Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: KMG7B37DVDFx89gd4RO2zR2H419qcBeE1IEBTj7UNDw=
Subject key identifier: 2C:62:AC:BF:E8:A3:A9:08:2B:FE:77:37:1A:8B:21:EF:3A:E9:7E:00
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 019EC14967853F6D7191D8AA3C0D883AE0AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 0905
Signing time: Sat 13 Jun 2026 14:01:13 +0000
Manifest this update: Sat 13 Jun 2026 14:01:13 +0000
Manifest next update: Sun 14 Jun 2026 14:01:13 +0000
Files and hashes: 1: 0yr8aXhOgym_087pCWjaXD2xwbo.roa (hash: ibUboXeSVZSey6KFBr4VW/S44K1bXt0+EVOA97v+hoA=)
2: IbaW7xjndY6EP4RVlLBG-ZEnYYo.roa (hash: ysgDo6QmZenYrn+i6Pxn3RI9PAFzW45gWtKEwSVQWB4=)
3: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: TBws92IdYDirL+u5jpEUtejikM7bzD1WTh+jlaAh2gE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:67:85:3f:6d:71:91:d8:aa:3c:0d:88:3a:e0:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Jun 13 14:01:13 2026 GMT
Not After : Jun 14 14:01:13 2026 GMT
Subject: CN=2c62acbfe8a3a9082bfe77371a8b21ef3ae97e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:33:8b:94:14:49:bd:16:48:32:88:03:4e:88:
56:87:49:47:8d:0a:50:25:99:50:d5:90:f0:47:f6:
e7:bc:c6:ca:9f:21:48:7a:05:f3:ff:72:81:a0:b8:
85:69:2e:7c:79:67:ba:ac:35:c4:de:50:f9:99:ac:
49:03:cc:98:59:17:f5:c3:81:25:c7:09:9b:59:db:
e3:af:c1:00:d9:f2:b5:3b:41:3a:dc:ed:59:31:8d:
bd:a1:4b:36:91:36:84:97:88:ac:83:06:86:1a:69:
82:b8:bf:2a:2e:25:41:00:37:6a:92:c1:f3:77:f5:
d6:1d:87:53:62:b2:3b:ab:3a:79:63:ae:f9:6a:61:
be:e0:6a:5c:00:f3:6a:5c:c3:fb:2e:f9:93:8c:60:
f2:73:d6:a9:5f:d3:22:b3:08:73:1a:d2:06:87:47:
f1:53:c3:16:17:ad:e7:4d:ff:b3:35:e3:ff:42:e6:
4a:59:6b:14:3a:47:ec:72:a8:27:61:85:bc:60:dd:
db:cc:e8:e6:4f:25:2d:53:3c:3f:c3:fb:85:80:2e:
87:92:ba:fe:68:70:79:02:63:24:e6:a6:e2:8b:59:
28:8c:98:43:02:bc:86:22:2b:de:4e:fc:be:f2:b7:
2e:6f:7a:2e:f4:35:14:06:6c:20:5d:4b:a8:90:e4:
ab:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:62:AC:BF:E8:A3:A9:08:2B:FE:77:37:1A:8B:21:EF:3A:E9:7E:00
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:4a:94:4d:2f:3d:56:2b:35:82:ec:11:bd:2f:28:60:64:28:
9d:1c:3d:2a:7e:7f:66:7f:8a:ef:a6:4f:c9:af:a9:b6:b7:76:
67:f7:47:6d:cb:db:92:12:8a:bb:df:8d:0f:7f:c0:7f:a1:04:
2d:12:93:57:5b:17:7f:e4:ab:10:4d:fd:4c:7b:e7:5c:5e:d8:
d1:83:e2:65:44:7b:71:1c:1c:e6:c4:dd:e6:be:54:2f:62:3b:
53:db:99:88:f6:18:56:39:7e:74:9e:85:16:f6:16:c0:c0:24:
21:a0:76:b5:93:89:3b:14:4e:1e:8f:63:df:f0:8b:cf:d4:ab:
d2:26:96:01:a5:a1:ad:b9:56:d8:1e:25:8c:e7:0b:8e:11:af:
a8:bf:a0:37:63:00:f4:0c:cb:34:59:4b:b5:32:02:09:f5:73:
78:92:c4:1d:86:43:83:34:42:c4:29:66:32:48:e2:11:ec:1a:
a4:e8:ac:4c:2d:e8:b5:ce:8c:d7:61:b1:de:77:8b:84:22:b0:
42:93:95:eb:63:22:0f:ac:dd:b5:01:f3:71:ab:f6:4c:b3:55:
13:55:29:77:2e:af:08:1f:5c:62:fd:19:15:8c:10:21:51:0e:
3b:12:ff:bb:8c:7c:58:eb:59:a8:e9:ee:29:4b:a0:62:5b:92:
f1:5e:87:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7BSWeFP21xkdiqPA2IOuCvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2
NmMxNGIwHhcNMjYwNjEzMTQwMTEzWhcNMjYwNjE0MTQwMTEzWjAzMTEwLwYDVQQD
EygyYzYyYWNiZmU4YTNhOTA4MmJmZTc3MzcxYThiMjFlZjNhZTk3ZTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzOLlBRJvRZIMogDTohWh0lHjQpQ
JZlQ1ZDwR/bnvMbKnyFIegXz/3KBoLiFaS58eWe6rDXE3lD5maxJA8yYWRf1w4El
xwmbWdvjr8EA2fK1O0E63O1ZMY29oUs2kTaEl4isgwaGGmmCuL8qLiVBADdqksHz
d/XWHYdTYrI7qzp5Y675amG+4GpcAPNqXMP7LvmTjGDyc9apX9MiswhzGtIGh0fx
U8MWF63nTf+zNeP/QuZKWWsUOkfscqgnYYW8YN3bzOjmTyUtUzw/w/uFgC6Hkrr+
aHB5AmMk5qbii1kojJhDAryGIiveTvy+8rcub3ou9DUUBmwgXUuokOSrLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCxirL/oo6kIK/53NxqLIe866X4AMB8GA1UdIwQY
MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt
NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx
LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUUqUTS89
Vis1guwRvS8oYGQonRw9Kn5/Zn+K76ZPya+ptrd2Z/dHbcvbkhKKu9+ND3/Af6EE
LRKTV1sXf+SrEE39THvnXF7Y0YPiZUR7cRwc5sTd5r5UL2I7U9uZiPYYVjl+dJ6F
FvYWwMAkIaB2tZOJOxROHo9j3/CLz9Sr0iaWAaWhrblW2B4ljOcLjhGvqL+gN2MA
9AzLNFlLtTICCfVzeJLEHYZDgzRCxClmMkjiEewapOisTC3otc6M12Gx3neLhCKw
QpOV62MiD6zdtQHzcav2TLNVE1Updy6vCB9cYv0ZFYwQIVEOOxL/u4x8WOtZqOnu
KUugYluS8V6Hlw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 22:08:45 2026 by rpki-client