Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
File: tIoonrst1oBtYLjFrQNseY9mugY.mft (raw, json)
Hash identifier: w+wzTOi+yFHCsnO3mwnKz6HI+j7V/z2zT9oLxpgBits=
Subject key identifier: 04:84:74:63:02:5A:E1:29:77:46:04:7A:AF:F2:AE:32:3C:40:C6:F7
Authority key identifier: B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
Certificate issuer: /CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Certificate serial: 019D26964AA55BE1296F27219FBF3E844986
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
Manifest number: 0741
Signing time: Wed 25 Mar 2026 20:01:16 +0000
Manifest this update: Wed 25 Mar 2026 20:01:16 +0000
Manifest next update: Thu 26 Mar 2026 20:01:16 +0000
Files and hashes: 1: RIJmcpqsOyhRMT_8YH6FyORD_tY.roa (hash: vIj6Llw4m9MXR4LYPtKFKtVkVJTQSERGEAEPyXkjVmg=)
2: tIoonrst1oBtYLjFrQNseY9mugY.crl (hash: qaZkiQ6T4Fs9YPvuZUopvE45+A512VTVhN3qoXsCpmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:4a:a5:5b:e1:29:6f:27:21:9f:bf:3e:84:49:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Validity
Not Before: Mar 25 20:01:16 2026 GMT
Not After : Mar 26 20:01:16 2026 GMT
Subject: CN=04847463025ae1297746047aaff2ae323c40c6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:da:46:56:e0:6a:f3:43:79:8f:e2:7b:e8:4e:
4a:78:a6:b5:da:6e:d6:ea:1c:cb:45:13:88:03:b7:
25:34:a9:43:32:48:c8:69:59:80:f3:cc:19:28:99:
85:14:ce:58:e5:38:d2:7b:77:67:39:c5:c6:d7:df:
f7:1f:c8:0e:42:53:6e:97:31:35:9f:fa:f0:a9:b2:
63:18:00:f5:c1:70:10:0b:68:59:73:b9:a3:08:d3:
7b:15:78:f0:25:78:20:ee:06:41:dc:e4:f4:99:ba:
00:3b:c5:f2:a9:7b:ca:c4:dc:cb:57:ac:4e:3e:af:
d6:0a:7e:9d:08:d8:7c:96:9d:94:8e:4a:7a:2b:7c:
3b:46:95:aa:02:94:6e:9c:c8:66:91:5d:ce:a4:da:
0f:c4:f6:38:22:91:77:6d:a5:42:48:bf:08:31:10:
27:17:ef:fd:d9:54:f9:96:24:af:34:cd:13:a6:5e:
31:18:9c:6e:dd:1e:1d:11:b8:97:f1:c4:2d:c3:8b:
1a:43:31:bc:8f:29:19:2a:f3:a1:53:a0:88:cf:d9:
ce:14:10:79:f3:d9:68:6f:49:24:c6:ea:aa:c4:4d:
0f:54:ea:b8:49:0e:4b:78:a3:e9:7a:a2:7d:c7:dc:
c4:25:e9:fb:af:1b:91:05:c4:c3:1e:d8:7d:7f:2a:
36:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:84:74:63:02:5A:E1:29:77:46:04:7A:AF:F2:AE:32:3C:40:C6:F7
X509v3 Authority Key Identifier:
keyid:B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:10:8a:d0:f2:3a:b6:b5:3b:ea:bf:8c:00:24:2b:e1:fd:95:
10:44:2a:1e:d0:ea:6b:85:f4:9a:1a:3d:2b:ba:9a:1c:9b:b7:
66:e6:c3:29:1b:1b:51:2d:b6:7c:c2:51:7d:e1:ea:4d:9d:4a:
96:23:88:67:2b:a3:d8:eb:bc:37:25:a0:de:8e:aa:f1:51:70:
f1:8f:50:6f:a5:8c:f8:41:bd:fd:58:b5:34:a1:fe:9e:d2:71:
2b:1c:6e:49:96:5f:56:3d:23:b1:9f:9a:fe:90:f3:bb:e8:38:
57:75:47:c7:78:68:3e:4e:c7:fc:32:9e:c7:07:5a:3d:b0:91:
ad:0d:32:47:e8:9d:0d:74:29:43:d8:da:7c:4d:75:35:56:14:
7a:9b:fe:9e:83:88:4a:03:5b:51:56:a3:df:33:a6:9b:43:dc:
52:3e:bc:2b:6d:af:72:b6:a1:a2:e1:cf:27:6a:a9:c5:ba:73:
19:5d:54:55:29:9e:ea:0a:aa:c6:5b:02:2f:58:3c:70:a3:c5:
11:32:f0:61:35:35:2c:ad:b4:fe:5d:9f:30:db:3e:c2:c3:5c:
63:be:c5:fc:aa:90:77:1c:a9:f6:d3:15:dc:1e:38:a2:75:3c:
48:d9:ae:3f:7b:0b:37:50:59:2c:5e:4a:56:4e:1d:66:41:51:
47:c3:e5:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:05:27 2026 by rpki-client