Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: 9nIut173hKf0fUb5IQSu2MyAqbAaWSAKaeAQiIWRwDE=
Subject key identifier: 13:35:0E:81:70:AB:78:32:81:A0:80:14:B2:EF:0C:AF:02:FF:B0:61
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 019D99D08505EF648AA7F08CE0CA26326AD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 086C
Signing time: Fri 17 Apr 2026 05:01:12 +0000
Manifest this update: Fri 17 Apr 2026 05:01:12 +0000
Manifest next update: Sat 18 Apr 2026 05:01:12 +0000
Files and hashes: 1: 0yr8aXhOgym_087pCWjaXD2xwbo.roa (hash: ibUboXeSVZSey6KFBr4VW/S44K1bXt0+EVOA97v+hoA=)
2: IbaW7xjndY6EP4RVlLBG-ZEnYYo.roa (hash: ysgDo6QmZenYrn+i6Pxn3RI9PAFzW45gWtKEwSVQWB4=)
3: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: px7iVTLi5Ag+jsZfVOAfJHx0qltN5H8E7rLD02xOmYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:85:05:ef:64:8a:a7:f0:8c:e0:ca:26:32:6a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Apr 17 05:01:12 2026 GMT
Not After : Apr 18 05:01:12 2026 GMT
Subject: CN=13350e8170ab783281a08014b2ef0caf02ffb061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f6:67:25:b6:0b:c5:ac:a5:6b:6e:81:9c:8b:
2f:38:43:f1:e0:9e:81:ed:25:2e:f0:f4:e0:b9:9a:
a7:ed:ac:6d:5a:e4:84:24:9f:d4:12:ac:83:02:50:
85:66:fa:a1:28:d6:8d:d1:76:35:0c:f1:46:44:eb:
b5:15:bf:a3:59:05:ad:61:5c:71:d1:39:02:b9:41:
24:da:99:90:63:cb:76:23:41:87:ea:39:d3:6e:c8:
a7:9d:fd:ef:fb:88:76:c4:55:0f:1a:4a:ad:51:5c:
8f:bf:be:e5:06:ea:65:d1:a2:a7:94:59:a1:bf:bc:
ac:28:8a:72:90:9d:d1:3c:d5:b4:55:b3:7f:91:02:
3c:68:30:fe:fb:44:8a:24:0d:a5:c3:49:ca:45:80:
0e:b5:a1:69:d1:de:90:b4:55:c3:58:95:e7:c8:ca:
a1:7f:78:c9:4c:49:77:45:13:40:31:ac:73:b4:3a:
51:e7:9a:fa:ba:37:6a:82:6b:a2:72:79:b7:de:b2:
98:85:8e:d4:ab:f4:04:1e:c0:21:8d:86:4d:1b:44:
9b:f7:81:77:0a:f8:00:b0:03:17:ee:2c:2d:84:38:
17:a3:34:31:f2:6f:d7:f5:bc:e3:f6:30:c7:6c:f8:
93:00:f1:2c:d4:4f:ac:f0:51:d9:67:b0:cb:a7:ce:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:35:0E:81:70:AB:78:32:81:A0:80:14:B2:EF:0C:AF:02:FF:B0:61
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a8:2a:c3:27:df:54:5c:83:5a:79:a4:26:83:dd:02:e2:78:
fd:e7:69:ac:78:c2:80:f3:47:96:b4:b3:e2:d3:3b:44:df:a1:
90:af:93:bb:8b:fb:41:d2:13:92:c3:53:94:c3:14:4f:55:e8:
3c:bf:37:8b:2e:36:4c:df:3f:b6:12:c7:38:5e:87:ae:fa:9d:
be:41:5d:fc:5a:cb:a4:03:f9:0d:eb:41:44:6f:8f:48:56:8e:
78:68:14:60:fe:49:d5:f2:7b:5d:2f:9b:76:f6:5b:f5:37:4d:
97:15:a5:3a:45:c6:74:57:7b:a1:ae:2d:d2:f3:0d:92:3c:be:
c1:93:77:18:e9:7e:d1:ce:13:e6:f1:93:9e:87:a7:88:f9:bb:
e7:a4:c9:df:92:ce:c8:5f:f3:d0:94:dc:5b:43:d4:af:81:15:
20:97:6b:15:dd:d0:2d:42:a7:05:ee:da:11:d8:81:e7:da:2f:
a6:19:2a:84:2e:79:72:b4:83:ec:e9:8c:c3:28:38:47:11:73:
bb:9d:2c:bb:31:76:69:3b:f1:a3:b8:b9:51:38:53:35:11:91:
b3:56:25:6d:36:91:bb:36:6b:87:7b:9f:ff:ea:22:f7:ff:6f:
1d:85:0a:61:09:d5:b8:ae:b4:f7:c9:a2:c5:59:7d:0c:a1:bb:
42:c3:f1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:01:09 2026 by rpki-client