Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
File: fzErCdH2kPJXAL1dzwfJGAxelmM.mft (raw, json)
Hash identifier: 9JunrDNZAUeq28EpmKfaQtsZKkfg0nPaJtd/e6Kmia8=
Subject key identifier: FE:11:1A:E9:D6:70:E2:99:56:E6:02:70:37:EE:CC:0F:BE:F7:93:41
Authority key identifier: 7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
Certificate issuer: /CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Certificate serial: 019DA4F8D7FFB45148B283F02E312A0B669E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
Manifest number: 01F0
Signing time: Sun 19 Apr 2026 09:01:04 +0000
Manifest this update: Sun 19 Apr 2026 09:01:04 +0000
Manifest next update: Mon 20 Apr 2026 09:01:04 +0000
Files and hashes: 1: BCFG1E3vkLJzX3xYHBAXCR2M-Dk.roa (hash: kLXCiyzJI0lL3gfuo31f6jHCm4NoCsgw/6nrJV+kat0=)
2: fzErCdH2kPJXAL1dzwfJGAxelmM.crl (hash: wwRe7udEVa3PkF3B8vlLzksuaUC5Fw113mLvwfDrzbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 09:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f8:d7:ff:b4:51:48:b2:83:f0:2e:31:2a:0b:66:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663
Validity
Not Before: Apr 19 09:01:04 2026 GMT
Not After : Apr 20 09:01:04 2026 GMT
Subject: CN=fe111ae9d670e29956e6027037eecc0fbef79341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2e:2e:3d:55:fd:bc:54:45:1e:68:46:a9:82:
d8:8d:33:0d:2c:f5:7f:c4:4b:95:4c:b3:f1:43:9f:
fb:fd:bf:01:76:0b:44:83:b7:89:0a:07:af:be:7e:
3e:b3:4e:fa:66:3e:60:2f:8d:d8:aa:39:0d:dc:57:
04:56:2f:24:6e:8b:eb:28:ea:04:83:87:6f:19:eb:
49:55:e4:a8:1e:b7:63:f3:2a:cc:2b:21:24:fa:b6:
9f:5b:6d:75:83:ea:6d:50:70:5a:f9:bd:fe:8f:27:
4a:84:f4:3e:48:1a:23:a1:10:31:bc:40:12:83:2b:
2b:b1:8d:84:f8:57:9d:6d:0f:8b:49:a9:68:f6:24:
0d:42:7e:18:25:01:60:f9:6b:08:08:02:e8:0d:9a:
f7:00:9e:10:52:b4:4d:6b:a6:9c:49:3a:79:16:d1:
46:ad:39:11:36:2c:72:39:14:08:00:40:fd:5f:67:
53:99:21:67:d2:da:c1:33:98:88:41:5f:59:1b:47:
cb:d8:51:b2:32:57:de:22:f5:32:06:57:24:6b:dd:
2b:3e:dc:ae:f7:a8:a9:f4:e1:bb:bd:71:88:0c:20:
ce:55:bb:ca:80:40:93:fd:3a:7d:9b:65:c0:42:c7:
d2:13:58:93:49:b0:b0:53:37:28:1a:e5:14:fc:37:
c9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:11:1A:E9:D6:70:E2:99:56:E6:02:70:37:EE:CC:0F:BE:F7:93:41
X509v3 Authority Key Identifier:
keyid:7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:10:70:b3:06:73:e7:34:9a:58:e3:9b:8d:19:4d:58:ee:2c:
64:56:f0:c9:94:de:e4:4d:db:17:d3:3e:6f:91:80:6c:8a:5b:
59:7e:cf:df:2d:66:76:00:ab:86:2c:33:4c:09:36:26:db:f2:
42:a2:0b:5c:2c:fd:62:7a:bb:a7:1c:e3:f6:07:7e:6f:2f:b5:
9f:07:c2:ff:c6:c3:31:09:34:b1:22:7a:6b:cf:39:69:3e:4d:
89:c8:27:d4:0f:24:16:31:db:19:fd:d9:46:c6:04:c1:fe:bb:
08:28:14:c2:ef:5e:23:6d:57:4e:ab:03:b4:51:f2:79:b1:99:
61:df:14:34:6c:26:f9:f7:89:80:e6:c6:5b:e1:a4:a2:07:b1:
29:9a:99:ea:60:02:1e:da:c6:59:7b:e4:55:83:c3:c1:65:03:
ac:86:84:24:18:62:af:cd:43:c8:1e:e2:d2:7e:1a:f0:66:10:
83:09:43:5e:f2:af:93:2f:8b:32:e6:5c:73:4d:3c:01:81:83:
97:77:07:30:79:c9:d8:2d:64:a8:5b:06:fa:d5:54:8a:95:a1:
06:2b:83:da:a2:b7:81:bc:77:d4:ec:26:bd:21:51:71:7a:0e:
8f:6b:22:a2:51:33:78:e5:31:fe:0c:a1:16:f8:b7:0d:e2:74:
6a:48:7a:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2k+Nf/tFFIsoPwLjEqC2aeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmMzEyYjA5ZDFmNjkwZjI1NzAwYmQ1ZGNmMDdjOTE4MGM1
ZTk2NjMwHhcNMjYwNDE5MDkwMTA0WhcNMjYwNDIwMDkwMTA0WjAzMTEwLwYDVQQD
EyhmZTExMWFlOWQ2NzBlMjk5NTZlNjAyNzAzN2VlY2MwZmJlZjc5MzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAri4uPVX9vFRFHmhGqYLYjTMNLPV/
xEuVTLPxQ5/7/b8BdgtEg7eJCgevvn4+s076Zj5gL43YqjkN3FcEVi8kbovrKOoE
g4dvGetJVeSoHrdj8yrMKyEk+rafW211g+ptUHBa+b3+jydKhPQ+SBojoRAxvEAS
gysrsY2E+FedbQ+LSalo9iQNQn4YJQFg+WsICALoDZr3AJ4QUrRNa6acSTp5FtFG
rTkRNixyORQIAED9X2dTmSFn0trBM5iIQV9ZG0fL2FGyMlfeIvUyBlcka90rPtyu
96ip9OG7vXGIDCDOVbvKgECT/Tp9m2XAQsfSE1iTSbCwUzcoGuUU/DfJBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4RGunWcOKZVuYCcDfuzA++95NBMB8GA1UdIwQY
MBaAFH8xKwnR9pDyVwC9Xc8HyRgMXpZjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgt
MTUyMmUyOTY0ZmNlLzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgtMTUyMmUyOTY0ZmNl
LzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGhBwswZz
5zSaWOObjRlNWO4sZFbwyZTe5E3bF9M+b5GAbIpbWX7P3y1mdgCrhiwzTAk2Jtvy
QqILXCz9Ynq7pxzj9gd+by+1nwfC/8bDMQk0sSJ6a885aT5Nicgn1A8kFjHbGf3Z
RsYEwf67CCgUwu9eI21XTqsDtFHyebGZYd8UNGwm+feJgObGW+GkogexKZqZ6mAC
HtrGWXvkVYPDwWUDrIaEJBhir81DyB7i0n4a8GYQgwlDXvKvky+LMuZcc008AYGD
l3cHMHnJ2C1kqFsG+tVUipWhBiuD2qK3gbx31OwmvSFRcXoOj2siolEzeOUx/gyh
Fvi3DeJ0akh65g==
-----END CERTIFICATE-----
Generated at Sun Apr 19 18:25:29 2026 by rpki-client