Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: eApy98MO8VynzbrMGAGlI5UilM8pBCTBbVBtKw2I+N8=
Subject key identifier: 21:6C:0C:0D:39:F9:3F:2B:3D:3E:34:A5:F1:AE:21:A9:E2:A9:42:A4
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 019D284DB76773BC4D1E809D7C8E290A0EA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: 0472
Signing time: Thu 26 Mar 2026 04:01:14 +0000
Manifest this update: Thu 26 Mar 2026 04:01:14 +0000
Manifest next update: Fri 27 Mar 2026 04:01:14 +0000
Files and hashes: 1: E3Ps_1Y0RPyTuff7vspqXs8HJd0.roa (hash: SDa/tg7mYNNs8Ig1oDFyYQAMW6ncyRIYSQRc76ZseiQ=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: P+ZNmVX3C+6srh/MjMG7/4KGtXI7MgQrj0T8LQXhiJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:b7:67:73:bc:4d:1e:80:9d:7c:8e:29:0a:0e:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: Mar 26 04:01:14 2026 GMT
Not After : Mar 27 04:01:14 2026 GMT
Subject: CN=216c0c0d39f93f2b3d3e34a5f1ae21a9e2a942a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b3:21:e7:f6:16:1d:a6:dc:84:55:a4:eb:f2:
5f:58:2f:b0:d0:fc:19:bf:8f:e5:72:d3:7d:b0:3c:
b5:a5:e5:18:e3:23:b3:9b:06:ca:65:c8:34:ae:ee:
9a:f2:83:c1:85:eb:ba:33:9b:f9:74:86:8f:58:13:
48:ec:21:43:b7:6e:cb:4b:07:8f:ee:f0:9d:d5:72:
66:69:1c:77:d6:1f:06:d3:88:63:a4:8b:d2:b0:3e:
9e:76:05:df:2e:38:35:a0:01:ab:2e:4f:98:e7:39:
03:4d:a5:0d:42:f0:bc:06:0a:9a:a0:dc:27:5b:34:
2a:85:69:d3:c5:40:07:b2:0a:fe:69:9a:be:ad:24:
72:a2:97:6d:d9:f9:34:1d:f2:5b:c6:05:38:56:45:
f1:2e:bf:54:65:fb:1d:fd:61:7c:e5:48:70:00:90:
8e:c0:e1:78:69:7d:0a:ce:73:21:4f:8a:39:bb:7d:
1b:88:e3:8d:be:ad:8e:84:ef:7e:e3:c6:80:56:42:
26:32:62:19:43:6a:7f:5b:93:d3:7a:5e:6b:2e:bf:
27:e6:e6:61:e1:72:b8:07:d6:66:16:e2:f0:89:f0:
8d:cd:7b:bb:88:c6:85:35:04:81:07:b5:53:06:bd:
dd:67:08:c4:23:96:00:d1:ed:32:de:ac:54:d7:86:
d3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6C:0C:0D:39:F9:3F:2B:3D:3E:34:A5:F1:AE:21:A9:E2:A9:42:A4
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:db:db:48:a0:bf:18:c1:79:db:2b:6c:fb:ee:34:99:9d:93:
03:3a:a7:ad:ce:46:4b:76:73:7e:fd:cb:51:3a:9f:c6:c9:cd:
e7:59:69:07:69:04:bd:4b:c8:80:48:e2:b2:e7:b5:6b:77:95:
28:01:ed:d3:73:df:45:26:39:4c:53:f8:64:13:bc:58:01:a9:
1d:16:34:99:6a:64:c6:c3:ef:73:7c:ea:4b:36:d2:0e:f7:30:
db:0e:2b:2e:4b:e5:f8:56:fc:c2:17:8f:52:5c:d8:28:64:0d:
53:43:13:93:46:61:f0:b6:ef:d1:23:0c:83:02:ba:09:db:fe:
3f:fe:a1:d2:46:51:d9:b6:57:7c:cf:8f:2a:bc:ef:b3:60:64:
5d:5f:4c:ea:f5:41:7f:3a:08:57:e0:97:46:5c:55:2e:72:25:
e6:54:90:54:da:44:09:d1:66:f8:a5:e8:8c:e5:95:97:17:07:
6a:15:d7:93:da:f3:6b:58:78:d4:4f:e1:ba:61:d7:9a:32:a1:
fb:b7:2f:25:b2:f4:43:9d:8f:7d:72:f2:f7:68:c6:de:6d:b4:
d6:83:38:fd:19:7d:41:7c:32:63:de:9d:5d:27:66:93:40:1e:
c6:04:70:0f:92:22:d5:19:24:b8:01:d7:30:4a:8c:5f:67:9b:
05:6e:87:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:23:04 2026 by rpki-client