Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
File: a-tglLyrS9Ox9vVsUYK6EiDiK28.mft (raw, json)
Hash identifier: 7Oav5gm6KKHLI/vDzoHqdeih6oO8Z7CVq5HmZmoI2eM=
Subject key identifier: F4:B1:FA:13:FE:34:25:70:C8:CB:A1:B2:38:F5:B1:8E:DF:1D:D0:EA
Authority key identifier: 6B:EB:60:94:BC:AB:4B:D3:B1:F6:F5:6C:51:82:BA:12:20:E2:2B:6F
Certificate issuer: /CN=6beb6094bcab4bd3b1f6f56c5182ba1220e22b6f
Certificate serial: 019D26962B5D67F4E8FA59565793585120BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
Manifest number: 0707
Signing time: Wed 25 Mar 2026 20:01:08 +0000
Manifest this update: Wed 25 Mar 2026 20:01:08 +0000
Manifest next update: Thu 26 Mar 2026 20:01:08 +0000
Files and hashes: 1: ZapQiAtJnc9a1-GW4H20whNpSZw.roa (hash: hZ+kaGEM7fGXJLA7SsYpcn/FFyPh/7kbyCyQAEi9eHM=)
2: a-tglLyrS9Ox9vVsUYK6EiDiK28.crl (hash: fvm9PFy5hjaEjR/87xhG/I9J7oVEOiYIIBFYuZ8wpOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:2b:5d:67:f4:e8:fa:59:56:57:93:58:51:20:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6beb6094bcab4bd3b1f6f56c5182ba1220e22b6f
Validity
Not Before: Mar 25 20:01:08 2026 GMT
Not After : Mar 26 20:01:08 2026 GMT
Subject: CN=f4b1fa13fe342570c8cba1b238f5b18edf1dd0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:34:ce:fb:28:44:3b:76:26:b3:d8:ab:f9:75:
2f:3d:53:b9:3c:92:cc:3e:37:19:51:38:8d:33:32:
59:1e:f5:2e:a3:c0:5e:e4:32:41:ae:bb:77:e0:34:
12:1c:02:c7:e2:f6:54:27:a8:bb:5c:3e:c9:1c:a7:
db:32:bd:39:78:01:02:fb:b2:76:8a:d9:68:8c:75:
04:5e:b2:d5:6b:a6:1c:ba:b7:21:c5:48:80:9f:d7:
27:e7:b9:a4:51:3e:d3:9d:36:d4:5e:01:4c:e1:89:
0f:bc:a0:a7:d9:a8:90:39:28:12:02:08:47:af:85:
d8:b6:bd:67:0a:44:0e:34:17:e6:f9:a7:a7:0f:28:
e9:7a:a2:15:ee:6f:d5:cd:6d:df:63:37:db:21:96:
f8:ea:75:99:72:7c:3b:aa:a1:18:93:25:dc:10:ab:
db:4b:d1:91:86:7c:c8:8a:48:f1:0a:f0:3e:73:42:
f9:dc:c0:bc:d2:24:45:ad:ff:d1:66:6b:f6:4a:c5:
a9:20:20:3d:14:3d:32:f0:da:05:a3:0f:f0:4f:23:
76:74:56:6c:af:e7:a8:03:fc:b4:45:a8:c7:38:75:
47:d5:25:27:21:57:bb:21:54:d3:a2:13:cb:be:92:
05:a4:4b:59:d3:47:b7:26:c7:a1:15:09:de:18:86:
25:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B1:FA:13:FE:34:25:70:C8:CB:A1:B2:38:F5:B1:8E:DF:1D:D0:EA
X509v3 Authority Key Identifier:
keyid:6B:EB:60:94:BC:AB:4B:D3:B1:F6:F5:6C:51:82:BA:12:20:E2:2B:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:49:c8:71:02:9c:ca:30:60:b8:44:83:c0:06:d8:ed:1e:23:
9b:61:cb:00:38:b0:49:97:89:ab:22:a0:fb:c2:b5:21:14:64:
54:bf:a2:f1:3c:d7:fb:fc:7b:f1:65:39:ae:08:9f:71:5b:15:
06:5f:f8:b9:09:c4:a1:91:d7:04:07:0b:03:d7:78:3b:ae:9f:
10:0b:7f:1c:30:17:0f:d7:3a:34:5d:d5:0c:29:c5:14:bf:7e:
b7:e4:f3:ce:a5:1e:6e:08:04:18:89:df:5d:b6:f5:c1:7c:d3:
95:78:68:ce:97:c2:0c:25:16:f5:01:b6:ba:20:a9:e9:22:db:
fe:ce:32:75:da:51:07:52:9c:f7:14:95:aa:b7:d6:24:94:2f:
78:df:ae:8e:a2:ae:55:22:74:07:bc:6a:56:e1:5a:d2:a9:d8:
ed:8b:08:e5:11:bb:8f:7d:05:15:6b:8a:76:2d:48:dc:38:b1:
d8:76:39:02:ac:4c:7e:a2:70:6c:bc:c3:d4:5b:f4:bb:32:9b:
fe:5e:06:ca:8e:76:b6:c8:30:96:67:30:93:b8:07:a8:47:c6:
b7:c9:fd:4f:72:24:7b:64:8f:0e:94:c0:6b:bd:73:92:23:7a:
5c:b7:26:5e:69:31:87:f5:cd:03:03:51:54:e5:dd:c3:79:7e:
a5:dd:88:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:20 2026 by rpki-client