Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: 0wAALRtkB5soe37436F9vfSkBwxIjcNmPo2iP8UWKjc=
Subject key identifier: 75:E6:80:5D:CD:04:C6:F6:C9:5C:F2:11:C8:AE:E7:4B:0D:1D:80:D9
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 019D27A8A643F7FCDBE4B2AD31B1C67145C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 01:00:57 +0000
Manifest this update: Thu 26 Mar 2026 01:00:57 +0000
Manifest next update: Fri 27 Mar 2026 01:00:57 +0000
Files and hashes: 1: gn4_joE3Kg7Iuvtn8_CsNV3N_rY.roa (hash: inZ7mhN1iTFUjJSaH+6rFZpFzgOqpsU8gKqes5JxewU=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: Iqj6o/5wwvPlQMLDZDXEGTIOOtULS0WCbVBLSewvOlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:a6:43:f7:fc:db:e4:b2:ad:31:b1:c6:71:45:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Mar 26 01:00:57 2026 GMT
Not After : Mar 27 01:00:57 2026 GMT
Subject: CN=75e6805dcd04c6f6c95cf211c8aee74b0d1d80d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:82:0f:ae:17:64:45:cf:ef:1a:29:b3:fe:9f:
a4:6e:9f:d9:1b:b1:ab:46:70:3b:f1:9b:2b:e5:f4:
00:0f:58:ad:03:7b:5f:37:97:12:77:7a:d6:3c:e7:
96:09:ed:d4:52:8a:4b:02:86:0e:3e:17:28:33:83:
f8:86:87:82:b3:b5:e1:44:32:e5:51:be:84:bf:9b:
25:83:01:bd:40:6d:69:b0:31:a9:1d:f7:6b:7b:71:
98:98:8c:41:55:40:a0:04:ee:a0:a0:23:10:08:2b:
4b:54:91:e6:46:3c:3a:9a:c1:62:55:fb:ef:4c:ac:
80:44:be:c2:3a:87:92:c8:86:82:85:d4:ee:08:94:
0c:e9:a6:90:80:b6:4a:e2:07:79:42:03:e8:d0:c5:
b1:3a:61:2d:3b:e6:38:01:48:fe:67:5c:d5:8c:71:
ea:af:13:03:05:6e:70:59:0b:09:04:1f:49:dc:60:
11:d9:36:80:65:0b:04:d6:b5:9c:42:66:af:54:17:
e1:04:a2:b1:01:99:14:17:08:75:a8:9e:16:d3:33:
e0:c2:4b:c3:39:7a:fc:2f:45:f9:ec:ba:2b:81:df:
e7:27:40:59:ac:e2:46:22:34:97:53:3e:53:98:96:
59:2d:cd:68:ff:12:89:1c:bf:64:ed:86:ac:8e:57:
96:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E6:80:5D:CD:04:C6:F6:C9:5C:F2:11:C8:AE:E7:4B:0D:1D:80:D9
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:6e:4d:a9:98:5c:23:73:85:93:6a:89:b1:25:cc:9e:4a:92:
84:81:ed:71:db:1a:42:14:2e:9c:3c:a0:bd:2e:f1:d5:37:f2:
ce:ab:b7:b3:e3:ff:a7:5d:37:97:54:dd:45:24:09:d6:f3:1d:
11:ec:eb:1b:14:ea:91:a7:4e:38:2f:61:0b:83:99:68:d3:e1:
0e:1c:13:6e:ad:55:69:e4:a5:ec:81:5d:32:8a:69:3e:8a:8b:
78:75:ca:56:06:bb:57:ab:94:db:21:32:1d:0b:fc:6e:f6:cc:
42:00:28:23:68:66:40:fc:16:45:0f:1a:af:78:9e:fb:5f:0a:
33:35:18:1b:4d:d4:38:1e:e6:65:ea:61:81:ac:a2:2b:b2:e8:
8a:23:61:c2:dd:23:03:1c:9b:a2:a1:93:52:23:ab:e5:05:4d:
71:05:17:a3:d5:74:15:79:b7:6d:b4:ca:3b:77:dc:25:ee:fb:
ce:c3:fd:86:85:35:92:72:99:9b:a7:93:de:71:96:7c:ed:03:
2d:2a:67:75:01:7f:ea:e6:a2:9b:8f:e3:14:ab:86:00:57:8f:
20:57:3c:6b:db:50:a5:7a:2b:26:ff:aa:7b:56:b4:ba:d3:c7:
04:e5:8b:c5:34:d8:ba:d9:f0:9f:66:0f:92:24:3e:85:76:a4:
a8:76:8c:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nqKZD9/zb5LKtMbHGcUXFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MTg0MWNkYzlmNjM1OTRkZGRjMmJhNTlhNDAxMzMxODJi
NTc5ZmEwHhcNMjYwMzI2MDEwMDU3WhcNMjYwMzI3MDEwMDU3WjAzMTEwLwYDVQQD
Eyg3NWU2ODA1ZGNkMDRjNmY2Yzk1Y2YyMTFjOGFlZTc0YjBkMWQ4MGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oIPrhdkRc/vGimz/p+kbp/ZG7Gr
RnA78Zsr5fQAD1itA3tfN5cSd3rWPOeWCe3UUopLAoYOPhcoM4P4hoeCs7XhRDLl
Ub6Ev5slgwG9QG1psDGpHfdre3GYmIxBVUCgBO6goCMQCCtLVJHmRjw6msFiVfvv
TKyARL7COoeSyIaChdTuCJQM6aaQgLZK4gd5QgPo0MWxOmEtO+Y4AUj+Z1zVjHHq
rxMDBW5wWQsJBB9J3GAR2TaAZQsE1rWcQmavVBfhBKKxAZkUFwh1qJ4W0zPgwkvD
OXr8L0X57Lorgd/nJ0BZrOJGIjSXUz5TmJZZLc1o/xKJHL9k7YasjleWRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHXmgF3NBMb2yVzyEciu50sNHYDZMB8GA1UdIwQY
MBaAFLUYQc3J9jWU3dwrpZpAEzGCtXn6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mMGFmNjEtOGNjYy00YTNiLTkwMTAt
NjkxMGYzOTlkMzhmLzEvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9mMGFmNjEtOGNjYy00YTNiLTkwMTAtNjkxMGYzOTlkMzhm
LzEvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaG5NqZhc
I3OFk2qJsSXMnkqShIHtcdsaQhQunDygvS7x1Tfyzqu3s+P/p103l1TdRSQJ1vMd
EezrGxTqkadOOC9hC4OZaNPhDhwTbq1VaeSl7IFdMoppPoqLeHXKVga7V6uU2yEy
HQv8bvbMQgAoI2hmQPwWRQ8ar3ie+18KMzUYG03UOB7mZephgayiK7LoiiNhwt0j
AxyboqGTUiOr5QVNcQUXo9V0FXm3bbTKO3fcJe77zsP9hoU1knKZm6eT3nGWfO0D
LSpndQF/6uaim4/jFKuGAFePIFc8a9tQpXorJv+qe1a0utPHBOWLxTTYutnwn2YP
kiQ+hXakqHaMjA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:55 2026 by rpki-client