Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
File: _caA7hsnw6bwcBPI_CXr_wxn-50.mft (raw, json)
Hash identifier: W9DCSuj0U7rGT+NcReBeI0KdM2PKxS1Xg8BG7IrAhfs=
Subject key identifier: 43:34:05:A4:14:CC:B1:60:A2:38:EF:39:4A:91:77:A8:0B:29:F0:B3
Authority key identifier: FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
Certificate issuer: /CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Certificate serial: 019CAB346BFEBA381B9E7868DEE1AC7CB736
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
Manifest number: 0F27
Signing time: Sun 01 Mar 2026 21:01:05 +0000
Manifest this update: Sun 01 Mar 2026 21:01:05 +0000
Manifest next update: Mon 02 Mar 2026 21:01:05 +0000
Files and hashes: 1: 3quKn702Vi5YqrEVXzFPYc93s0o.roa (hash: Ux1SJ1+gpjARAxZ3o2ImnrNmQoc+jmNEaDOBhy8YXGc=)
2: _caA7hsnw6bwcBPI_CXr_wxn-50.crl (hash: Z4GXMFrTlQsN4V62UeU4hAcspPK1Ckbl3YbAT9DQdpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:6b:fe:ba:38:1b:9e:78:68:de:e1:ac:7c:b7:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Validity
Not Before: Mar 1 21:01:05 2026 GMT
Not After : Mar 2 21:01:05 2026 GMT
Subject: CN=433405a414ccb160a238ef394a9177a80b29f0b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:89:4d:90:3f:d8:17:37:bb:cb:75:b3:be:cf:
58:e4:f5:cc:da:02:53:9b:1f:e7:06:4b:b2:6c:37:
24:c8:1c:81:bb:ac:f0:ae:f0:f7:39:b1:c9:26:4e:
7c:29:bf:a5:84:ae:24:45:33:68:ac:93:87:68:d7:
3c:ab:28:db:de:a0:9a:48:4b:42:d5:24:3d:62:f0:
88:81:6f:77:04:d3:73:df:92:3c:9f:f3:b1:fa:df:
02:79:b9:d4:f0:71:b0:03:7a:33:a6:b2:63:b1:b9:
ca:84:75:28:2e:23:0e:d2:2d:67:29:f1:8a:0b:e1:
d5:6d:f2:76:46:c9:23:18:8e:9b:d3:6b:43:3a:98:
d3:a6:2b:5e:e9:22:f9:55:60:17:a6:5d:7a:99:36:
90:8f:49:81:87:9f:18:aa:86:78:46:b6:0a:9e:a5:
e8:17:6d:ae:c3:c4:1e:d1:8f:94:74:e1:0a:d5:32:
9a:9a:62:2f:e7:69:fb:28:62:09:6a:38:61:d9:e2:
0a:44:03:de:3a:1b:3b:36:d9:7c:b9:88:dd:93:01:
1a:4e:b2:8d:5f:3a:23:6d:83:72:f3:9d:be:e9:82:
b9:1d:fa:c0:d1:43:89:e7:10:25:6e:e4:80:c3:9a:
8e:bd:9b:e8:a9:1a:54:61:36:9a:09:b0:ce:7c:b0:
cb:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:34:05:A4:14:CC:B1:60:A2:38:EF:39:4A:91:77:A8:0B:29:F0:B3
X509v3 Authority Key Identifier:
keyid:FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:ea:03:3b:78:90:e0:ce:7a:69:f4:c3:b8:ef:d0:00:16:29:
68:62:83:40:f0:13:e5:5d:d5:ac:28:1c:04:e2:f4:3d:58:4b:
