Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
File: _caA7hsnw6bwcBPI_CXr_wxn-50.mft (raw, json)
Hash identifier: eJiL7JGDpD8P8IKhWp+CTuK+rsBQdP45RFEekKhLoFY=
Subject key identifier: CF:0F:E7:38:30:1B:A5:79:93:C4:80:6B:59:D3:40:76:75:35:67:D2
Authority key identifier: FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
Certificate issuer: /CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Certificate serial: 019D98BD116CC29AA0F29982A95509D88A60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
Manifest number: 0FA2
Signing time: Fri 17 Apr 2026 00:00:20 +0000
Manifest this update: Fri 17 Apr 2026 00:00:20 +0000
Manifest next update: Sat 18 Apr 2026 00:00:20 +0000
Files and hashes: 1: 3quKn702Vi5YqrEVXzFPYc93s0o.roa (hash: Ux1SJ1+gpjARAxZ3o2ImnrNmQoc+jmNEaDOBhy8YXGc=)
2: _caA7hsnw6bwcBPI_CXr_wxn-50.crl (hash: vCcN19vduEfLeGcR8fnoJP2VrD/4ofId2cqdoFAMqBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:11:6c:c2:9a:a0:f2:99:82:a9:55:09:d8:8a:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Validity
Not Before: Apr 17 00:00:20 2026 GMT
Not After : Apr 18 00:00:20 2026 GMT
Subject: CN=cf0fe738301ba57993c4806b59d34076753567d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a1:c2:f5:3b:ff:60:92:f9:e3:c2:7a:16:be:
9f:33:49:06:5a:d5:bf:81:5a:5c:ca:cc:8d:e1:e3:
b2:5c:63:d1:74:ef:9b:60:0c:b4:b5:48:39:75:65:
6f:28:ca:f0:65:02:58:ef:12:1d:93:8b:d6:79:a3:
a1:a8:68:d6:cf:04:76:74:2a:bc:5e:90:27:f2:6c:
d7:a1:15:39:91:72:9f:c3:7c:00:e9:a8:5c:d0:9b:
4e:60:0c:33:3e:77:d5:6a:80:f1:cd:1e:61:46:28:
de:c6:8f:b6:72:14:c9:08:5b:6d:29:53:23:41:cb:
f4:14:a1:d4:f3:d7:73:16:32:9d:e1:0c:83:2f:91:
95:95:11:ae:b7:f0:52:5b:33:1c:b5:08:c1:26:42:
94:4f:c1:5e:1b:f6:4c:ac:19:b1:f1:8f:5d:89:cb:
61:21:c7:ab:28:15:bb:db:ff:1f:cc:fd:37:60:1f:
1c:47:c0:8e:e8:26:43:52:bc:da:b2:8d:35:08:b8:
d6:6f:67:f1:c0:0a:92:8d:d2:73:68:56:20:39:8a:
91:6b:1c:dc:62:04:fe:de:08:b1:62:b9:32:3e:b5:
05:a8:9a:c3:52:c1:d5:13:3d:27:62:07:27:18:c1:
06:be:60:5b:44:cf:2d:2b:82:5f:6b:d3:a6:94:49:
26:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0F:E7:38:30:1B:A5:79:93:C4:80:6B:59:D3:40:76:75:35:67:D2
X509v3 Authority Key Identifier:
keyid:FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:14:08:65:d2:13:f1:90:2b:97:32:c9:55:a4:f9:06:11:8c:
98:94:66:dd:0c:59:94:58:45:3e:66:9a:11:83:ab:d5:94:c7:
ea:81:e6:3c:6b:e2:db:0f:67:65:a0:07:78:51:bf:d4:f6:b3:
a4:c7:68:5b:f3:e0:4f:7a:98:54:b5:27:5d:ef:60:9b:95:8a:
f5:33:3f:48:d7:f4:8e:9b:09:8f:05:ca:1b:47:af:1a:a8:d7:
dc:7e:5a:12:fd:35:e8:1e:b2:63:96:1d:b1:66:09:2a:1c:f1:
67:40:5e:b9:fa:a8:c3:96:7f:65:2f:7b:3f:b9:8d:23:9f:5d:
38:c8:a1:23:a6:a6:65:dd:3a:1d:57:4f:10:de:83:0f:f6:1d:
94:0d:c2:9a:0e:60:d8:25:a6:19:71:64:3f:c6:de:67:74:dd:
32:fa:df:ef:0d:9b:b3:88:60:10:08:8a:50:3b:0f:56:62:23:
6f:1b:05:d6:8a:1b:3b:ea:39:35:1c:05:f8:59:50:b0:30:6e:
32:df:66:0f:3b:6c:37:68:fe:a4:d4:fd:e7:1b:f7:49:97:a0:
2a:df:da:e5:3a:bb:24:8f:20:c1:d8:91:8e:1c:42:b5:72:c1:
02:1c:b1:5c:f0:45:8c:97:35:60:04:4d:e7:24:b3:89:47:44:
b2:13:2a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:42:52 2026 by rpki-client