Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: GG29185qd46XAipBzUJg+5++u2dk0jGSKHyQfFUL/A4=
Subject key identifier: 85:BA:D7:87:F5:F6:77:B2:89:4B:F4:CC:F4:F0:CD:65:8C:F4:66:36
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 019D2628A7888596B3932B65CBD1379D13CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 18:01:31 +0000
Manifest this update: Wed 25 Mar 2026 18:01:31 +0000
Manifest next update: Thu 26 Mar 2026 18:01:31 +0000
Files and hashes: 1: UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa (hash: gTNgkF2m3yFT5Gp1TKn07e+49JHxGZGWx9toGyIkemc=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: 3jYRdEDFu26mqxN8ad0/LZbOuwNBA9tXtIwOxDKDA4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:a7:88:85:96:b3:93:2b:65:cb:d1:37:9d:13:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Mar 25 18:01:31 2026 GMT
Not After : Mar 26 18:01:31 2026 GMT
Subject: CN=85bad787f5f677b2894bf4ccf4f0cd658cf46636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a7:4a:20:5f:46:d9:b9:00:d2:8e:ff:39:18:
fd:65:65:fd:68:6b:9f:41:a5:49:39:41:d0:78:01:
65:36:ec:e5:53:89:cc:9e:4d:4c:9a:06:da:ff:c7:
c8:06:81:54:b6:74:87:34:41:b2:6d:48:27:8a:b6:
10:63:4e:7f:df:cd:6f:5b:c3:4e:2b:3e:e4:11:41:
86:06:2e:33:c4:bf:51:ba:69:4b:e3:7f:cd:75:d5:
3e:50:b9:0d:6d:21:54:e6:fa:89:55:47:8f:b7:15:
f9:98:c5:95:7a:f1:0a:95:2a:d4:51:85:e3:59:97:
d1:fb:f8:cf:4e:ec:7e:67:b8:8a:a3:2f:2e:20:26:
52:95:a4:fe:ac:94:f8:ab:bf:71:93:e9:cb:ae:f1:
ad:34:5f:ab:6b:04:be:9b:b7:85:1b:86:6a:0d:e2:
10:b9:40:61:a6:da:77:21:1e:3b:12:11:59:42:87:
91:8a:0a:f2:2b:14:c5:d6:49:f7:53:32:53:11:07:
a1:c4:ce:7e:59:1e:07:06:24:0e:ff:2d:36:75:a8:
2e:49:dd:ed:12:4f:cc:78:52:56:56:5c:a0:82:32:
10:33:d5:9e:a1:7a:1c:44:fd:37:a3:46:9a:4d:c9:
4e:f1:b7:51:46:3e:b4:ac:f7:17:65:e6:af:ba:19:
16:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BA:D7:87:F5:F6:77:B2:89:4B:F4:CC:F4:F0:CD:65:8C:F4:66:36
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:23:72:1b:b0:8e:bc:2b:61:0d:12:22:94:95:67:6a:0d:07:
52:4d:ec:da:5d:8a:bb:29:4d:9c:f5:cd:ee:cb:15:d3:9c:e8:
2e:81:54:17:41:8e:89:26:d0:9d:ae:a5:ec:a6:a2:f5:04:d8:
e6:54:6a:c8:2b:db:a8:6a:9f:20:83:9f:f4:45:b1:e8:4a:39:
cd:66:92:09:d3:97:0f:25:8a:19:e4:c6:39:28:e4:b4:04:c3:
a4:44:8e:0c:7e:e8:69:66:84:c6:33:5e:59:0a:7a:28:83:5b:
0a:8d:be:79:a8:0c:00:94:d3:7e:be:d0:d2:cf:cb:8e:12:7e:
ea:b0:20:12:44:98:25:25:c0:aa:1a:f6:43:56:5d:19:95:7f:
6f:d2:e0:e5:3e:84:cb:b5:96:59:e9:3d:9f:42:e2:47:d0:8b:
f1:f3:19:e5:a5:97:c2:f9:41:72:45:bc:f3:44:d0:dd:2c:bb:
48:78:83:1b:ba:c0:e5:66:85:eb:ee:30:2a:34:28:89:68:85:
0e:5d:a7:7e:6e:04:45:49:35:34:7a:78:ce:02:4b:ea:75:c4:
a7:ca:a3:4f:ae:64:99:b7:38:14:f5:a4:ce:6b:9e:d4:b2:b0:
f0:7b:6b:3f:17:83:8b:19:86:5a:c7:6d:b4:17:93:1a:81:b1:
2d:ba:33:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:56:19 2026 by rpki-client