Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft
File: tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft (raw, json)
Hash identifier: 55ESwfGjcOSrGyMhgMU9DV60cexJPhcOAzvwIBjixoo=
Subject key identifier: 4A:42:49:76:CA:DC:2A:B0:E7:11:F3:26:2D:ED:41:93:FE:E5:17:D3
Authority key identifier: B6:91:FF:C8:65:9E:2E:63:A6:DE:CE:C7:D6:F3:6D:60:B6:64:09:61
Certificate issuer: /CN=b691ffc8659e2e63a6decec7d6f36d60b6640961
Certificate serial: 019D26CD37397FC941225E7E563384D946DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft
Manifest number: 0130
Signing time: Wed 25 Mar 2026 21:01:16 +0000
Manifest this update: Wed 25 Mar 2026 21:01:16 +0000
Manifest next update: Thu 26 Mar 2026 21:01:16 +0000
Files and hashes: 1: CnAOgW0v2FHhY7xG5Ek16W61Xwo.asa (hash: BYtVtXvNLu7yhVLJxNiUtZ/vkS0B93JK13XOxYFj8W8=)
2: tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl (hash: DUzCs+7L0HGlVWz6mN/PCF9QdoKYIvbWxvs5DJ5U3X8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:37:39:7f:c9:41:22:5e:7e:56:33:84:d9:46:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691ffc8659e2e63a6decec7d6f36d60b6640961
Validity
Not Before: Mar 25 21:01:16 2026 GMT
Not After : Mar 26 21:01:16 2026 GMT
Subject: CN=4a424976cadc2ab0e711f3262ded4193fee517d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ed:44:2c:e5:e1:92:9b:f7:a5:3a:1d:d9:58:
15:8a:b3:8a:8b:b6:54:ea:3f:67:52:12:a1:59:2d:
60:b5:f6:09:2a:76:74:b5:b9:a0:10:16:76:8c:37:
c5:6b:01:59:5d:b6:1f:6f:2c:4f:a7:57:b2:21:ed:
b0:8d:b7:2f:48:b1:d4:19:70:27:fe:3c:44:40:ec:
14:50:14:4f:2e:25:90:69:1a:40:17:62:d5:a0:7a:
2f:15:bd:4b:fc:56:f9:3d:06:44:b8:c2:d5:62:91:
1d:04:10:85:c0:a5:a9:91:bb:70:6c:7f:ff:04:ad:
ef:12:31:d8:9b:0d:bb:c0:16:e9:c3:7f:7f:cc:44:
89:ad:95:da:36:d9:9b:3c:a4:af:2b:98:cc:25:e5:
b7:1a:64:48:e4:b5:a8:e4:b5:8d:12:fc:5f:dc:fb:
7d:2d:52:6b:9d:07:a1:59:31:7b:71:2a:9d:58:57:
2c:66:2f:15:69:a8:05:33:87:a7:27:b1:e2:c7:34:
9a:9b:e8:3d:f7:b3:45:e6:3e:ea:03:7f:e2:08:cf:
ee:cc:1f:db:18:da:f6:60:98:4b:ae:ab:62:b4:36:
24:86:d2:93:39:10:f6:04:81:20:a6:e5:34:a3:24:
03:a4:77:0c:bf:60:e2:c6:9b:dd:d8:36:fe:13:67:
9d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:42:49:76:CA:DC:2A:B0:E7:11:F3:26:2D:ED:41:93:FE:E5:17:D3
X509v3 Authority Key Identifier:
keyid:B6:91:FF:C8:65:9E:2E:63:A6:DE:CE:C7:D6:F3:6D:60:B6:64:09:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:30:3b:8c:d0:b1:48:72:8a:db:47:ad:d7:3b:1e:46:42:96:
25:26:e1:c5:c7:b8:a9:5c:40:87:79:dd:95:84:a1:58:2d:2f:
41:6a:cd:96:89:62:aa:03:b8:22:1e:39:f1:23:4c:83:6c:34:
0f:63:2e:a7:4f:20:70:35:21:b1:3b:63:1a:06:50:e1:6d:fc:
50:2f:be:e0:b5:fd:be:1f:08:e9:56:e3:55:eb:b4:0f:e4:72:
06:23:d9:79:64:a1:a5:8c:1f:f4:93:b9:12:03:69:62:f0:fb:
96:60:ad:b7:de:48:76:2c:87:e6:70:2f:4c:c8:15:17:a7:db:
4a:50:53:50:75:32:5f:2c:af:e8:f6:98:4b:df:07:48:5e:8c:
85:e7:2e:b0:8d:3e:40:aa:ac:8f:b5:c9:94:88:8e:80:b5:96:
98:9d:68:2d:a1:36:e4:2b:23:b9:78:d0:14:14:f9:5d:23:a8:
9b:3a:9d:68:a5:6f:88:5d:4b:69:8c:a6:31:ad:cf:b3:fc:76:
e0:ce:93:52:ba:63:93:d5:7e:1e:2d:ce:6e:ad:c2:f5:e7:d0:
eb:b9:2a:b8:bb:ec:cc:34:ff:a4:90:55:d0:37:ca:ed:1c:ef:
08:a4:10:d2:0c:b5:38:d7:fd:ab:4b:c2:99:1f:27:d9:cd:4d:
36:3f:8e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:07 2026 by rpki-client