Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: pY+J5bJaz4rcal1XyrbUP/0pL0Y8V+TtnCYF0V2n/8M=
Subject key identifier: E9:5D:B2:60:06:4C:47:88:6B:FF:98:49:D4:8D:07:AC:BE:C5:B0:57
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 019CAC46D88B9DFD7EFAEA97F7E6D8BF255C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 07EC
Signing time: Mon 02 Mar 2026 02:00:49 +0000
Manifest this update: Mon 02 Mar 2026 02:00:49 +0000
Manifest next update: Tue 03 Mar 2026 02:00:49 +0000
Files and hashes: 1: Xip4xkGmyDCpD1V1TAhyG7oBSoo.roa (hash: JS7Y9TGnxDiomHGfAPVHy5QyfD9ZOLvpsEHgj2zFlNg=)
2: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: Wwd1+RnW8f8dBuWvK0wL7sTCXwHGAmotcd+UYEF8VGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:d8:8b:9d:fd:7e:fa:ea:97:f7:e6:d8:bf:25:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Mar 2 02:00:49 2026 GMT
Not After : Mar 3 02:00:49 2026 GMT
Subject: CN=e95db260064c47886bff9849d48d07acbec5b057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:95:1b:96:62:a6:71:c1:6b:87:74:b7:2c:4f:
7b:32:13:58:03:97:0a:a9:21:8e:eb:41:ef:57:07:
e8:4b:a9:40:80:b7:3d:ce:42:8f:c3:76:11:58:53:
0e:72:43:05:a4:bb:39:24:ac:da:0a:b6:e1:c3:40:
3c:e7:40:76:d3:d7:08:22:77:5b:94:99:58:f1:6e:
65:94:50:fc:99:14:2a:01:a9:35:2e:f2:b9:01:88:
7e:d4:4e:0d:76:fa:31:b6:d8:95:8a:a9:a7:1e:39:
44:db:09:ab:13:1b:d9:c4:46:c8:e8:32:67:ba:49:
c6:8a:c2:98:e3:79:b6:34:71:7a:60:30:97:b1:b7:
67:3f:d4:b2:a3:7f:bc:58:90:4c:71:0a:2b:84:b5:
83:dc:41:bb:30:f2:a0:56:c8:36:69:79:fa:10:82:
da:01:71:e9:b2:bb:1b:8a:41:95:ca:b8:89:c4:47:
93:82:b3:28:a1:3d:36:ac:30:5b:71:14:23:1f:d6:
7d:6d:7e:26:9d:23:f8:90:c7:52:0c:46:80:e1:5a:
8d:60:5d:0e:2a:6e:1a:e0:e9:84:09:41:12:86:80:
d4:65:9a:2f:5b:24:01:a6:29:de:2e:7b:06:b3:e0:
02:ac:73:c6:08:b0:74:1c:ee:ae:7c:e1:26:f0:54:
d8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5D:B2:60:06:4C:47:88:6B:FF:98:49:D4:8D:07:AC:BE:C5:B0:57
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:2b:09:25:00:04:80:7f:ac:9b:69:97:01:7e:de:8f:6a:cf:
b2:90:ff:10:db:61:79:5d:d1:31:4c:73:c2:a7:43:16:3f:9a:
fe:04:4f:fd:a7:34:16:5c:3c:a7:39:a7:aa:04:1e:c0:b8:08:
c3:c5:7c:30:ff:43:5b:37:9c:21:76:92:bb:6d:af:ab:b1:cf:
e3:64:ce:d9:f8:13:32:bd:cf:ea:50:cd:eb:2e:f5:2c:48:e4:
1b:36:a6:40:6d:ac:fb:c4:d5:67:a0:6c:2a:f6:c8:da:f4:97:
7d:d8:b7:10:9e:91:2f:4c:54:69:05:48:7c:77:11:5b:cf:c1:
09:eb:94:5d:c2:50:4a:88:d6:4f:92:1b:bb:a2:87:e6:47:c3:
6f:67:8d:b7:52:29:cf:a2:70:2f:7b:7e:36:c3:f1:0d:23:7c:
d2:f5:5d:24:87:f3:97:df:f3:df:2d:ef:54:5d:68:6f:07:38:
48:08:ea:93:7b:da:f2:54:78:64:d7:4c:59:52:8b:29:c6:8d:
f3:4f:2b:32:3f:c9:74:20:15:5e:d7:b5:a6:b2:09:b6:7a:39:
8f:30:df:7b:00:de:85:30:e6:bc:86:9d:65:68:79:ff:6b:8e:
86:51:d2:fd:ae:4b:40:22:9d:a8:7c:63:bd:71:c7:10:73:8f:
3d:0b:8c:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysRtiLnf1++uqX9+bYvyVcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2
NmMxNGIwHhcNMjYwMzAyMDIwMDQ5WhcNMjYwMzAzMDIwMDQ5WjAzMTEwLwYDVQQD
EyhlOTVkYjI2MDA2NGM0Nzg4NmJmZjk4NDlkNDhkMDdhY2JlYzViMDU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZUblmKmccFrh3S3LE97MhNYA5cK
qSGO60HvVwfoS6lAgLc9zkKPw3YRWFMOckMFpLs5JKzaCrbhw0A850B209cIIndb
lJlY8W5llFD8mRQqAak1LvK5AYh+1E4NdvoxttiViqmnHjlE2wmrExvZxEbI6DJn
uknGisKY43m2NHF6YDCXsbdnP9Syo3+8WJBMcQorhLWD3EG7MPKgVsg2aXn6EILa
AXHpsrsbikGVyriJxEeTgrMooT02rDBbcRQjH9Z9bX4mnSP4kMdSDEaA4VqNYF0O
Km4a4OmECUEShoDUZZovWyQBpineLnsGs+ACrHPGCLB0HO6ufOEm8FTY1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOldsmAGTEeIa/+YSdSNB6y+xbBXMB8GA1UdIwQY
MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt
NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx
LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWysJJQAE
gH+sm2mXAX7ej2rPspD/ENtheV3RMUxzwqdDFj+a/gRP/ac0Flw8pzmnqgQewLgI
w8V8MP9DWzecIXaSu22vq7HP42TO2fgTMr3P6lDN6y71LEjkGzamQG2s+8TVZ6Bs
KvbI2vSXfdi3EJ6RL0xUaQVIfHcRW8/BCeuUXcJQSojWT5Ibu6KH5kfDb2eNt1Ip
z6JwL3t+NsPxDSN80vVdJIfzl9/z3y3vVF1obwc4SAjqk3va8lR4ZNdMWVKLKcaN
808rMj/JdCAVXte1prIJtno5jzDfewDehTDmvIadZWh5/2uOhlHS/a5LQCKdqHxj
vXHHEHOPPQuMRw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:41:03 2026 by rpki-client