Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
File: tu2bXLS2SGbDg97kV2v_P_h1JC0.mft (raw, json)
Hash identifier: FwR04ykEYYqujLuhg5lxFcDpWa4g/OfWzys/IVQPyfM=
Subject key identifier: 01:47:8F:97:B0:78:BA:B5:CF:28:AE:1A:E6:47:F2:D9:09:61:EC:C4
Authority key identifier: B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
Certificate issuer: /CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Certificate serial: 019D28BBECC3BA2F728673743B1336EF4B7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
Manifest number: 0FFF
Signing time: Thu 26 Mar 2026 06:01:37 +0000
Manifest this update: Thu 26 Mar 2026 06:01:37 +0000
Manifest next update: Fri 27 Mar 2026 06:01:37 +0000
Files and hashes: 1: qnjLVFZSC8QuCgUVZZ1JmtnnXaw.roa (hash: lrJX4lxCpvRoWetP9MnMhWnZa9fTVg282FGtglUa7z4=)
2: tu2bXLS2SGbDg97kV2v_P_h1JC0.crl (hash: v4xF55YneRgywsRXXFVHLxbkU5Kb/CwQ770gXinMU1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:ec:c3:ba:2f:72:86:73:74:3b:13:36:ef:4b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Validity
Not Before: Mar 26 06:01:37 2026 GMT
Not After : Mar 27 06:01:37 2026 GMT
Subject: CN=01478f97b078bab5cf28ae1ae647f2d90961ecc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e5:98:6f:a1:c8:00:e0:1c:b8:83:8c:3e:e3:
0d:79:96:d7:66:0e:f4:f0:eb:cb:31:0d:0e:fc:7e:
1d:92:42:09:a1:76:18:51:89:6f:81:08:0b:93:30:
20:06:50:1f:ee:7f:b1:82:ad:b1:df:cd:6e:a8:4c:
fb:da:2d:61:21:fb:9c:a7:ce:a3:d4:e8:91:eb:8e:
7f:68:50:00:3b:09:55:eb:65:cf:8a:d8:af:ec:4b:
d8:6f:60:f1:f7:cc:08:87:11:88:80:80:79:f4:fb:
76:af:94:4b:57:cf:a1:c6:54:07:e8:de:a4:76:ac:
b9:31:db:e1:8e:02:18:78:7d:e2:fe:52:d5:ee:f8:
bf:34:c5:d8:ba:c9:03:01:4c:41:e6:99:93:2b:55:
a5:2e:f3:02:e6:4c:a9:0f:76:3d:58:93:9f:52:8c:
b1:49:89:e6:2a:bc:12:79:9c:d1:06:12:f4:fb:7c:
03:5e:1b:bb:4e:c9:e7:ea:e8:c7:11:f1:97:8b:4a:
15:39:50:a1:31:e6:bf:28:85:88:cc:f6:63:cd:5a:
d1:88:08:30:33:09:d8:7d:f9:68:61:53:b0:48:dd:
49:07:37:93:91:ee:13:6b:4b:51:74:43:f2:d9:dc:
ff:39:f0:c5:8d:24:24:4a:f8:5d:3d:a1:02:62:31:
b2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:47:8F:97:B0:78:BA:B5:CF:28:AE:1A:E6:47:F2:D9:09:61:EC:C4
X509v3 Authority Key Identifier:
keyid:B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:5f:d9:33:4c:cd:77:ed:2a:5b:a6:1f:f1:8b:58:36:e7:88:
21:26:84:99:46:84:44:ba:db:d1:ab:84:c7:79:ce:9c:33:47:
4e:8b:6a:cc:32:9a:76:4e:5b:f4:78:3b:71:c5:40:c3:dd:8f:
71:e1:91:d0:36:95:69:ea:af:9e:37:07:ca:b2:bf:c5:00:44:
0d:ce:51:4a:30:d3:5f:20:79:4c:5f:b3:56:a8:aa:ce:ad:cc:
b1:f6:2b:17:7b:a6:6a:55:07:f7:18:47:1c:3b:6d:83:98:32:
74:87:4d:38:dc:ad:d4:3a:06:21:2f:72:a8:fc:dc:ab:5b:4d:
9b:65:4c:49:c2:b5:94:49:88:b1:ff:4c:64:39:fe:d7:7a:c3:
1c:f3:61:4b:44:e3:76:df:b2:0e:d8:bf:88:99:64:26:fb:83:
91:6a:01:8a:68:45:7e:0e:08:dd:54:60:11:72:80:3d:ce:0e:
e8:71:da:24:41:e8:2d:3e:a8:5b:26:a5:22:c7:15:cb:a5:98:
35:b0:1c:02:a2:03:d4:d6:24:bb:74:61:30:da:44:47:34:53:
a1:d4:e4:aa:48:de:8f:1e:b2:e4:33:88:b4:be:19:a5:50:81:
29:ae:18:05:d0:90:64:13:f3:84:ac:9f:31:4e:00:9a:a7:17:
da:be:85:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:56:34 2026 by rpki-client