Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
File: Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft (raw, json)
Hash identifier: KBkJ+Agwd0ocrMLaBzObNuIRxcuMXkS1SYUCK8/CD00=
Subject key identifier: E7:AA:B0:98:E3:64:EF:6D:2F:18:C9:8D:88:12:03:FF:0F:EB:64:BF
Authority key identifier: 16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
Certificate issuer: /CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Certificate serial: 019CAF47BFEEE873B59057E8A7562D2B9AA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
Manifest number: 0552
Signing time: Mon 02 Mar 2026 16:00:40 +0000
Manifest this update: Mon 02 Mar 2026 16:00:40 +0000
Manifest next update: Tue 03 Mar 2026 16:00:40 +0000
Files and hashes: 1: 9bJWHvsD-dqBntAB20zO9CBt_Wc.roa (hash: 0W6NRPv1Nxc5Zsqyro6dwCeLDZh0yMAr5QQPzv2LCsU=)
2: Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl (hash: CdB5Q1Jn1ISqpOUD6ILkF0aZo3e2f1YKTxd6etXR6QQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:47:bf:ee:e8:73:b5:90:57:e8:a7:56:2d:2b:9a:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165fad4109283b33b6f3ba53fae83a145d1934e2
Validity
Not Before: Mar 2 16:00:40 2026 GMT
Not After : Mar 3 16:00:40 2026 GMT
Subject: CN=e7aab098e364ef6d2f18c98d881203ff0feb64bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4b:ac:40:17:c1:4d:d1:1e:32:db:19:ff:98:
ab:58:24:6a:df:cb:4a:4d:88:1c:88:93:f4:e0:fd:
71:28:a4:67:3f:ca:28:f0:68:54:ef:a5:85:74:cf:
40:06:10:7a:02:10:14:93:27:26:75:b5:e4:50:1b:
25:9d:7b:80:b7:f5:3e:85:a3:0c:00:2a:b7:b8:16:
12:ba:81:cd:fd:69:7d:f8:99:40:02:19:ce:b7:c9:
1a:4f:e0:11:29:9e:0f:87:58:be:4d:10:ca:f1:e7:
eb:ea:c7:b9:c4:b9:5b:74:da:0c:d7:3b:b7:fd:85:
88:04:9c:9f:8d:91:b6:50:cf:27:6e:01:14:66:4e:
e3:94:4f:9f:bf:60:8d:b6:19:7b:7a:b5:08:22:97:
5b:ff:3b:55:72:5c:e3:d3:72:3f:8f:7f:a9:ba:e4:
37:8f:16:53:3e:db:3e:7d:cd:ef:37:7e:ef:c9:39:
49:ab:66:8f:10:0e:c8:bc:94:c0:94:41:f8:a9:29:
bc:1f:10:69:bc:f0:fd:74:fb:47:2d:42:28:66:cb:
99:43:48:12:8c:9b:22:ff:6a:22:b6:fa:4b:dd:8e:
60:79:97:07:f5:fb:cb:d9:47:cf:e6:82:34:8b:a2:
30:ae:13:15:48:d7:72:15:b2:a1:0a:79:ec:f9:70:
25:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AA:B0:98:E3:64:EF:6D:2F:18:C9:8D:88:12:03:FF:0F:EB:64:BF
X509v3 Authority Key Identifier:
keyid:16:5F:AD:41:09:28:3B:33:B6:F3:BA:53:FA:E8:3A:14:5D:19:34:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-tQQkoOzO287pT-ug6FF0ZNOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3b72c0-5de9-46a4-abd4-31b60311c315/1/Fl-tQQkoOzO287pT-ug6FF0ZNOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:8a:da:dd:40:f9:5b:f1:7d:cc:28:89:02:be:e0:d0:36:f9:
41:ee:bc:ed:2b:8d:b5:d8:38:cd:87:06:8a:5d:ba:ed:2a:c2:
70:c2:f5:a4:98:82:64:f9:9e:1e:50:dc:ac:40:eb:d1:bd:ae:
17:c6:f8:99:ed:3c:56:34:cc:44:e5:67:50:98:f2:6f:89:d0:
e8:38:31:ec:c7:cb:db:87:a2:82:ac:40:66:c1:62:7a:8c:32:
2c:3f:d9:65:07:49:c8:2f:0c:8a:64:23:53:73:4a:90:54:44:
0e:32:23:8a:87:5a:e6:9a:f2:a0:b6:4d:a7:51:4c:84:50:c3:
96:cd:eb:bc:74:7d:76:ba:2f:73:0d:40:14:a5:6f:0a:9b:86:
f9:78:2d:2c:1f:fd:2d:ed:42:c6:da:b0:27:36:bf:67:91:c4:
3b:7a:92:73:26:50:72:eb:60:66:aa:a2:ea:ae:15:e9:5e:0a:
62:b1:c4:a3:38:a1:17:b7:e7:78:53:e4:35:7b:be:49:3b:c8:
60:60:0d:58:a8:1a:fb:be:38:ac:3c:df:c5:6d:6c:78:fa:58:
3c:8d:9f:7c:1b:5b:c3:f1:e3:f3:8a:a0:23:c4:77:1b:0c:f8:
56:10:75:f0:53:d1:d2:6e:aa:69:c6:79:44:bc:77:3c:8c:d0:
2a:4b:ef:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:13:54 2026 by rpki-client