki-client