Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
File: TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft (raw, json)
Hash identifier: s0iJNrCNdmqAMxxQucxogMwypInug4yDQ+1uMvTWRpA=
Subject key identifier: 7F:4E:71:BE:AA:65:F8:6A:1E:C6:47:03:DA:FC:FB:35:C7:24:B5:89
Authority key identifier: 4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31
Certificate issuer: /CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231
Certificate serial: 019D2703F7B893B000A813C75B4BCF5C19DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 22:01:04 +0000
Manifest this update: Wed 25 Mar 2026 22:01:04 +0000
Manifest next update: Thu 26 Mar 2026 22:01:04 +0000
Files and hashes: 1: HvD-KyEebZg0h4HW06zJm6RwnGU.roa (hash: VtrmuoyXYF78h8UEa9MliL+Xy0F2Gl7FRj7/hpHAjYA=)
2: TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl (hash: B6k60xm3us0sx+YpYBYC9Se9zqiJElqQwPui6UdecTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:f7:b8:93:b0:00:a8:13:c7:5b:4b:cf:5c:19:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c4be43394a7c2bf1e8fdfbb1d506fa37ac73231
Validity
Not Before: Mar 25 22:01:04 2026 GMT
Not After : Mar 26 22:01:04 2026 GMT
Subject: CN=7f4e71beaa65f86a1ec64703dafcfb35c724b589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:87:e4:b1:cc:02:4b:43:a5:92:1d:8a:f5:
13:77:f6:e2:de:6d:78:a9:b3:0d:08:93:ff:de:78:
7b:87:be:ab:2f:4c:33:c3:ce:92:67:57:65:38:dc:
57:ef:d9:25:bc:6e:e0:4e:79:62:dd:ad:3f:29:e7:
f7:84:a6:b3:b0:9c:2a:00:85:33:6e:c6:be:c3:85:
09:78:6a:27:c1:56:82:55:90:00:e9:e9:53:7c:8a:
31:52:88:4f:af:89:71:d7:0a:fb:79:dd:11:0b:ad:
5d:ed:ba:ea:7a:c0:e9:65:03:19:4f:1f:14:d5:d9:
b2:e2:72:9f:22:bf:60:75:20:8b:cc:ad:5c:c0:f3:
bd:d8:0d:2d:7b:94:40:e4:7b:1b:09:7f:7b:45:66:
6a:e1:e7:0e:93:74:bf:d2:82:14:a1:bf:03:bb:e2:
ff:ef:28:f5:2f:c4:48:a4:7e:d8:17:83:a2:10:ed:
cf:cb:ec:b2:4e:3c:17:fb:84:f1:ff:fb:7d:e3:4c:
bb:62:24:4c:cd:45:b7:dd:93:86:8b:04:de:7b:fa:
fd:e8:5c:2d:15:32:2d:3c:f9:1b:8b:83:ab:c3:b1:
05:e2:21:e2:a2:e7:ca:91:24:79:aa:ba:f5:32:f1:
16:4b:29:0c:4b:f5:da:3c:da:e8:27:b8:98:31:36:
c3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4E:71:BE:AA:65:F8:6A:1E:C6:47:03:DA:FC:FB:35:C7:24:B5:89
X509v3 Authority Key Identifier:
keyid:4C:4B:E4:33:94:A7:C2:BF:1E:8F:DF:BB:1D:50:6F:A3:7A:C7:32:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEvkM5Snwr8ej9-7HVBvo3rHMjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a5056f-6948-4130-9077-5f3d06f6a5d2/1/TEvkM5Snwr8ej9-7HVBvo3rHMjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:d3:6a:92:8d:8a:fd:66:44:e0:d4:b7:21:35:66:92:de:cb:
70:02:1e:3f:39:a1:3d:a3:83:5b:91:e6:f2:7e:49:06:0d:94:
57:17:fd:08:80:79:81:33:fd:11:af:07:ad:9f:8e:53:5b:55:
1a:4e:74:16:d4:6a:cf:0e:88:98:81:07:89:2b:8f:90:c8:72:
5e:b0:a3:44:02:5c:b9:95:45:b3:9d:54:5b:88:7f:29:58:3c:
7e:5d:67:d8:84:7a:12:d5:7c:4e:1e:27:38:4b:0e:79:db:1a:
e1:7d:99:ed:ae:0c:ce:ea:ee:7b:c1:86:07:d5:b4:4b:5b:8d:
1b:4d:cb:75:e1:c0:7d:b9:71:35:40:ff:d9:ff:d5:ee:bf:e5:
19:f5:71:d0:3e:3e:a9:36:37:7d:43:e4:f8:b9:af:47:cf:4a:
51:93:29:4d:5f:c2:b4:e6:fe:4e:53:5f:38:de:7d:a4:76:3c:
39:f0:3d:57:eb:3a:3b:12:3b:74:be:8a:41:5e:8f:c8:f9:36:
7a:1f:e8:4f:22:10:e3:a6:71:b7:08:4a:73:d0:3f:70:60:c0:
49:b5:dc:fd:e5:5d:03:46:26:e6:51:3c:63:0a:10:07:67:34:
c5:13:63:c4:14:7c:d1:96:9e:f8:b4:ef:8d:cf:ba:db:f8:ca:
4f:6d:06:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:00:09 2026 by rpki-client