Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
File: tyDzzrDmtZejgUXFp0M2nH9JZuA.mft (raw, json)
Hash identifier: R8ad76XBYa+9f779+E2HDxRqUicQhgQ5ibd6mp5KkuQ=
Subject key identifier: A3:5C:60:EF:59:9F:B5:11:CC:78:8E:E7:4F:EE:B3:97:42:49:9D:FA
Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Certificate serial: 019D29294EA09ED3447BE3AA0BEFBD8874BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
Manifest number: 12C3
Signing time: Thu 26 Mar 2026 08:01:06 +0000
Manifest this update: Thu 26 Mar 2026 08:01:06 +0000
Manifest next update: Fri 27 Mar 2026 08:01:06 +0000
Files and hashes: 1: 5S5p1A69IpQT_81jOo3SJqobCIE.roa (hash: 1vieN4Wv6S8/BM0aKo61+XBIoswJKgLdB3MXca2J5eM=)
2: tyDzzrDmtZejgUXFp0M2nH9JZuA.crl (hash: pQAqJaW+6xj0kp9RISFVm3KhPzqyIWMw1l9+OQxGpac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:4e:a0:9e:d3:44:7b:e3:aa:0b:ef:bd:88:74:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Validity
Not Before: Mar 26 08:01:06 2026 GMT
Not After : Mar 27 08:01:06 2026 GMT
Subject: CN=a35c60ef599fb511cc788ee74feeb39742499dfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0b:fe:8e:58:f3:4c:4e:3d:9b:9a:45:7c:b3:
44:f9:48:88:33:c1:9b:65:74:8a:d4:87:c6:9a:74:
21:36:37:89:c2:90:91:63:db:52:e8:6d:5a:42:a5:
88:65:e6:84:e3:f5:7e:db:c6:1c:64:71:ee:53:c9:
80:27:fb:60:ce:5c:3a:97:6e:3a:11:d0:42:0d:71:
c8:dd:a6:e9:bb:88:a7:87:3a:9b:5b:67:fd:ad:9c:
f5:7d:d2:c4:76:09:d3:53:32:0b:ab:36:fc:cc:f3:
25:2d:9d:ea:79:13:10:ef:dc:4b:17:40:ec:68:3e:
e6:68:13:bf:a7:d5:ea:9c:65:a3:50:fc:33:21:2a:
69:9c:9a:8c:6b:f2:cb:1f:81:a8:d6:92:ac:3d:69:
82:08:eb:ba:bf:82:27:93:ea:7f:25:d4:e6:b4:19:
fa:4b:b6:01:8d:a4:c5:ee:5d:cc:29:62:b0:4d:b1:
02:d1:4b:ec:26:4e:2b:a6:32:4f:13:d0:2e:da:5b:
65:59:43:24:49:ca:c3:0a:68:54:51:c6:4b:c5:e4:
ca:26:a4:95:8e:57:6f:45:88:86:ec:76:4b:dc:e5:
a1:d3:02:07:75:c0:dc:ac:eb:81:ad:ec:85:0b:82:
a1:ff:ca:40:34:ef:35:2e:f0:21:80:14:24:07:18:
00:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:5C:60:EF:59:9F:B5:11:CC:78:8E:E7:4F:EE:B3:97:42:49:9D:FA
X509v3 Authority Key Identifier:
keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:88:68:47:a0:d8:82:ff:ac:81:33:72:b3:4e:c7:ca:e7:00:
f1:04:67:4d:ed:9f:6e:3d:09:65:53:c4:fb:2e:fa:26:8d:86:
e2:b7:98:bb:a7:e7:e7:51:80:b7:c5:10:e3:63:45:3c:6b:21:
9b:fa:c4:bf:c0:24:e2:92:97:43:47:96:15:ec:59:30:9d:07:
2a:b6:95:19:65:28:15:fa:60:30:a4:d9:b8:11:98:b8:c3:bb:
5f:73:fc:d0:da:62:cf:e6:1d:0e:22:6d:40:bc:b1:62:26:3e:
ff:87:06:3f:ae:a7:b4:87:93:fb:b1:e0:85:8e:4a:f4:2f:35:
85:5a:d1:fc:68:9d:40:3d:24:ae:99:ef:f6:5f:10:73:6e:fc:
0b:09:9b:c7:0f:3b:48:c6:c9:73:99:95:db:2e:6e:ee:95:92:
f5:23:39:c4:90:bd:29:f5:a6:bb:ea:fc:2a:d6:66:22:69:2d:
ca:24:41:ac:f6:96:da:f8:39:6c:11:33:b6:1b:cb:80:d3:a0:
e2:da:c1:60:7d:18:5a:3f:bd:5b:23:47:bb:8e:85:07:01:24:
50:32:71:f1:d2:0b:a6:9c:76:66:d1:87:7f:d9:7f:ed:67:be:
2a:b0:77:01:10:31:fa:5d:cd:46:8e:1f:8e:02:2f:f2:09:9a:
e5:ee:02:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:49:49 2026 by rpki-client