93:b1:65:f1:58:59:e8:cc:68:b5:98:75:67:66:0e:0c:46:74:
de:f0:5f:dd:55:45:5c:7a:09:81:03:30:5f:3b:4b:a3:60:a0:
d7:cb:c0:ad:57:3f:eb:2c:ae:fa:ed:47:b4:8a:fb:a8:5c:4c:
e4:62:29:55:ed:14:45:5c:12:35:e4:c7:c5:74:81:58:26:70:
58:0a:4e:2f:10:1d:86:b3:bc:25:47:57:04:f7:72:5a:ec:d5:
1f:69:b3:18:40:9a:d4:8d:1d:f7:7d:cc:a9:4e:ff:05:ce:d3:
8e:74:ef:02:45:ce:92:c0:cd:bf:ec:27:b4:82:15:e3:e7:71:
39:c2:19:9b:ec:ce:85:23:1b:da:05:3e:f9:44:b0:72:d3:85:
44:a3:9e:b4:b7:8d:2c:fd:f1:a8:2d:84:21:d0:6e:39:f5:c8:
fc:c9:da:1f:65:e7:37:c7:ad:61:e8:1a:38:ba:c5:79:e9:be:
08:9e:48:c0:cb:39:23:7f:40:24:90:30:12:67:ea:09:6e:ce:
da:f1:0a:5e:88:dc:fe:3d:18:dc:fe:f4:af:10:5f:ad:1c:7e:
76:9c:1f:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNGv+ujgbnnho3uGsfLc2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkYzY4MGVlMWIyN2MzYTZmMDcwMTNjOGZjMjVlYmZmMGM2
N2ZiOWQwHhcNMjYwMzAxMjEwMTA1WhcNMjYwMzAyMjEwMTA1WjAzMTEwLwYDVQQD
Eyg0MzM0MDVhNDE0Y2NiMTYwYTIzOGVmMzk0YTkxNzdhODBiMjlmMGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqolNkD/YFze7y3Wzvs9Y5PXM2gJT
mx/nBkuybDckyByBu6zwrvD3ObHJJk58Kb+lhK4kRTNorJOHaNc8qyjb3qCaSEtC
1SQ9YvCIgW93BNNz35I8n/Ox+t8CebnU8HGwA3ozprJjsbnKhHUoLiMO0i1nKfGK
C+HVbfJ2RskjGI6b02tDOpjTpite6SL5VWAXpl16mTaQj0mBh58YqoZ4RrYKnqXo
F22uw8Qe0Y+UdOEK1TKammIv52n7KGIJajhh2eIKRAPeOhs7Ntl8uYjdkwEaTrKN
XzojbYNy852+6YK5HfrA0UOJ5xAlbuSAw5qOvZvoqRpUYTaaCbDOfLDLPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEM0BaQUzLFgojjvOUqRd6gLKfCzMB8GA1UdIwQY
MBaAFP3GgO4bJ8Om8HATyPwl6/8MZ/udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2NhQTdoc253NmJ3Y0JQSV9DWHJfd3huLTUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hMTJlMWMtMWIxMC00OTM4LTk2ZDMt
N2JlZDI2NzQzYmNjLzEvX2NhQTdoc253NmJ3Y0JQSV9DWHJfd3huLTUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9hMTJlMWMtMWIxMC00OTM4LTk2ZDMtN2JlZDI2NzQzYmNj
LzEvX2NhQTdoc253NmJ3Y0JQSV9DWHJfd3huLTUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ+oDO3iQ
4M56afTDuO/QABYpaGKDQPAT5V3VrCgcBOL0PVhLk7Fl8VhZ6MxotZh1Z2YODEZ0
3vBf3VVFXHoJgQMwXztLo2Cg18vArVc/6yyu+u1HtIr7qFxM5GIpVe0URVwSNeTH
xXSBWCZwWApOLxAdhrO8JUdXBPdyWuzVH2mzGECa1I0d933MqU7/Bc7TjnTvAkXO
ksDNv+wntIIV4+dxOcIZm+zOhSMb2gU++USwctOFRKOetLeNLP3xqC2EIdBuOfXI
/MnaH2XnN8etYegaOLrFeem+CJ5IwMs5I39AJJAwEmfqCW7O2vEKXojc/j0Y3P70
rxBfrRx+dpwftg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:58 2026 by rpki-client