Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: zJ21gjkMZNmAbNMGgXHHIR/P1GmEEDOz7a1c1Bn52xQ=
Subject key identifier: 4C:ED:4C:5F:9D:C4:37:75:19:43:21:77:B6:7E:96:9F:7F:0A:C0:BF
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 019E1CB54C8937D12E2E9E295F48CC7F4B9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 1406
Signing time: Tue 12 May 2026 15:01:44 +0000
Manifest this update: Tue 12 May 2026 15:01:44 +0000
Manifest next update: Wed 13 May 2026 15:01:44 +0000
Files and hashes: 1: 9ZDcnSAXCCTAiLQvuYv_ovjLcLM.asa (hash: knmR/uu+sixMgJUWyUdxpL/g/5MBZ8SeapJSPjVWp10=)
2: Dj17YO7HbdYhrlszRZcVGHooOSk.asa (hash: VPbBekLjuZ5VGctqJAL3rNUq/TMi3GHdtgrxOZNiX2M=)
3: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: h16qX3NkcXGYCcyn7uI6qiJNscc1esRO3N4LzZJPMLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b5:4c:89:37:d1:2e:2e:9e:29:5f:48:cc:7f:4b:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: May 12 15:01:44 2026 GMT
Not After : May 13 15:01:44 2026 GMT
Subject: CN=4ced4c5f9dc4377519432177b67e969f7f0ac0bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bd:d2:2f:d4:ba:30:3f:5d:99:94:cc:e3:3f:
a2:2c:ee:b5:e2:fe:cb:cb:10:b9:8e:57:59:1b:a8:
69:3f:93:e2:f5:5a:27:a3:66:41:1f:86:43:d4:ad:
4a:c9:3f:ce:ac:ff:92:90:95:d8:48:2b:ff:0c:c2:
c8:10:90:9f:0c:e6:f0:d8:70:1b:fd:53:57:0e:2c:
f9:22:8a:4a:f1:e0:f4:d2:2e:40:7b:38:4a:c5:d8:
14:05:c6:d5:62:fa:ef:81:50:df:d1:2b:6b:94:46:
05:9f:50:6d:0b:47:ea:a8:28:40:6c:be:29:53:05:
2b:a0:f6:79:68:dd:f1:cc:4d:4e:46:53:77:ef:de:
dd:81:b4:b2:8f:f1:56:93:e8:81:76:e6:8b:a2:cd:
0f:d1:5d:14:19:41:f6:fe:2a:c6:ac:49:52:89:5f:
7d:fe:9e:e1:d6:d0:8e:71:56:fd:5d:07:95:b7:b6:
12:a8:ed:a9:ca:3a:dc:21:81:ae:48:c6:fc:3b:ec:
81:09:2e:b2:0e:8b:5b:86:39:0d:dc:ae:cc:29:be:
e9:cb:99:c8:10:48:92:8e:18:41:49:31:07:cb:04:
d1:29:79:ca:e8:19:7b:dd:0e:44:fe:d7:64:67:30:
88:86:d9:7e:76:60:58:5c:8f:f3:37:e3:0f:d0:3b:
fa:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:ED:4C:5F:9D:C4:37:75:19:43:21:77:B6:7E:96:9F:7F:0A:C0:BF
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:66:5c:7f:8d:36:bb:3f:b1:d1:13:b4:a7:9e:f1:76:90:f7:
1a:54:c5:fa:c9:34:74:dc:9b:1f:52:f7:3b:01:26:03:19:11:
c6:0e:03:19:99:13:bf:3d:11:e3:11:3a:f0:ac:b8:b6:01:f3:
36:70:52:c7:aa:27:d3:f9:75:6c:18:52:bd:ad:58:4e:5d:7c:
59:57:02:b2:07:90:d9:f8:1f:dc:3b:ad:ae:75:62:f5:0d:84:
f1:7c:cb:d6:81:ea:19:ed:1e:a0:fd:61:2e:8d:29:bb:7e:3e:
80:84:45:b2:10:0e:d8:6e:fb:4e:19:48:a1:c6:09:bf:6d:e6:
bb:a4:30:fd:e9:a4:1e:60:63:75:1b:55:91:71:a8:bc:3c:44:
14:e4:7c:19:21:7f:29:6e:2f:fb:e1:9e:c9:bc:95:2a:10:be:
0c:3a:8e:0b:9c:65:af:a6:2a:04:fe:d7:a8:98:f7:74:85:fb:
7f:32:00:97:62:f3:36:49:95:90:e6:d9:cd:ee:ef:1b:9e:1c:
96:0d:35:01:32:2c:fe:09:2c:85:79:4d:8f:ad:e4:a1:db:9a:
75:ee:bd:4b:2d:b0:96:ae:79:6f:8d:c4:81:06:3b:d0:5e:d3:
5b:d4:64:f0:eb:4d:7a:51:0d:a2:f8:6d:84:de:8f:13:8d:ac:
1d:30:33:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:52 2026 by rpki-client