Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json)
Hash identifier: y9p3qdh6NlL5UMc1HdGiMezs3OJ5OuTKacNLK+hGd+c=
Subject key identifier: E2:26:28:16:ED:75:CB:DC:D1:56:73:19:91:94:DF:8B:65:48:E3:49
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 019D2A3C4C58E5781CBF82F83A5C905FD2E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 13:01:27 +0000
Manifest this update: Thu 26 Mar 2026 13:01:27 +0000
Manifest next update: Fri 27 Mar 2026 13:01:27 +0000
Files and hashes: 1: ZcHXLBJSx_Tt6F_s5FsMwgXSk6E.roa (hash: DXyT/IUpWKmwacoz1gYsfpWFfm80bfOxmbXLHhHgltY=)
2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: D9VjTITv3prwswLCuTYD/pq19FNWXSvG+rD/qfooto4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:4c:58:e5:78:1c:bf:82:f8:3a:5c:90:5f:d2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: Mar 26 13:01:27 2026 GMT
Not After : Mar 27 13:01:27 2026 GMT
Subject: CN=e2262816ed75cbdcd15673199194df8b6548e349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1d:99:b1:e8:cd:b2:c0:86:29:17:bc:ca:55:
fb:c0:0d:40:ab:ca:33:fe:ab:bc:b4:ec:e9:1f:94:
ab:c0:6d:b0:e2:d9:27:20:cb:b4:8b:79:54:f8:45:
81:4e:aa:5a:9f:71:2e:0e:99:53:41:62:ba:8f:e6:
9a:31:df:8d:40:52:cb:86:c7:7d:95:8f:19:ab:c8:
a4:06:c8:dd:e0:f8:bc:25:97:c9:16:09:ad:b2:e2:
00:7e:e7:55:43:3d:da:6a:fa:81:ea:f6:f9:6c:c7:
a4:c2:54:22:90:40:aa:3b:23:45:6b:dd:7a:55:ac:
a9:8f:eb:09:72:61:2e:b3:2a:7c:a2:7b:fc:f5:98:
2f:9a:a6:01:91:04:a8:ad:32:a7:45:f6:b7:35:b3:
c6:e3:ff:d1:d4:91:b7:b4:42:7d:90:eb:2d:9d:7a:
af:f8:24:2e:9b:ed:1a:35:26:7e:35:bb:ce:00:4a:
8c:fe:67:5b:46:5e:ce:d3:e5:60:1f:64:4f:e6:6e:
93:da:6e:3a:88:2e:51:50:12:81:e6:f7:e8:fa:7c:
77:98:86:d8:66:6e:fd:53:b1:c6:c4:7a:40:bf:ee:
02:ae:ce:80:b4:e5:64:80:d2:47:29:24:8d:b8:27:
ff:b7:17:21:ac:2a:f1:bd:4b:5b:5a:8e:41:c1:b9:
0c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:26:28:16:ED:75:CB:DC:D1:56:73:19:91:94:DF:8B:65:48:E3:49
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ce:2e:6c:60:0e:9d:cf:d2:ef:21:8c:5a:a6:d6:97:c1:e4:
41:0b:d0:1f:bb:2c:b9:1a:94:83:eb:bb:84:2b:aa:80:ba:75:
db:1b:61:5c:98:01:7a:47:9a:51:49:17:81:ad:19:1b:1b:af:
c8:4a:aa:52:ca:88:00:64:53:a8:fb:0c:a0:d3:5d:a4:90:f8:
85:3f:14:62:7a:3b:fd:2f:60:bb:e6:02:1a:d8:05:aa:60:95:
7d:fa:84:56:0c:b9:f1:cf:b5:4f:27:03:af:ac:91:1d:8a:bb:
02:eb:04:f2:42:71:15:4f:98:b0:a7:b1:2e:2d:3c:80:a3:df:
1e:1d:f2:a8:5e:d7:95:0b:18:1b:42:58:f2:20:11:cc:2b:47:
42:81:0d:11:8e:0e:5c:4d:5d:f9:7a:22:50:73:20:0d:af:4b:
11:08:e4:f0:93:d4:8e:59:06:bb:83:2a:cf:e0:70:5a:9d:89:
c1:3f:af:c6:a8:45:fe:26:c4:ff:0a:49:da:2e:9f:07:28:97:
47:eb:06:f6:db:c0:5a:65:ec:c0:a2:b4:dc:53:4a:d3:d2:63:
8b:73:f5:dc:79:6c:db:f6:36:d0:0a:14:41:7d:b4:e0:73:af:
7b:0a:d1:91:f9:d1:e1:06:2e:d8:67:2f:a4:bd:45:90:83:74:
a9:03:96:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:36:51 2026 by rpki-client