Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
File: tAqlFjSW4FOna21pzcRfdQBs2N8.mft (raw, json)
Hash identifier: VYqosaVquX5tuviT0hkWAAgoJyzwKohTAtGMJeqmFCo=
Subject key identifier: EE:92:DA:D2:66:B8:02:30:17:45:6B:9F:FF:88:72:E7:C5:56:A5:5B
Authority key identifier: B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
Certificate issuer: /CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Certificate serial: 019D2961598E8DEBF7B5A0295ED193E5870D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 09:02:18 +0000
Manifest this update: Thu 26 Mar 2026 09:02:18 +0000
Manifest next update: Fri 27 Mar 2026 09:02:18 +0000
Files and hashes: 1: f4mExJRDDKoQa7XCQQ_EW1oUEtI.roa (hash: xx+rcnNDCiX+rDClDnIpjuXtYVA+qpNh390KFCm9PpM=)
2: tAqlFjSW4FOna21pzcRfdQBs2N8.crl (hash: KIStFBwqt4bo2Mc80/XtnTJsuoJUMt9pWUQbQO3IEv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:59:8e:8d:eb:f7:b5:a0:29:5e:d1:93:e5:87:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40aa5163496e053a76b6d69cdc45f75006cd8df
Validity
Not Before: Mar 26 09:02:18 2026 GMT
Not After : Mar 27 09:02:18 2026 GMT
Subject: CN=ee92dad266b8023017456b9fff8872e7c556a55b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3c:8e:1c:76:18:67:ed:d3:7a:ba:34:22:ca:
f1:57:a7:2f:86:19:9f:de:b5:a3:ac:a4:03:9d:09:
27:e3:8a:6b:a4:95:1c:cb:6d:07:ba:fc:b2:4a:94:
45:9e:03:6b:79:2d:b7:09:91:2e:3b:05:87:47:cf:
e8:6c:06:99:f7:2a:de:5f:96:b7:28:5a:dc:77:18:
46:6f:bc:8a:bb:ad:fa:45:8c:10:31:3d:20:78:09:
56:b3:25:99:43:1d:32:2a:a8:00:6a:80:ca:bb:42:
ef:0a:5d:81:b8:52:85:00:ba:69:98:ad:f1:c6:35:
2a:c0:43:b5:a4:cf:72:e4:52:fd:b9:41:a9:9c:d7:
7f:11:fc:a0:fd:bd:a1:45:f3:f3:a7:5e:2d:66:e2:
4f:de:9f:f9:d1:9f:fc:3e:79:12:f0:07:24:22:fd:
3e:6c:8d:8b:8f:18:d9:ec:ae:3d:d8:6f:0c:c5:1d:
39:d0:81:2e:56:9a:21:62:20:20:0c:ed:75:8f:65:
18:65:03:96:c7:1a:f4:f7:f3:05:ba:4b:02:1b:e5:
09:78:b6:c7:a3:3a:8d:ff:b1:02:d8:8f:fe:31:eb:
9e:8b:9a:b0:9c:98:8a:fa:2f:d1:96:32:9c:ac:32:
a2:3b:81:ff:47:c0:fb:36:2f:e3:85:e3:15:5e:30:
36:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:92:DA:D2:66:B8:02:30:17:45:6B:9F:FF:88:72:E7:C5:56:A5:5B
X509v3 Authority Key Identifier:
keyid:B4:0A:A5:16:34:96:E0:53:A7:6B:6D:69:CD:C4:5F:75:00:6C:D8:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAqlFjSW4FOna21pzcRfdQBs2N8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a20fb0-5b8d-4517-b46e-c72cbac285f8/1/tAqlFjSW4FOna21pzcRfdQBs2N8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:88:79:28:e4:65:7f:a5:c0:19:40:c8:a8:d1:f8:1c:c7:6d:
82:a9:98:be:87:01:c9:62:93:9a:31:c9:64:93:49:03:54:15:
2e:75:1e:b4:d1:20:d2:5a:c2:27:ed:27:a6:8d:ac:9c:0b:4d:
3c:df:4b:56:9d:f6:61:98:44:d1:d1:9b:03:a3:10:2f:ce:0e:
8b:f1:bc:70:d8:e2:a1:ba:ee:a3:bb:28:b8:df:b8:f3:b8:75:
42:aa:f1:a2:c8:9c:36:7b:e5:ab:fe:8e:f5:f7:cc:2a:cd:73:
23:a4:cc:67:16:aa:d3:00:10:e6:64:dc:f2:65:26:c4:95:35:
56:c3:2f:67:e9:fb:36:ac:e9:1d:65:d6:f1:3a:dc:80:8b:d6:
13:9b:82:09:a9:6a:61:35:7b:29:9d:46:1b:a5:a7:40:e2:f2:
14:be:b4:c4:58:36:92:5f:e0:cf:e6:6e:d1:17:d0:2c:e6:37:
4e:88:d8:15:b1:b3:8c:16:6c:7e:3c:7a:d3:77:9c:9a:96:27:
a6:ad:49:ed:fe:55:85:26:d0:1e:f1:c5:f6:d8:c6:27:86:c5:
9d:8b:dd:f5:30:56:f3:47:1c:9e:7d:65:5e:9a:f4:d6:86:11:
ce:a2:43:92:0c:c3:eb:db:9a:de:22:8b:71:20:c1:79:f6:c4:
94:a5:3c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:24:13 2026 by rpki-client