Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: lpgUA7IhsrflqZQYzrzwf7tfYs1sVV/cmZEg723mRBQ=
Subject key identifier: 1D:4C:DE:AE:65:BE:7D:0C:F1:05:87:F9:DD:51:4A:5C:C1:60:CC:DA
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019D9B8768A95F087A92D956087B183939AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 0288
Signing time: Fri 17 Apr 2026 13:00:35 +0000
Manifest this update: Fri 17 Apr 2026 13:00:35 +0000
Manifest next update: Sat 18 Apr 2026 13:00:35 +0000
Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=)
2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: B6d7/8VA/oDXTdO5DnPMiSl1L3SwAE2HEXrmi1fIxzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:68:a9:5f:08:7a:92:d9:56:08:7b:18:39:39:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Apr 17 13:00:35 2026 GMT
Not After : Apr 18 13:00:35 2026 GMT
Subject: CN=1d4cdeae65be7d0cf10587f9dd514a5cc160ccda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6d:1c:67:93:59:56:6c:86:15:3c:23:94:52:
1e:d7:38:35:62:99:f8:05:b0:c5:55:fd:8a:b9:3a:
51:3c:20:c3:42:fe:db:39:90:34:c2:6f:16:2d:93:
d0:44:4b:d9:40:e9:84:c9:44:4e:f1:3b:c0:7e:7a:
33:3e:6a:66:14:42:4e:cd:28:b9:c9:bf:39:08:5c:
6c:be:a7:43:48:39:1a:fe:ae:5a:6e:bc:50:cc:82:
33:46:5d:9b:28:8d:ee:69:d9:38:64:87:7d:fe:4f:
84:8e:8b:0d:09:37:2b:dd:3a:3b:2c:a2:d0:a3:d5:
ff:2c:9a:82:37:d6:93:d6:dc:c0:34:cc:3e:ba:ff:
76:be:cd:18:1b:1a:5c:d9:40:c9:4b:62:38:24:c3:
27:14:df:f4:03:32:a6:fe:fd:2a:ce:ed:9b:ea:da:
fe:0c:a4:05:33:b6:8a:a1:c9:9f:55:36:fa:21:c9:
90:43:d9:3a:34:10:58:3d:3c:0f:43:d3:2c:1e:3a:
b2:2a:a7:8c:ee:76:73:f3:9c:ba:fc:1a:1d:48:18:
5b:eb:ab:2e:1a:fc:f3:d6:ae:3c:35:6c:2b:c4:1b:
5f:ab:95:9c:24:9a:8e:d2:6a:3a:34:31:18:f0:ff:
8f:6e:5e:13:50:42:fd:57:ba:74:0c:47:29:4d:fc:
19:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4C:DE:AE:65:BE:7D:0C:F1:05:87:F9:DD:51:4A:5C:C1:60:CC:DA
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:d9:89:71:a5:9a:48:cc:70:f2:98:07:d6:33:8a:1d:ea:dc:
e8:be:79:63:aa:d6:de:32:95:ae:9f:ff:f8:6b:a6:08:a8:f6:
7e:a7:3a:92:ed:43:4d:02:6d:2f:5b:46:f2:48:8e:df:10:a9:
59:d2:e9:04:d0:14:a0:d6:fa:d4:26:e4:9a:03:28:0f:fe:db:
f4:15:8c:bd:6b:62:bc:39:a9:7d:0a:07:0d:0f:12:7e:11:2e:
0e:0d:6d:b5:65:a4:41:41:cf:71:ad:89:f3:81:d0:7f:df:70:
f1:e9:4d:75:24:ed:98:b0:0a:33:43:6b:28:bf:43:f7:a5:a4:
b4:78:09:44:48:51:07:21:37:2b:2e:7c:4f:44:ac:93:60:5d:
03:97:d7:e4:f9:ee:00:45:48:01:49:c1:a7:9e:ff:36:bd:6d:
31:1d:4a:7f:85:56:64:88:6e:be:8d:f7:c5:02:72:7e:46:6a:
b5:1b:1b:68:3e:7a:53:dd:8c:6d:e2:0e:06:61:3a:6e:59:76:
16:c5:0a:7d:96:59:aa:b1:8a:bc:87:a9:a7:02:49:e7:62:40:
fc:6c:96:19:74:9b:ca:a1:a8:24:4f:86:08:8d:63:17:b6:b7:
65:be:e7:1f:4b:81:88:f4:cd:30:dc:5c:21:cb:9a:ba:b5:46:
41:52:eb:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:58:50 2026 by rpki-client