Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
File: tu2bXLS2SGbDg97kV2v_P_h1JC0.mft (raw, json)
Hash identifier: VeWvfv7Tb6mEpsTowZMjBgrXga3WzX4mgFVf0rdJKgU=
Subject key identifier: 1B:F9:D1:F5:34:D8:BE:EC:FD:E5:52:87:F8:1B:CD:FD:4A:91:81:76
Authority key identifier: B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
Certificate issuer: /CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Certificate serial: 019E1FEC8F64BDB0A9E7C868C7F2A784ECB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
Manifest number: 107F
Signing time: Wed 13 May 2026 06:00:57 +0000
Manifest this update: Wed 13 May 2026 06:00:57 +0000
Manifest next update: Thu 14 May 2026 06:00:57 +0000
Files and hashes: 1: qnjLVFZSC8QuCgUVZZ1JmtnnXaw.roa (hash: lrJX4lxCpvRoWetP9MnMhWnZa9fTVg282FGtglUa7z4=)
2: tu2bXLS2SGbDg97kV2v_P_h1JC0.crl (hash: vjCN405lCqHIdEh9D7lbBtYus4vlHBkpi3J80FFzx98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:8f:64:bd:b0:a9:e7:c8:68:c7:f2:a7:84:ec:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Validity
Not Before: May 13 06:00:57 2026 GMT
Not After : May 14 06:00:57 2026 GMT
Subject: CN=1bf9d1f534d8beecfde55287f81bcdfd4a918176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:72:45:3d:64:ce:45:c5:a5:3f:14:e5:4d:57:
3c:6a:a5:10:86:7c:90:e0:92:2b:40:b8:5d:24:e8:
c1:15:e0:56:a0:37:a8:6b:b6:a6:17:44:f9:bc:79:
6a:b4:50:5c:01:a2:2c:cf:2e:1e:22:41:60:16:e9:
95:a4:7d:7f:18:e2:e7:b5:08:16:55:58:2f:2b:1e:
7b:16:24:3a:e1:c6:ac:55:0d:d0:01:0f:4f:be:36:
8f:82:5f:f9:9c:16:5c:f4:ad:8e:5c:b5:af:a5:48:
d7:eb:cf:0d:6b:82:a2:e4:92:f8:85:f7:71:f6:34:
14:06:00:bb:ad:b6:72:45:e5:50:d6:db:90:c9:f4:
2a:29:7b:92:93:c9:a8:03:ec:b4:66:c2:d6:29:8d:
d9:35:1f:e1:08:48:16:cc:62:c8:13:66:de:42:80:
5d:a5:2c:23:f9:9b:ae:8e:fc:00:64:57:ed:58:6a:
cc:e2:25:49:98:d0:6e:c5:ab:4b:27:50:3f:1e:97:
93:72:6e:56:a6:a5:07:c1:0e:50:83:0d:2c:6e:bb:
36:4a:a3:60:22:67:fc:b8:cc:c0:2d:d9:c7:f7:be:
07:27:28:dc:81:90:b3:08:fa:69:16:a2:64:a1:59:
2d:b5:c2:32:ea:3a:6e:88:71:1d:f3:7a:3f:65:4d:
6e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F9:D1:F5:34:D8:BE:EC:FD:E5:52:87:F8:1B:CD:FD:4A:91:81:76
X509v3 Authority Key Identifier:
keyid:B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:e3:0f:14:6b:92:a2:da:8a:e1:e5:82:17:c5:36:16:eb:f8:
35:ee:94:03:93:ba:6b:30:96:b2:16:5a:93:39:de:56:8b:ba:
75:17:bf:65:55:fb:ab:ca:9d:fc:82:c4:a7:c6:39:e4:25:b6:
a3:ed:0c:b1:e5:bc:e6:d6:a4:c1:cd:02:81:0d:e0:77:a7:44:
14:bf:73:f5:52:56:c3:43:1c:0e:59:12:78:1e:e7:bd:bc:cf:
8f:d0:e2:d4:e2:68:9b:f3:ac:1a:66:d6:30:b2:fc:97:fa:13:
4b:36:22:ef:52:7d:ef:1b:74:1d:3e:0b:57:d0:ec:35:9c:d1:
73:fd:bd:60:a1:7f:76:43:9f:ca:e4:d3:90:45:ce:7d:ba:66:
c6:63:b7:e6:4e:ed:c4:ad:a2:e8:9e:d3:98:44:67:3a:86:c1:
16:f6:70:07:45:bd:8b:c8:4a:a9:44:4f:a2:b8:34:9c:fc:a7:
de:cf:d0:bb:a6:71:33:72:37:9f:96:f3:ca:ac:0e:88:7c:0c:
b8:22:18:a2:d0:2e:09:c3:ea:27:05:2e:39:74:04:6a:0e:51:
02:8d:f9:f6:25:6b:31:41:40:8a:04:6a:7c:64:84:cd:4c:52:
1c:89:6c:40:5c:60:81:cf:a5:20:75:37:5d:01:97:22:d0:1d:
2c:61:64:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:39:27 2026 by rpki-client