Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
File: tRYDJr5-XNw1tcA2RBFjzSWkl00.mft (raw, json)
Hash identifier: 3JJm+3iX8A7BwQ55A3jI+VEA4BY6c8iqPjiLQlCbViQ=
Subject key identifier: E1:D5:A4:8A:AF:13:A3:92:4E:DC:3F:F2:FE:2D:22:77:8C:35:6F:F1
Authority key identifier: B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
Certificate issuer: /CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Certificate serial: 019D27722DE5C66158267D4FD8A7AEA20736
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 00:01:27 +0000
Manifest this update: Thu 26 Mar 2026 00:01:27 +0000
Manifest next update: Fri 27 Mar 2026 00:01:27 +0000
Files and hashes: 1: 5f-UuDoTp5gYMURYo2jt2lK0wo0.roa (hash: Xs27w1pjtbaPiwS7XxbIK5JOznQzGRl8strYBgv7AYc=)
2: tRYDJr5-XNw1tcA2RBFjzSWkl00.crl (hash: gPZz+RW/BS9HR9FZyVaPOnhfoOAJ86CplOMaPw0ZeWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:2d:e5:c6:61:58:26:7d:4f:d8:a7:ae:a2:07:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Validity
Not Before: Mar 26 00:01:27 2026 GMT
Not After : Mar 27 00:01:27 2026 GMT
Subject: CN=e1d5a48aaf13a3924edc3ff2fe2d22778c356ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:49:ff:ab:7e:b6:b3:a2:48:2a:dd:5f:d0:ae:
5f:1a:91:f2:b0:4a:1a:d2:5b:7d:f9:08:c9:71:f6:
73:99:9e:73:97:29:53:fe:72:ff:4e:3a:fd:30:b3:
22:5b:45:d2:37:5f:f6:ec:60:62:a6:85:ab:e0:de:
ed:9f:5d:bf:73:39:d7:b7:49:e4:64:a4:44:0d:73:
dc:39:55:f3:5e:2e:f3:34:a1:9b:52:66:70:d4:bc:
71:56:03:29:29:ca:fa:cf:64:3b:77:40:d5:09:65:
e8:bc:93:1b:2e:83:14:63:20:e2:f5:fb:c5:8c:85:
70:c7:e3:c5:c7:cf:3c:a7:25:62:95:53:59:91:d3:
bb:58:a6:10:c2:08:92:d3:eb:6e:25:0a:01:61:08:
73:20:15:30:93:94:a3:cc:f6:97:32:a6:83:e4:a3:
5c:50:25:26:4e:b7:df:d1:8e:45:6d:10:ba:c7:08:
a3:a1:88:fc:5b:43:5b:e2:da:bc:ce:7c:92:ca:9b:
c3:d9:5b:97:76:77:7f:99:41:d1:a2:6e:06:b6:af:
5d:6e:bd:d8:5e:c0:4e:de:c4:17:f5:0b:33:a2:2d:
ea:6a:ee:16:2d:5b:29:8e:32:c3:69:12:de:da:c5:
7d:e1:00:d6:2c:93:14:a7:f7:0c:b8:ce:4a:e2:b7:
a8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D5:A4:8A:AF:13:A3:92:4E:DC:3F:F2:FE:2D:22:77:8C:35:6F:F1
X509v3 Authority Key Identifier:
keyid:B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:89:f6:d2:1f:5b:f1:d9:e3:1b:b1:f4:74:2f:f8:39:32:c7:
5c:89:09:47:f1:e3:a5:60:77:52:c4:4b:92:f6:0f:58:3a:76:
81:06:08:6a:13:fc:cb:a9:bb:d3:31:ac:ed:7b:00:46:6b:34:
67:de:77:f4:48:64:d8:0f:f9:d7:77:21:dd:44:21:21:fc:78:
5d:9c:1a:65:fd:59:eb:6f:72:38:35:05:01:4c:d3:f1:50:80:
bd:c0:e3:c9:c0:e6:41:49:1d:97:17:8e:23:c1:55:b0:0a:a3:
48:0b:72:d2:96:57:d2:54:45:78:b4:7c:fa:b1:d2:4d:ee:91:
85:c3:2c:fd:e4:a1:bc:da:6b:d6:57:c3:b7:a9:c4:0e:c4:26:
8e:f0:4c:c9:0f:1f:7b:44:62:29:be:c9:a5:f6:23:ca:95:83:
2c:c3:10:90:61:11:e7:ae:25:39:51:4b:18:23:21:bf:89:9a:
84:fe:19:91:f0:e9:84:72:a5:5a:29:46:51:9a:6b:e1:7b:af:
8d:da:c7:c9:9a:57:34:45:c2:f3:0e:e1:89:58:dc:71:63:34:
ea:dd:05:a0:a2:35:71:ae:45:b0:30:27:6d:99:4c:13:1d:24:
39:d2:75:da:16:49:96:e0:6a:0c:fd:aa:a5:53:cf:9e:8f:6a:
31:46:91:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:39:18 2026 by rpki-client