Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft
File: tUMb1z4KfwN965fYLRqV_NZxBRw.mft (raw, json)
Hash identifier: RLeFZ8z/X2pHibwvku+mSx9ywbG++2WO+M6uu3fuEJU=
Subject key identifier: 3A:60:6A:0E:0F:F0:F8:B0:E6:FC:75:92:8D:0C:E0:DA:0E:3F:98:F8
Authority key identifier: B5:43:1B:D7:3E:0A:7F:03:7D:EB:97:D8:2D:1A:95:FC:D6:71:05:1C
Certificate issuer: /CN=b5431bd73e0a7f037deb97d82d1a95fcd671051c
Certificate serial: 019D262871A9D5B5DA92E44A3ADD78E8B7C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUMb1z4KfwN965fYLRqV_NZxBRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft
Manifest number: 0159
Signing time: Wed 25 Mar 2026 18:01:17 +0000
Manifest this update: Wed 25 Mar 2026 18:01:17 +0000
Manifest next update: Thu 26 Mar 2026 18:01:17 +0000
Files and hashes: 1: ptIvn2G44nmjMz4OoTPMvDGmQ4g.roa (hash: mVPD346A3srmdFGJdgacd5EA7ZXTURNtKW04Yxreb0M=)
2: tUMb1z4KfwN965fYLRqV_NZxBRw.crl (hash: 3NUBcNSFD+UG8GzYp5Gd/nS2HH4c0BE8ce/SOD3IHpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUMb1z4KfwN965fYLRqV_NZxBRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:71:a9:d5:b5:da:92:e4:4a:3a:dd:78:e8:b7:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5431bd73e0a7f037deb97d82d1a95fcd671051c
Validity
Not Before: Mar 25 18:01:17 2026 GMT
Not After : Mar 26 18:01:17 2026 GMT
Subject: CN=3a606a0e0ff0f8b0e6fc75928d0ce0da0e3f98f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:8e:92:7a:9d:ce:16:7e:32:fc:7e:bf:8a:57:
03:55:ec:96:d9:39:2e:10:20:2c:25:75:c6:49:6f:
d6:48:41:07:26:9a:bb:4b:ee:03:41:d7:82:c5:66:
0a:3c:89:e8:05:b7:a9:41:be:b8:be:99:ca:3a:d7:
e1:a7:e1:8a:24:64:1a:f0:a8:84:1e:8b:1a:06:7f:
39:ce:9d:13:16:ec:16:06:5a:ba:31:a8:93:4d:ae:
c7:3a:63:d6:4c:c6:66:3b:16:9d:b9:ea:90:d8:69:
13:6d:b7:1f:16:7f:6a:25:34:a4:56:af:ee:21:24:
fd:3f:ef:22:11:07:e8:7c:ed:6e:25:36:c7:66:e5:
5d:75:f2:51:12:96:b0:cc:89:27:77:2d:bd:5b:71:
d4:8b:6c:e9:e8:7e:fa:50:e2:3c:99:32:72:a5:57:
27:c5:d0:47:d7:1b:49:f4:62:d6:ad:9b:91:42:3e:
1f:6e:dc:e9:49:d0:e7:be:b6:8a:c5:48:78:6e:fd:
73:f1:67:30:08:9d:6f:be:f0:8d:e8:d1:d1:82:dd:
aa:96:08:8f:f5:24:e2:76:4f:b1:ec:07:a5:21:c7:
2e:a8:71:c5:c4:6e:b5:69:53:da:c3:02:21:16:e0:
e6:9e:5d:9b:78:0c:02:72:b9:a7:e0:69:02:7f:7b:
b5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:60:6A:0E:0F:F0:F8:B0:E6:FC:75:92:8D:0C:E0:DA:0E:3F:98:F8
X509v3 Authority Key Identifier:
keyid:B5:43:1B:D7:3E:0A:7F:03:7D:EB:97:D8:2D:1A:95:FC:D6:71:05:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUMb1z4KfwN965fYLRqV_NZxBRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:39:5a:97:3b:50:ba:81:89:46:b2:f0:c6:31:e8:8e:08:40:
2a:20:f5:e4:61:c3:de:35:1f:c0:5c:6f:e3:02:1a:47:25:d8:
c9:9f:87:53:80:9f:b8:b5:d6:6b:94:45:88:6f:14:c2:f7:49:
06:cf:e9:e0:f0:63:c4:fa:c2:e6:0e:6a:62:1b:d5:d2:c9:58:
0d:a6:9b:4b:52:55:ac:34:8c:f3:43:ec:c1:a3:91:ec:f1:e1:
35:b2:49:5b:59:c9:08:8d:ca:43:f1:72:aa:4e:dc:e9:59:ae:
6f:2b:88:27:b4:f9:d5:45:52:29:f7:fd:2c:01:56:9a:ec:9f:
97:bb:60:bb:cc:a0:60:c4:e7:f3:67:24:60:32:70:a3:59:6d:
77:ed:13:68:da:8d:68:5e:30:a9:eb:5f:74:a6:7a:6f:2b:9c:
e9:54:51:dc:1a:7d:da:a6:dc:ca:7f:d1:80:e8:0f:49:05:0c:
dd:9c:bd:a1:3c:1c:bf:97:b4:83:7c:fa:18:96:79:92:84:1e:
fd:ec:84:b3:ea:b0:8f:3e:63:f0:9c:90:e8:8d:90:c9:b9:d3:
2a:87:8d:11:db:ca:2d:a6:09:cd:ba:e0:dc:a3:c0:c1:66:20:
4a:e1:d0:cf:7e:ad:41:e3:03:e8:f9:48:c6:90:8e:72:3e:c0:
ef:b0:5c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:52 2026 by rpki-client