Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json)
Hash identifier: lD83kV5+GuWqheMJ6fAn3wY0ViCPYR7U6d+3uRLvkb0=
Subject key identifier: 08:06:A3:FF:D2:5F:F5:81:6E:70:46:D8:F5:33:2E:24:D5:75:D4:ED
Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Certificate serial: 019D265F385C1EFB523E3675D645F5B45EB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
Manifest number: 140E
Signing time: Wed 25 Mar 2026 19:01:07 +0000
Manifest this update: Wed 25 Mar 2026 19:01:07 +0000
Manifest next update: Thu 26 Mar 2026 19:01:07 +0000
Files and hashes: 1: iDP1bGdTiUqEFNWH9pQ_fwFAZO8.roa (hash: juc+ynuClZ4OorzxxoiPvzF8miwUosVKgq4mBUka3tw=)
2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: HhIqWni4dO2RkAwiciqOqR03qbafr8x8CjmI0lBZFxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:38:5c:1e:fb:52:3e:36:75:d6:45:f5:b4:5e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Validity
Not Before: Mar 25 19:01:07 2026 GMT
Not After : Mar 26 19:01:07 2026 GMT
Subject: CN=0806a3ffd25ff5816e7046d8f5332e24d575d4ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:30:5d:d8:20:25:67:bc:6d:5a:b7:b9:70:5f:
ca:a2:27:26:96:3b:dc:8f:cc:3a:3d:6c:7b:33:b2:
f6:a3:e6:c6:37:23:8a:74:a6:95:42:b7:66:a2:5c:
ce:de:73:8f:34:9e:40:60:9a:a9:74:31:32:49:69:
c9:6a:7a:78:d8:b6:d7:7e:29:6b:9b:d4:8d:a1:e3:
af:9c:53:91:de:f9:e8:33:69:c5:08:b7:bb:89:0b:
f8:9d:66:30:b2:6d:2e:25:fc:f2:5f:f3:2f:b1:f1:
3c:f3:3f:79:34:3d:18:2c:60:cb:2e:95:a8:25:9a:
0e:b8:48:c8:1e:64:29:cb:1f:ff:48:db:e5:31:2e:
5c:76:64:9e:28:78:7e:a1:d6:78:02:a9:d8:56:45:
4b:f2:01:65:4b:d0:0a:d9:19:79:33:27:19:05:f0:
f5:37:09:d7:09:0c:a9:ef:2d:77:72:eb:7c:81:7c:
24:5d:e6:38:27:07:24:9d:91:7b:92:29:f0:75:25:
60:45:3b:f8:6c:73:aa:f5:1d:2f:7c:f0:3d:bf:b2:
41:df:3b:04:8b:47:cf:fa:14:16:63:5b:eb:3f:11:
fa:91:c8:dc:3a:4a:7a:32:5d:e0:4d:12:46:cf:61:
aa:74:f9:f8:ae:f4:97:65:8b:0b:43:e1:2c:c4:b5:
5b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:06:A3:FF:D2:5F:F5:81:6E:70:46:D8:F5:33:2E:24:D5:75:D4:ED
X509v3 Authority Key Identifier:
keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:62:c0:dd:77:c4:ec:b9:55:61:b0:0a:d0:ce:d8:d1:ef:61:
0b:88:72:e7:f3:27:e6:30:a8:60:19:26:46:29:cb:30:f9:ac:
7d:f2:e9:80:bc:d0:17:59:26:e6:e6:0a:59:1a:d2:c5:7e:13:
36:3d:9c:63:19:44:e0:15:a5:7d:65:3b:77:41:e1:f1:67:1c:
d6:9a:87:fc:77:53:4f:0a:8c:83:aa:fa:63:4a:07:4e:df:fe:
fd:2b:63:dc:f0:52:36:0c:ec:89:6f:c3:f8:f3:62:d7:63:1d:
77:90:05:32:6d:71:2d:48:61:e7:fe:dd:89:ce:79:24:ef:81:
ca:d1:44:a8:91:9c:14:1a:43:47:e5:10:71:57:36:9d:8f:5c:
45:3d:a8:e5:32:48:0e:d0:17:e3:5f:57:60:ae:53:27:88:de:
78:c6:65:24:3a:5d:1b:b2:68:ef:78:71:16:f3:23:5b:e0:0e:
ec:a4:6a:2a:b8:08:74:89:16:6a:d1:6e:32:7c:d5:85:a7:ce:
4e:d2:41:f5:94:82:b0:ef:33:a0:36:6d:9c:11:99:bc:b6:8a:
4f:bc:16:d6:32:0c:61:00:4e:64:e8:e0:10:14:c8:22:d3:8c:
05:d6:c3:1f:05:e6:ef:31:37:a1:c6:bd:fb:5c:1f:60:ec:93:
f5:57:d7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:23:48 2026 by rpki-client