Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: RYJ3awyVb4tTa92/crsN2rAxNTjGyGMgsP5zZvrW5rg=
Subject key identifier: E5:E5:C3:50:7A:CC:8F:4B:A5:94:C0:2B:49:D1:02:A6:56:FD:5D:C8
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 019D34895BE8570BC2B6CE019E8C3BE4A1D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 188E
Signing time: Sat 28 Mar 2026 13:01:50 +0000
Manifest this update: Sat 28 Mar 2026 13:01:50 +0000
Manifest next update: Sun 29 Mar 2026 13:01:50 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: IYeJtXWbpeUZjyJl2EvxKmhAwFSe45aUG36Y/McpVVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:89:5b:e8:57:0b:c2:b6:ce:01:9e:8c:3b:e4:a1:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: Mar 28 13:01:50 2026 GMT
Not After : Mar 29 13:01:50 2026 GMT
Subject: CN=e5e5c3507acc8f4ba594c02b49d102a656fd5dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:92:4f:fc:17:b3:16:ad:1d:ef:a9:0f:b1:a8:
7a:9d:1c:af:cf:d0:59:2a:76:29:e0:d3:cb:65:d1:
c8:a8:3d:19:62:78:82:aa:88:81:61:ec:bc:40:2e:
d1:a4:2f:94:76:d4:29:59:b9:00:05:9a:dd:c5:42:
3a:8f:76:63:e5:1b:db:30:74:cf:ee:2c:de:e2:20:
7c:e7:e8:4f:13:97:e6:28:a3:e9:96:be:64:89:6a:
a8:17:6d:f0:ec:ad:db:ec:3a:9d:af:a9:67:e7:16:
be:bf:26:81:f6:29:b5:11:9e:a7:1f:28:37:18:9b:
3e:4b:3f:66:a1:ce:6f:87:0f:fb:72:5e:f8:17:93:
d0:47:34:89:f7:3e:44:d4:db:56:14:64:0f:24:3e:
49:79:5a:a9:38:fd:2b:44:9f:74:97:eb:4d:b9:d6:
03:d9:d8:83:1b:3c:be:dc:a8:56:b4:0b:18:1e:24:
67:15:7c:7d:90:07:8c:e9:4e:bc:fb:25:90:be:b4:
d2:64:5e:35:ad:94:aa:6a:8e:ed:d5:f0:27:90:a3:
e3:7b:78:65:4e:1c:c1:2b:a1:f0:fa:ee:ba:13:f0:
89:78:31:9d:11:16:86:bf:d2:15:80:a2:60:5e:0c:
66:07:01:2f:97:8c:9c:7d:e2:d6:c6:78:eb:c8:9d:
c3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E5:C3:50:7A:CC:8F:4B:A5:94:C0:2B:49:D1:02:A6:56:FD:5D:C8
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:c1:7a:72:66:95:9c:d0:0a:f9:45:d8:b0:cb:d1:1c:c7:7a:
5c:63:59:5d:aa:85:43:d3:66:04:db:80:55:5b:76:4b:60:48:
2f:0c:2c:8c:7b:f9:db:a0:43:9d:36:b9:74:2d:2d:33:99:4c:
ed:71:04:3c:1f:93:96:4c:81:51:f0:cf:9d:c8:30:dc:59:f4:
5d:50:f2:73:4a:9d:c2:0b:4e:76:cd:97:9a:d9:f9:22:31:05:
76:1f:2a:15:1f:a1:b6:a1:24:e5:ef:e7:8e:6c:52:69:2f:6b:
6d:ef:78:79:51:0f:e3:cd:db:b1:b5:cb:5a:84:8e:d5:71:62:
8a:28:dd:6b:7c:bf:e1:2e:47:cb:0f:6c:37:ce:25:14:41:b6:
62:4c:79:62:e2:0b:48:72:f4:ec:46:70:b5:08:56:e1:4f:07:
66:78:99:7f:15:a4:9b:ba:2e:1e:b0:77:61:54:cb:8e:b0:64:
25:be:3f:42:40:fe:45:8d:04:b1:b9:0b:37:c5:32:2e:68:9f:
5a:b0:c2:43:cf:ac:69:ec:6b:28:ef:db:b8:53:fa:b9:a4:7c:
c2:98:b9:2a:4b:ba:ba:4e:e0:ae:eb:e1:51:a7:e5:a6:15:c2:
d5:7d:2a:1b:1c:65:5f:62:31:95:2d:af:6d:53:c1:5e:20:66:
c4:a8:8c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:21 2026 by rpki-client