Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
File: TRCb5Q1A4ys9UW_B63LqsyxeC84.mft (raw, json)
Hash identifier: WJGNL2j1rbVmqoJLieVrUStBowdu3jhtTjb53j3LcXc=
Subject key identifier: EB:FF:D2:3C:D7:35:FB:D8:A7:34:4C:53:63:2A:DB:78:4A:E8:50:DB
Authority key identifier: 4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE
Certificate issuer: /CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce
Certificate serial: 019D265F091FB35A5F2B817681419BAAC63D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
Manifest number: 037B
Signing time: Wed 25 Mar 2026 19:00:55 +0000
Manifest this update: Wed 25 Mar 2026 19:00:55 +0000
Manifest next update: Thu 26 Mar 2026 19:00:55 +0000
Files and hashes: 1: QFemVBga8R6MUy4la4qdXV606kc.roa (hash: 75fcTq+XSvxc/YMDH3A8ovZYGGLiO1iXpSLbHu45owU=)
2: TRCb5Q1A4ys9UW_B63LqsyxeC84.crl (hash: WKYj+yQOreUOgJQuDvNQjgRWpOQU+e3BEDBfTEHGiyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:09:1f:b3:5a:5f:2b:81:76:81:41:9b:aa:c6:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce
Validity
Not Before: Mar 25 19:00:55 2026 GMT
Not After : Mar 26 19:00:55 2026 GMT
Subject: CN=ebffd23cd735fbd8a7344c53632adb784ae850db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:06:bd:2a:3c:e6:42:f1:e1:10:5a:77:e9:cb:
2f:1c:b7:c3:16:15:34:4b:20:e2:9f:47:42:20:35:
13:8e:d9:1c:82:c5:a1:ed:20:d7:5b:87:be:2b:ed:
c4:dd:d1:03:eb:c8:75:b4:b7:ab:83:38:45:15:9e:
ad:38:5b:77:96:7d:2a:f8:5b:4e:9b:e4:16:e0:74:
d5:57:bc:71:4b:26:ee:7f:fc:3b:1e:4b:25:2f:26:
2e:53:16:e5:0f:e5:75:a3:72:52:37:66:21:dd:19:
ec:5d:42:b0:af:5b:a3:30:25:d9:ac:a8:6b:6f:db:
96:81:de:e1:ad:d9:dc:a5:86:80:eb:6e:cc:79:a0:
04:44:bc:12:42:4e:90:8b:88:c2:69:4f:c0:ed:93:
a4:00:45:b4:9d:ac:a5:3e:9b:b5:87:3f:00:87:53:
c9:e7:3d:0a:b5:86:26:6f:1e:2a:29:bf:c1:cf:1b:
e4:36:51:1c:a0:36:41:b0:94:08:f2:2f:4f:11:76:
99:64:83:0a:cf:f1:73:61:bc:ed:f8:ee:62:10:6b:
12:67:4a:50:69:2f:f1:f8:92:0b:b8:a9:33:f9:50:
04:55:3a:20:46:12:2f:d2:cf:05:06:ce:92:11:cd:
a8:fe:d2:74:c7:2b:d2:70:21:19:46:02:9f:77:d7:
1a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FF:D2:3C:D7:35:FB:D8:A7:34:4C:53:63:2A:DB:78:4A:E8:50:DB
X509v3 Authority Key Identifier:
keyid:4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:95:2c:15:be:78:f4:c0:e7:8f:c6:62:8d:d5:63:33:40:d8:
83:8d:d4:78:ec:23:6e:5d:b2:72:fd:4f:5e:7c:24:85:61:64:
5a:16:a5:45:de:57:f2:f7:1e:06:99:64:2b:1c:7c:6c:4b:0c:
93:8f:1f:a9:5f:bb:07:42:8c:10:8e:46:44:dd:16:cb:4b:86:
4f:4c:c6:58:86:67:06:8b:e5:16:28:f6:2d:e9:2f:00:d9:15:
12:15:49:b7:50:70:10:be:44:e6:bf:50:e0:a8:fe:f7:63:66:
f7:8e:cc:d6:ff:e5:51:8b:e6:a4:73:e5:f9:1b:87:54:57:30:
28:bb:5d:3f:fd:41:33:34:63:55:84:37:0a:2d:fa:56:04:59:
cb:9a:da:9e:a5:1b:b5:e3:46:26:ab:88:f7:93:86:f6:32:17:
36:df:c1:d8:5a:15:88:b7:fd:57:d8:1f:e2:c0:fb:7f:f8:ab:
a6:b0:5c:4e:e0:61:b7:a3:75:e9:01:59:59:fd:ae:f0:b8:fb:
d6:5e:c8:3e:30:91:95:dd:0a:45:db:cc:03:51:3e:6c:ee:ae:
c2:83:2a:ca:db:ef:cc:52:46:99:63:25:4c:20:ea:38:10:a3:
f2:09:88:12:18:92:fb:98:44:6a:28:81:78:d2:f8:65:7d:66:
9b:92:da:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:55 2026 by rpki-client