Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json)
Hash identifier: KlKG7Kqq/Fq1veVlLBTpyr7R/T5wLMAKYng657VWmfA=
Subject key identifier: 0B:7A:7D:09:AF:48:2D:44:F2:40:B4:8A:E2:B4:2E:F7:4D:66:35:DC
Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Certificate serial: 019D26967BAA690E094112047CFFC84786BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
Manifest number: 1884
Signing time: Wed 25 Mar 2026 20:01:29 +0000
Manifest this update: Wed 25 Mar 2026 20:01:29 +0000
Manifest next update: Thu 26 Mar 2026 20:01:29 +0000
Files and hashes: 1: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: N1nE1hd13kfOaTESpwLlCuhvY25A/HNUI08JZgMGOYU=)
2: q0EJWTGDwVco__jebUVu3D5kU9c.roa (hash: tb42uJpdP5nMQK249exHWZcGEWgXf/qYgSBE+LChXnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:7b:aa:69:0e:09:41:12:04:7c:ff:c8:47:86:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Validity
Not Before: Mar 25 20:01:29 2026 GMT
Not After : Mar 26 20:01:29 2026 GMT
Subject: CN=0b7a7d09af482d44f240b48ae2b42ef74d6635dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4f:3b:8a:c5:cf:35:e2:96:01:a3:ec:76:b2:
69:9e:23:fc:c9:0c:2f:6f:56:f4:f1:d9:cf:1c:16:
28:64:2d:a2:91:ff:07:1a:32:58:91:5a:b0:bc:2d:
49:77:31:11:53:53:9f:04:62:30:ea:c4:0a:67:b9:
d2:2c:6d:ce:73:40:5e:f6:22:5f:1f:6b:ce:4d:6b:
f5:e7:dd:0f:92:81:71:0d:07:bb:a9:ce:31:3c:8f:
ea:63:fe:8e:b9:a3:be:f3:38:00:0b:ae:18:2a:45:
b5:2a:24:a7:75:78:a2:45:37:87:40:db:72:84:32:
f1:92:1e:e3:b4:15:29:1e:54:eb:34:d5:0f:0b:9a:
c4:c7:4d:f4:7e:16:c3:44:2a:ca:d2:5c:22:b1:d2:
86:d9:ab:ad:43:9b:e3:20:95:07:60:1c:49:b1:0b:
fb:d0:21:ed:d7:5b:e0:14:27:e8:ea:b1:40:9d:ab:
20:75:91:51:30:0b:cf:6f:3b:60:9c:ae:63:74:e1:
c3:f5:ed:24:0a:25:7c:74:ab:96:6c:67:20:e9:22:
f1:46:40:b4:f3:43:b2:87:ce:89:0f:1d:55:10:27:
b2:41:d7:5e:4c:47:e7:57:43:cd:5b:ff:3a:0b:b9:
71:36:41:f1:49:a8:e0:19:6d:09:ae:e1:5e:82:a7:
f7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7A:7D:09:AF:48:2D:44:F2:40:B4:8A:E2:B4:2E:F7:4D:66:35:DC
X509v3 Authority Key Identifier:
keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:3e:08:d9:a6:4e:a6:56:b5:98:f2:20:ca:5c:3d:da:8d:b7:
c4:f0:5c:6b:d1:c3:5e:0b:f5:55:3d:19:4e:0b:5f:e0:2e:31:
0e:7a:14:51:17:1e:f3:ba:ce:9e:99:1b:86:0f:36:de:d8:d6:
05:bd:43:25:a4:bf:c3:2a:bf:c0:84:80:a2:5a:07:68:9a:1a:
60:42:6a:a6:d5:52:13:50:44:07:23:dd:39:26:33:55:73:e0:
86:c1:e2:36:09:18:37:f6:71:d7:51:07:f9:ca:f1:33:1a:98:
d3:e2:9b:0f:5d:71:f3:eb:8e:84:16:05:69:f2:78:59:47:82:
60:ff:e5:3c:25:9b:69:cc:27:61:2d:9e:59:04:58:77:04:93:
48:b6:f6:e8:bc:34:42:1a:15:9a:c5:0d:9b:7f:87:03:fd:0f:
3a:d5:e7:a5:b6:08:85:39:60:ee:49:2e:f6:c2:b8:df:c0:37:
65:af:b2:a6:ba:c2:88:3a:44:ae:5b:ee:e8:8c:fc:24:25:fa:
d6:09:1c:a0:b1:e1:17:05:bb:c8:6b:78:73:a2:09:70:c3:09:
59:7f:09:69:cc:24:c4:2f:92:f1:72:15:ff:b6:1c:42:48:a9:
3a:d5:bb:55:b4:c3:51:33:a2:18:d7:e9:29:da:af:c3:8d:72:
44:8b:80:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:50:46 2026 by rpki-client