Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/3/FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.mft
File: FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.mft (raw, json)
Hash identifier: kSrF76dTkW77PUIO279bAMzo8YdbdVpKxTGttLv4SBQ=
Subject key identifier: F9:29:43:9E:3D:7B:9B:C4:FF:A5:1A:E8:DE:2B:B3:B8:23:A0:CB:CD
Authority key identifier: FD:DE:E9:08:A9:AD:2D:FB:E3:2F:F3:5B:40:2A:5A:B2:19:8D:C9:07
Certificate issuer: /CN=fddee908a9ad2dfbe32ff35b402a5ab2198dc907
Certificate serial: 7EFBA89707AABCD68C1DBE21722EDACE14EC3E58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_d7pCKmtLfvjL_NbQCpashmNyQc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/3/FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.mft
Manifest number: 96
Signing time: Sat 13 Jun 2026 13:33:05 +0000
Manifest this update: Sat 13 Jun 2026 13:28:05 +0000
Manifest next update: Sun 14 Jun 2026 15:01:05 +0000
Files and hashes: 1: 3138352e3230302e3231312e302f32342d3234203d3e203137353631.roa (hash: vaq2U1utiHAmwsFdBJWN8CZ3Xs8ef88rxfCkv12YYlQ=)
2: FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.crl (hash: dCuaHjkpencGxhuRzmKp9RrTlDF3P2SZAKCtVLrY4do=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/3/FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.crl
rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/3/FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.mft
rsync://rpki.ripe.net/repository/DEFAULT/_d7pCKmtLfvjL_NbQCpashmNyQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:fb:a8:97:07:aa:bc:d6:8c:1d:be:21:72:2e:da:ce:14:ec:3e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fddee908a9ad2dfbe32ff35b402a5ab2198dc907
Validity
Not Before: Jun 13 13:28:05 2026 GMT
Not After : Jun 14 15:01:05 2026 GMT
Subject: CN=F929439E3D7B9BC4FFA51AE8DE2BB3B823A0CBCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1f:6d:71:55:e9:cf:c0:b6:3f:2c:e0:0d:45:
ea:b0:15:80:c5:44:e1:47:1c:26:75:22:e2:e6:94:
8e:b3:d8:c5:ef:57:31:37:f4:b9:53:ed:b1:b4:be:
54:d6:a9:e1:7c:6f:14:6a:5a:ab:ab:ae:1a:f0:9d:
c7:2b:86:b9:af:a3:1e:ba:72:76:29:ec:82:31:26:
d2:4c:66:fb:46:1e:67:09:30:8d:22:6b:9e:06:eb:
59:34:ef:71:e1:8c:dc:b7:ae:0e:68:42:50:ea:dd:
b1:59:04:10:30:4c:ad:12:76:3f:f3:99:e2:b4:67:
39:b5:46:9c:f7:55:18:23:8c:32:68:75:5b:bf:d2:
67:c4:23:f2:67:b3:52:28:40:2e:14:56:ef:ae:6a:
40:34:af:b5:76:3c:ca:72:27:d1:86:a5:f2:1f:03:
b4:38:e9:bc:10:90:e7:b3:bb:15:ca:fa:0c:6c:7d:
18:29:02:a1:a0:6b:2f:fd:a8:eb:a7:ac:93:a3:75:
1b:3f:9e:89:38:c3:01:80:f1:9d:ef:26:83:fd:89:
55:28:b4:88:5e:d0:f7:f4:21:9d:05:17:40:fb:06:
4c:e3:e6:3a:fc:57:72:41:ec:92:36:b2:f4:07:54:
de:a8:52:41:cb:b2:e8:8b:14:97:ea:76:9a:c1:95:
b9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:29:43:9E:3D:7B:9B:C4:FF:A5:1A:E8:DE:2B:B3:B8:23:A0:CB:CD
X509v3 Authority Key Identifier:
keyid:FD:DE:E9:08:A9:AD:2D:FB:E3:2F:F3:5B:40:2A:5A:B2:19:8D:C9:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/3/FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_d7pCKmtLfvjL_NbQCpashmNyQc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/be41704f-7815-4f2c-a503-58ae08e556b6/3/FDDEE908A9AD2DFBE32FF35B402A5AB2198DC907.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:5b:09:35:bf:39:08:a2:68:05:a5:5e:ad:e9:20:73:e9:d7:
c2:b9:c2:cb:4c:0d:3c:9a:54:9a:72:e2:58:3d:7b:06:9d:a2:
ba:9f:f0:ce:59:11:11:37:5b:da:d1:29:7d:c0:c4:a5:9d:39:
c5:8d:dc:8c:14:c9:cb:81:cb:90:14:07:af:f8:fb:de:58:b5:
b5:94:0f:2d:5a:72:95:11:5c:45:11:a1:4b:ee:cb:ee:84:dd:
80:13:c3:87:96:84:18:cd:86:48:54:e4:2e:45:3d:c0:45:5d:
4a:56:30:4e:43:09:f6:0b:82:07:51:96:0a:9b:47:d2:d4:02:
98:d2:79:f1:55:1f:01:48:6f:74:e3:31:5a:c5:19:f3:bd:14:
e7:1b:c7:2a:81:39:9d:d2:6e:b5:6e:47:ba:50:33:92:a7:e6:
46:97:1f:fe:a3:58:18:b5:bd:ed:af:a7:6f:2e:4e:5b:67:4e:
4a:ff:73:84:e6:b6:74:56:cc:aa:35:d4:a6:23:be:bb:bc:d2:
ef:f4:05:48:a6:97:8e:4d:42:97:87:8b:d7:54:5b:09:30:37:
3b:fa:91:55:f2:35:32:3e:22:32:2d:e8:c6:dd:37:9f:8a:7c:
8a:7c:6e:75:6a:53:05:63:5d:c2:cf:71:ee:88:9d:77:e0:3d:
a0:a3:f2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:07:38 2026 by rpki-client