Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: rT4y/KVHn8VDT7PFO1OMlY3xuPiWTyRh25TlKWfYVVE=
Subject key identifier: 47:08:F6:D3:38:78:6A:68:94:FD:6E:8D:81:33:58:1E:5F:ED:BE:AD
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 019D2B17519839D1F779FCEBF47671A75C55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0D18
Signing time: Thu 26 Mar 2026 17:00:41 +0000
Manifest this update: Thu 26 Mar 2026 17:00:41 +0000
Manifest next update: Fri 27 Mar 2026 17:00:41 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: mEu2OXh25l4WM7uAwDnsjdHCbLX5MmckApA3N9SfjQ4=)
2: bocz5SG9Zj4HkXUBKia2cUoBHTI.roa (hash: kxCpDn7CCZ/6SqGTk6+uT7aXJeJIuhuC431y0OFAOkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:51:98:39:d1:f7:79:fc:eb:f4:76:71:a7:5c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Mar 26 17:00:41 2026 GMT
Not After : Mar 27 17:00:41 2026 GMT
Subject: CN=4708f6d338786a6894fd6e8d8133581e5fedbead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dc:31:47:57:8c:69:47:9b:fc:56:5b:ea:9f:
7b:1a:6c:d6:70:3a:d5:65:ac:f2:3f:48:60:9b:8b:
bb:7b:7b:42:8d:eb:60:f2:7d:17:74:df:4e:2f:25:
0d:47:ce:13:f3:67:49:9b:ec:a4:fb:59:a9:4e:ca:
aa:52:21:90:a7:ca:76:95:99:05:52:da:6c:ab:cc:
e5:dd:20:24:07:21:9e:d6:bf:5b:bd:fb:6c:a4:4f:
01:e2:fc:48:5d:a3:ac:f4:b8:67:07:1e:cb:fd:2a:
44:c3:a3:c0:06:b5:1f:c1:a7:31:17:8f:33:20:7e:
23:8c:98:6c:f6:00:60:fd:cd:40:4d:5e:94:73:ab:
db:78:c5:58:43:aa:8d:05:de:bf:02:db:57:44:c1:
18:ce:83:9c:c4:82:8e:31:b4:bf:c0:ab:6e:1d:3e:
0b:e7:d9:2d:17:b3:96:b4:36:1a:dc:b4:02:86:53:
70:13:27:cb:c6:e9:db:43:27:f7:5e:81:c8:0d:55:
2a:43:5b:51:f6:46:03:0b:91:e5:98:d2:5b:ad:e0:
0b:8d:a9:87:ea:83:73:4e:da:e3:c7:8c:75:8b:f5:
ee:92:eb:03:58:73:2f:5e:41:ad:9f:12:be:ec:de:
a6:db:fa:eb:ab:73:87:87:73:f2:9d:3c:69:69:b3:
b6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:08:F6:D3:38:78:6A:68:94:FD:6E:8D:81:33:58:1E:5F:ED:BE:AD
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:92:e6:37:1a:b3:52:2a:62:90:11:49:a3:c3:01:9c:a4:ff:
23:dd:f7:ed:95:a9:19:59:bb:66:d2:6b:fa:fa:b0:2e:1c:2b:
af:46:f9:ea:ea:4c:7f:da:bd:74:7f:cb:77:93:94:1f:12:50:
5f:1a:9f:82:a7:cc:f1:2a:56:1c:92:27:b4:c8:f3:5e:59:97:
bd:84:13:e3:a9:35:51:d2:70:97:14:9e:5f:70:45:4a:0f:2a:
5a:c9:1d:6d:98:87:66:6b:75:83:7a:b6:67:e3:12:1a:b2:68:
19:dc:58:60:25:61:7f:1c:19:96:6f:1b:64:3a:8e:b9:72:5f:
6d:86:3b:62:a6:0c:46:cb:3f:0a:92:72:d6:46:45:92:3a:76:
52:71:41:ab:3b:c9:ce:e2:c8:3d:92:3b:2f:01:ab:e4:fd:3b:
ef:63:b3:e1:52:14:6c:0f:9b:c0:28:7f:8d:f3:bf:a5:29:f5:
02:d5:3b:bf:5a:a3:a4:bc:83:77:57:04:dc:54:f7:f6:c4:cf:
58:5e:66:13:1d:70:0c:a0:a8:41:ac:42:ac:4b:44:66:91:89:
cc:d7:c0:75:8b:c9:00:1e:ab:55:8c:da:77:d7:32:9b:d3:d7:
8a:7f:26:bf:79:0d:0f:f1:ab:9c:fd:86:6c:57:43:74:86:41:
14:7c:ec:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:15:04 2026 by rpki-client