Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
File: trcm8FkrUE5yMwX2e6tRR9TqaW0.mft (raw, json)
Hash identifier: ItsDu7klmP2sxR3iD6MXrPxxikS8nxO2j4n8jMVhdQU=
Subject key identifier: 40:18:06:EE:89:AA:43:95:2F:05:73:2F:6A:EE:22:B8:55:3E:50:B2
Authority key identifier: B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
Certificate issuer: /CN=b6b726f0592b504e723305f67bab5147d4ea696d
Certificate serial: 019D28169C62F091C4DC0CFAE7E556E204A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
Manifest number: 0BC7
Signing time: Thu 26 Mar 2026 03:01:03 +0000
Manifest this update: Thu 26 Mar 2026 03:01:03 +0000
Manifest next update: Fri 27 Mar 2026 03:01:03 +0000
Files and hashes: 1: BgaIoZwQRt2oZC2BzablBd309Sk.roa (hash: 0smh/WGipg6DXsx63DMVAp+gWZ9HDNa2kEwq3ysrdfQ=)
2: trcm8FkrUE5yMwX2e6tRR9TqaW0.crl (hash: nTytWsb9y/dRyI5Jm1t5OSu7lAhpDTTIcMLigOSy3ps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:9c:62:f0:91:c4:dc:0c:fa:e7:e5:56:e2:04:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6b726f0592b504e723305f67bab5147d4ea696d
Validity
Not Before: Mar 26 03:01:03 2026 GMT
Not After : Mar 27 03:01:03 2026 GMT
Subject: CN=401806ee89aa43952f05732f6aee22b8553e50b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0c:36:3a:db:c0:5a:2b:79:7c:5a:09:8f:c4:
2d:82:27:ba:82:0f:f3:9d:cd:bd:b9:67:a1:ed:8d:
4b:e8:ec:5a:20:2f:ac:ed:be:78:c2:3b:0e:05:9e:
46:a1:89:4d:bc:01:b8:e6:c2:9e:17:bf:14:4f:fd:
a0:0b:dd:44:93:5e:60:26:ac:b0:35:43:21:d5:e1:
64:c6:68:3c:a5:6f:78:06:36:97:ad:72:f3:a6:8b:
93:ab:2e:b3:ec:74:d0:85:44:dd:f6:d1:f7:ba:45:
b5:fb:f5:75:ad:82:7e:94:61:e6:b7:5d:37:34:f6:
58:3a:0a:8c:ba:18:b1:16:b8:24:86:01:fa:cc:cf:
d9:04:ec:ac:87:49:89:c4:6d:f9:23:5a:bc:6b:16:
fd:ef:22:32:ca:22:fc:51:83:e2:a6:88:3b:0e:1c:
44:df:cb:51:8f:17:94:3d:3b:5a:a4:69:6b:ef:1f:
7e:ea:73:f7:99:63:90:44:39:7b:b5:87:8e:2b:f6:
af:f0:04:4d:82:02:e0:9f:43:9d:eb:0c:91:43:ce:
00:b2:3c:21:cb:b7:79:30:a6:7c:3b:bb:6b:9f:3c:
dc:27:4e:f7:75:49:9e:6e:81:4b:4e:01:91:f7:4f:
74:d0:75:f3:c0:93:81:6d:1a:95:b9:6d:11:0e:ee:
a0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:18:06:EE:89:AA:43:95:2F:05:73:2F:6A:EE:22:B8:55:3E:50:B2
X509v3 Authority Key Identifier:
keyid:B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:a8:6d:5a:da:ab:1c:41:bf:c6:1a:eb:14:04:27:28:7a:50:
ea:a4:e1:91:2c:c9:27:26:ee:2a:35:fd:e1:ec:a4:f1:4b:8c:
6e:40:e1:03:95:33:7f:55:20:c9:df:5c:09:62:79:66:72:7e:
89:a3:4e:de:4d:b5:9b:80:a5:cf:dc:ea:b1:a2:b9:b7:fd:df:
aa:eb:3e:17:b9:ae:1a:03:02:44:d0:83:eb:fd:0b:64:a7:33:
aa:39:af:36:01:aa:dc:51:a8:fd:ff:49:6f:96:30:36:73:61:
1d:14:5d:a8:78:5c:9d:42:bd:aa:87:e4:fb:8b:f4:f3:ca:ce:
6a:a7:8c:b0:b1:2b:74:52:59:b6:8c:ea:6e:ad:18:75:67:aa:
60:a1:26:1d:a5:d0:0d:f1:47:36:85:e8:eb:5f:e6:20:3f:b1:
69:38:39:65:84:c2:c6:8f:cd:17:89:8d:6e:ba:ac:ac:d5:29:
dd:44:43:3d:1d:88:9b:ed:3d:d8:bc:00:a0:a5:5f:6c:22:3c:
2b:05:f2:f2:dd:36:43:fb:55:a2:d7:68:d2:eb:4f:f2:49:73:
86:7c:ca:b4:7d:dc:f4:b3:e6:4e:ed:b2:80:dc:c4:26:91:2b:
92:dd:84:9d:43:3a:00:3c:08:29:60:41:29:9f:ff:b6:00:d8:
fd:38:cb:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:54:58 2026 by rpki-client