Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
File: fexyg377vE6m3dS-lDYZFrTDYto.mft (raw, json)
Hash identifier: wlGkD86gOzWJJ8FwCgi4IJhi+7ZKUzvJoK3p1Eji4p8=
Subject key identifier: 8F:74:87:D6:A4:4A:F0:53:C0:DE:FA:F1:74:2F:51:9B:6F:8E:16:3E
Authority key identifier: 7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
Certificate issuer: /CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Certificate serial: 019CAAFD996AADDF53FE147F5577495C417C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
Manifest number: 0F2E
Signing time: Sun 01 Mar 2026 20:01:12 +0000
Manifest this update: Sun 01 Mar 2026 20:01:12 +0000
Manifest next update: Mon 02 Mar 2026 20:01:12 +0000
Files and hashes: 1: 3g6ILoE9ejngNxt1ax6rYM1LQ60.roa (hash: LEUisAJ5IBxkUseMOfjHAnJQfW3VdAcMs8IPdC6dNso=)
2: fexyg377vE6m3dS-lDYZFrTDYto.crl (hash: B/Za5Wh4eDPeC9icHR3GekiXjJ2KQQ0I2Y7UwHW5DvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:99:6a:ad:df:53:fe:14:7f:55:77:49:5c:41:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dec72837efbbc4ea6ddd4be94361916b4c362da
Validity
Not Before: Mar 1 20:01:12 2026 GMT
Not After : Mar 2 20:01:12 2026 GMT
Subject: CN=8f7487d6a44af053c0defaf1742f519b6f8e163e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:11:6a:17:a3:32:4e:77:3e:5d:a3:ce:35:cf:
93:f0:f2:fc:2e:cd:03:f4:03:d5:6e:c5:23:0d:69:
70:83:df:d9:05:e8:5c:8e:54:16:4f:4c:39:21:0b:
07:62:a1:b1:7c:3f:af:a7:76:54:0f:5f:f4:cb:47:
30:c7:19:0c:aa:47:5a:34:bd:97:63:d1:26:9d:95:
2b:2b:32:39:53:a9:8d:32:04:5f:d5:27:b1:9d:bc:
04:2d:68:3a:1a:90:a2:e2:a6:17:73:fc:1c:0d:00:
cf:bd:a0:97:f3:4d:22:f0:cd:30:eb:09:47:99:a9:
4f:8b:37:3b:81:1e:ef:26:43:1d:bf:a2:79:50:46:
44:a4:ea:2b:21:12:61:12:dd:94:5b:9c:da:b3:79:
60:72:25:1c:56:4e:6d:25:50:6b:c6:15:74:dd:ca:
01:bf:00:10:a9:69:8f:ed:c1:36:95:c2:f1:45:36:
c0:b1:b7:d2:40:59:1e:10:97:f6:90:db:5d:9f:6a:
11:b8:40:4c:55:db:5b:01:95:04:6e:cb:5a:58:18:
b2:33:28:3d:3f:e6:af:31:fd:6c:fb:17:63:85:e1:
b4:39:ba:36:b1:76:1a:cd:b7:b4:5d:16:bc:68:cc:
ca:05:8c:00:36:36:de:7a:a4:0e:a0:3f:06:86:5e:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:74:87:D6:A4:4A:F0:53:C0:DE:FA:F1:74:2F:51:9B:6F:8E:16:3E
X509v3 Authority Key Identifier:
keyid:7D:EC:72:83:7E:FB:BC:4E:A6:DD:D4:BE:94:36:19:16:B4:C3:62:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fexyg377vE6m3dS-lDYZFrTDYto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/44478f-e980-4e60-9d6e-386617a664fe/1/fexyg377vE6m3dS-lDYZFrTDYto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:00:13:1f:6b:af:93:e4:95:3e:24:e1:75:55:1e:1e:a9:b4:
ec:45:63:4e:1a:a8:98:65:08:36:bc:33:da:65:7f:86:04:71:
1e:a8:61:c4:3b:70:bc:b0:0a:6b:8f:dd:09:92:46:9c:fb:88:
68:b8:79:46:cc:d8:58:5f:aa:c0:d3:d2:d9:34:03:3b:3f:cb:
d5:b4:92:a6:a8:58:84:04:8c:d3:b9:a1:68:91:d6:92:28:4f:
f5:41:c1:6d:8c:0e:59:1a:a3:91:2a:10:c9:e3:a8:64:bb:51:
33:a6:34:0c:10:f7:aa:45:46:76:68:f6:b5:8e:74:7c:fa:08:
b8:74:f8:92:6d:27:3f:ec:a2:67:76:0d:2e:4c:6e:45:a3:8c:
57:db:a6:70:3c:e5:67:fc:78:c2:4a:e2:fc:e1:bf:87:38:a2:
a0:1d:80:7d:8a:83:e4:5c:1c:15:df:0b:c9:a4:76:87:cd:6c:
6e:6e:1b:da:2c:26:ef:fa:75:eb:d5:5a:1f:a8:50:91:7d:bf:
14:38:9d:e0:e4:b7:63:3e:08:bd:1e:7e:43:92:d5:12:b0:42:
e5:f8:02:e4:8f:37:fc:3d:c5:04:f0:79:bf:73:10:dd:df:06:
45:b5:8f:69:0c:e7:60:fd:a7:03:f8:9e:17:3b:b5:4b:85:52:
27:07:41:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:58:35 2026 by rpki-client