Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: 84zAZpNdQTkrNtSX56VhcqZLcVwXc/WQDBZzoL88K08=
Subject key identifier: C7:79:3D:2B:A5:46:AF:48:DB:91:D0:CC:FB:11:FD:1A:C6:DC:90:B1
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 019D31F5DB25603E2C3BF908D13F6076F89F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0F0E
Signing time: Sat 28 Mar 2026 01:01:29 +0000
Manifest this update: Sat 28 Mar 2026 01:01:29 +0000
Manifest next update: Sun 29 Mar 2026 01:01:29 +0000
Files and hashes: 1: 7o3HU3pC1XthlFE5rMAnOdMOkGY.roa (hash: x+AUbDFdu4k2QNBnXRev35S/cF6y/B0UGwPHMfJj01k=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: GdxqmQ6XvNMssv8WkalJSNk5EHeYVkXjR3NgLgoxnKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:31:f5:db:25:60:3e:2c:3b:f9:08:d1:3f:60:76:f8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Mar 28 01:01:29 2026 GMT
Not After : Mar 29 01:01:29 2026 GMT
Subject: CN=c7793d2ba546af48db91d0ccfb11fd1ac6dc90b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:42:b1:34:da:75:0b:a3:15:e6:8c:40:21:06:
99:6e:94:de:35:b6:b1:8f:17:df:46:c5:4b:4c:18:
bb:0c:d1:e2:f5:a5:82:06:0f:9a:d1:e1:72:24:49:
4e:09:05:bc:8f:fe:9e:01:14:3b:59:31:d3:d5:d4:
19:8b:f8:bf:fb:ae:8a:41:9c:d6:90:bc:7f:62:06:
88:5e:b9:ba:47:55:0c:07:57:e7:9f:c4:60:8b:a4:
b9:a5:33:52:40:b0:a4:71:a8:b5:1e:18:a6:93:81:
28:e3:86:c3:ea:3d:10:36:29:b5:83:8e:ad:41:fc:
c0:7e:18:14:bb:f6:31:f0:cf:6a:e7:2d:1c:b5:a9:
be:bf:e5:42:2c:30:26:6a:5e:a3:a9:20:be:9f:39:
42:09:41:73:d6:b2:3b:4f:7a:48:1f:90:7d:0b:53:
eb:be:88:91:1a:b8:26:cf:4c:db:5f:6c:0d:6e:38:
ee:b9:91:de:1b:16:10:98:9e:15:d3:92:f1:d2:8e:
6c:3d:ba:4f:99:9e:93:c6:0b:ee:77:c9:ab:2a:31:
0b:e9:d3:4a:be:1a:57:01:95:ab:73:af:7d:42:e1:
bc:13:34:18:fb:44:b0:fa:c7:ba:1f:9c:30:09:0b:
b9:a0:4c:1e:a1:f4:44:a7:15:04:c9:11:01:e6:9e:
72:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:79:3D:2B:A5:46:AF:48:DB:91:D0:CC:FB:11:FD:1A:C6:DC:90:B1
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:e6:e0:ad:d4:0e:83:a8:08:d6:d5:44:53:10:bc:37:c2:30:
0b:3a:67:ba:a9:4f:39:40:94:e9:21:d5:ad:34:9f:88:27:38:
64:4a:d1:35:dc:2e:c2:98:1e:b2:7d:a2:7f:e2:fe:1a:3c:c5:
0f:06:56:16:61:bd:23:b8:66:5d:99:ae:07:03:7b:53:de:7f:
32:63:12:6e:31:37:98:53:57:be:9b:54:ba:88:93:eb:0d:04:
6e:ff:ff:fc:cc:d5:c1:b0:21:ec:d0:74:1c:c8:af:dd:4b:30:
0f:f7:29:6d:91:ed:a4:b7:03:ee:03:7d:6f:97:0a:0b:37:08:
0a:39:98:19:e2:f3:bd:79:9f:d6:cc:c0:9e:66:ee:89:6c:27:
e3:5e:55:bf:1b:e6:d5:7b:a9:2e:50:b3:79:ee:2c:c4:2c:96:
8d:e7:e3:3a:06:52:2a:a7:b6:11:28:ee:bc:85:f7:a0:b0:94:
eb:fe:e6:83:14:ab:5c:09:25:d3:3d:f1:2d:f8:8c:7f:3d:71:
ff:9a:44:71:5b:f4:fa:2d:35:61:c7:06:f9:84:bf:e3:9b:84:
37:9e:87:6c:63:6f:95:3d:05:0f:2a:dd:0e:ac:32:d6:7c:a7:
7b:b1:cf:20:77:cc:5c:1e:18:cf:21:85:6f:8b:93:11:70:a6:
c2:24:de:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:34:12 2026 by rpki-client