Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
File: toqZTkLmDaT0pUdbFfXidRbHzxQ.mft (raw, json)
Hash identifier: ciJ+yXNJil9IJHyHe3guX3CHzB1+TnNlD/j/E7xsGRA=
Subject key identifier: 70:4E:65:65:CB:94:80:9C:2E:A8:D6:35:11:D2:CC:88:91:56:C0:A8
Authority key identifier: B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
Certificate issuer: /CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Certificate serial: 019D26CD888F08DD78C42FEBE5FB73F16446
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 21:01:37 +0000
Manifest this update: Wed 25 Mar 2026 21:01:37 +0000
Manifest next update: Thu 26 Mar 2026 21:01:37 +0000
Files and hashes: 1: Jpz2_pjmoHdo-RmCR1hSGVo1EHM.roa (hash: z2PsPLaUE/pjgoZrk9x3ve1iWv9V87jouLdEBjFOK3I=)
2: toqZTkLmDaT0pUdbFfXidRbHzxQ.crl (hash: 1YbCKn5yrJn3vWKUuS0J6MMGWOoHWoTMH7/JF2aNIIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:88:8f:08:dd:78:c4:2f:eb:e5:fb:73:f1:64:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Validity
Not Before: Mar 25 21:01:37 2026 GMT
Not After : Mar 26 21:01:37 2026 GMT
Subject: CN=704e6565cb94809c2ea8d63511d2cc889156c0a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:9c:22:f8:a4:6a:66:8e:4d:36:7b:a8:1f:
32:b9:2b:42:36:89:e2:c5:79:f1:ed:3c:09:b7:3f:
e6:e2:c6:3f:40:ed:15:98:cf:b5:fb:43:6d:ea:2b:
3d:a4:21:a0:db:6c:d8:6d:3b:e7:4a:82:87:fb:b5:
91:a6:66:03:12:68:71:82:e8:11:4c:c0:b3:98:a0:
b4:57:97:0c:1d:27:23:77:6e:aa:df:14:d3:2f:94:
5c:59:4f:d4:d5:d8:58:fa:4b:62:ec:5b:bc:b0:a1:
26:c1:f3:a2:c4:e7:b9:0a:b7:d2:a7:51:32:3a:c5:
ca:8d:aa:40:a7:2b:a2:9f:2a:eb:c8:d5:92:d4:98:
62:ec:40:bb:51:c6:33:82:43:0a:98:4f:14:88:e2:
a5:c3:da:b3:54:1b:51:c6:92:60:19:c2:92:20:7c:
01:a5:23:15:a0:33:20:bf:44:72:7f:7f:cf:a0:b6:
05:df:d2:ea:c4:d7:d9:28:84:bd:09:13:c0:bd:37:
72:dd:0e:60:15:96:c6:87:d9:a9:9d:22:44:b6:18:
b9:a9:9a:11:80:82:d0:c9:22:09:ff:1c:27:27:7c:
5b:f2:95:57:90:07:58:f9:fb:66:77:32:b1:43:5b:
2c:64:26:d4:f5:c3:aa:35:80:3e:ce:64:5d:f8:80:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4E:65:65:CB:94:80:9C:2E:A8:D6:35:11:D2:CC:88:91:56:C0:A8
X509v3 Authority Key Identifier:
keyid:B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:c1:fa:f1:4a:48:18:0c:c0:a8:c2:0a:d6:15:93:0a:49:69:
8a:1d:f3:b6:f5:ac:3a:a8:c7:35:50:f5:29:18:82:8f:32:c5:
30:f1:58:d0:1f:89:20:1e:59:f1:56:64:42:43:b9:ab:b2:a6:
7e:85:1a:70:b4:ef:4d:0d:fb:77:53:aa:4e:82:54:84:7d:da:
1e:40:e9:30:f6:76:d8:63:ac:07:cb:4e:84:a5:09:ff:c0:26:
87:6d:74:38:77:d4:d4:37:52:6d:01:92:ef:a7:1c:29:84:55:
07:76:60:c5:cc:b2:26:34:d6:e6:ba:96:45:62:27:5e:ef:88:
79:a6:84:e3:ce:66:dc:e7:76:02:6c:0d:ea:97:76:e0:88:66:
62:a8:08:47:f3:6a:37:f2:a0:97:2c:e1:d7:d9:38:81:df:6c:
aa:8a:26:ce:a7:76:36:3e:ee:5e:09:57:66:31:ef:68:66:72:
2f:c5:fe:d9:8a:4f:79:8a:5c:71:0b:05:e5:5c:39:e3:28:f6:
7c:0d:7b:a9:a4:e2:4a:8b:95:ed:b8:26:32:d5:bc:33:9f:07:
96:c0:f8:67:d5:a9:44:d0:ea:0e:d2:e3:04:db:11:37:91:47:
16:d7:17:e1:b1:d7:f2:fd:2d:b4:f6:af:ef:08:f0:8f:58:b4:
c7:5b:b6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:54:25 2026 by rpki-client