Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
File: TZRvTfIjdJGmjfpAe-QfroS72mY.mft (raw, json)
Hash identifier: 7wAm80Y920ItneGMmhs5XrFdS07ftYDJopsZYXBn6hM=
Subject key identifier: A4:CD:F7:3C:EE:BD:49:32:BF:E3:F8:7F:6D:1D:5A:88:56:38:35:A2
Authority key identifier: 4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
Certificate issuer: /CN=4d946f4df2237491a68dfa407be41fae84bbda66
Certificate serial: 019D2816444231EA69A77A50769417E978B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
Manifest number: 11E9
Signing time: Thu 26 Mar 2026 03:00:41 +0000
Manifest this update: Thu 26 Mar 2026 03:00:41 +0000
Manifest next update: Fri 27 Mar 2026 03:00:41 +0000
Files and hashes: 1: TZRvTfIjdJGmjfpAe-QfroS72mY.crl (hash: J07aYwzXCW43gImv8sOB3TRtIXHOuUB6DgHTBALnIB8=)
2: ytSYW9uePGMbZ79Lq_rgcm-M5Zw.roa (hash: Y13kOAlNy0Wbk1bHbXfUJdX2fwgc6gfKxcan1EEpTzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:44:42:31:ea:69:a7:7a:50:76:94:17:e9:78:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d946f4df2237491a68dfa407be41fae84bbda66
Validity
Not Before: Mar 26 03:00:41 2026 GMT
Not After : Mar 27 03:00:41 2026 GMT
Subject: CN=a4cdf73ceebd4932bfe3f87f6d1d5a88563835a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:e5:29:63:35:fb:14:06:37:47:d9:71:06:
f3:8c:b3:53:45:f0:6c:83:0f:e2:cc:79:d0:ba:d1:
eb:8c:79:21:c4:5a:b5:09:95:92:63:a1:c9:df:78:
21:0a:2b:f4:ea:96:74:2c:80:49:27:d3:3f:65:dd:
b2:e9:6d:5c:b3:37:22:94:1b:82:fc:f2:a7:a7:10:
9d:17:2d:47:66:7e:70:ef:47:c2:0b:eb:c5:da:32:
72:43:28:f2:16:8d:7b:b4:c0:62:cc:9a:7e:a2:cf:
52:6d:0c:d6:8c:bf:15:bc:ec:bc:ee:8b:97:5d:95:
5b:fb:00:cd:fc:16:1d:33:a3:67:f0:3b:61:aa:20:
ed:31:10:16:c4:26:84:5b:f0:4c:5e:f8:35:5d:c1:
3f:07:9b:5f:72:cf:00:05:88:8e:71:3c:07:4e:bd:
0e:7b:98:3c:19:b5:c3:29:8b:92:2a:9d:91:5c:b2:
a8:8c:99:d0:b5:2e:26:2b:bb:5d:bf:ba:56:4e:1a:
30:8d:5c:c8:df:90:68:c4:f5:4f:a3:f9:98:c6:bc:
5c:25:13:b4:50:d6:1c:cf:83:05:12:5e:c0:13:ee:
f3:fb:45:71:b9:ca:e5:73:7f:d8:54:18:72:7a:96:
b7:a9:18:3c:1c:45:95:04:3e:6f:96:ea:66:10:1c:
97:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CD:F7:3C:EE:BD:49:32:BF:E3:F8:7F:6D:1D:5A:88:56:38:35:A2
X509v3 Authority Key Identifier:
keyid:4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:da:05:3e:c8:9c:89:b6:a9:8f:3a:de:99:4f:ce:4d:1f:1d:
79:01:08:2d:ca:31:8f:50:e4:51:04:98:b0:03:26:d8:c0:04:
22:cc:42:62:01:11:22:53:06:e1:3e:c2:8f:c6:fe:96:25:b0:
f3:31:3a:d4:8e:ec:00:12:44:17:90:45:59:c9:a2:44:9f:bf:
3b:d6:a1:9e:0a:76:43:37:df:97:46:ad:94:4b:dd:d9:77:32:
41:1d:db:d2:68:00:15:e8:1b:fd:ab:45:8c:21:6d:84:21:2f:
95:58:a5:bd:b8:c9:50:be:60:20:ed:c7:d2:43:84:5d:92:06:
1a:43:04:d9:cc:cc:1e:be:f4:fe:38:5a:da:90:e5:d2:a2:08:
ae:78:89:6f:15:67:b2:97:56:e6:3c:a9:ca:1e:5d:c5:cc:94:
af:a7:77:a0:1f:5d:c7:d4:d8:69:21:46:08:0f:9e:a4:d3:4d:
8b:b7:60:ec:e0:5f:06:3d:99:5d:94:bb:b0:72:db:ba:df:96:
44:8c:6e:eb:fd:c5:be:27:35:45:56:c3:9f:0a:90:e6:67:e1:
7b:e5:d9:e7:07:50:bc:6d:db:64:42:e1:b5:0a:fa:37:43:8c:
60:f6:91:d5:de:cb:40:c2:8f:e5:a8:58:32:63:9d:c7:f2:da:
02:7f:7d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:18:00 2026 by rpki-client