Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: Flx4T5/iJh7R6fUW3ZA3OqB4+y3/10nHeIa8pVKc0uY=
Subject key identifier: 3C:06:53:FE:61:1A:99:26:88:3D:CD:BF:98:F4:2F:A1:32:FA:79:37
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 019D25BA8CBAFDB272EA659FAE3A7781109B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 142F
Signing time: Wed 25 Mar 2026 16:01:15 +0000
Manifest this update: Wed 25 Mar 2026 16:01:15 +0000
Manifest next update: Thu 26 Mar 2026 16:01:15 +0000
Files and hashes: 1: R_zL9EhetPG627p64jnL_1AQk_k.roa (hash: /ASm15I9YtFuL/r1IrLrMNiCv/23kZabo3hMsyygvPM=)
2: Zx2Ej29t4Sy3ugAdSAEr8wgh-eI.roa (hash: 6qePl3E6/9bWQI3GzNjE+NBTWrA6JE82fp1zkkf+j8o=)
3: gPytstS2H2DCx0G35K4nAVksneE.roa (hash: I34ZNFgqBn6ft829pIhUL9qJ7ZwAtJssKpKV0YYtJmI=)
4: hL4U-26oJ-d8CY7a6r3Udux4pFM.roa (hash: 8nT0Nid1k0WCSq4dufjGbFyrf1TbKzMQQr3veAEfmRs=)
5: jJ74mpm8B1pyvT1MNhCtSe0cxRk.roa (hash: OKs2X6l4NJ7txPZTz3RUzDrNyB2I3km6f/sNQFkFGUQ=)
6: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: ZH5wjlcmE0LrS84iQyw/f51oevkHy8OJg+DD4K7tAfI=)
7: v_CzW-gEtbdZtpCnpKHVty7BP7s.roa (hash: FK1HiNTHGuvdh1/S7hYfIVoOC1e1CT6RxRS6KDmNYRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:8c:ba:fd:b2:72:ea:65:9f:ae:3a:77:81:10:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Mar 25 16:01:15 2026 GMT
Not After : Mar 26 16:01:15 2026 GMT
Subject: CN=3c0653fe611a9926883dcdbf98f42fa132fa7937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:89:ac:d8:45:15:4d:09:a2:e8:c7:95:cc:58:
d5:35:06:23:cf:43:db:6e:96:88:2a:9a:2b:e6:c7:
7f:71:c1:18:8b:3e:a8:51:95:96:58:30:64:82:17:
88:71:d5:6e:8f:1d:90:10:c6:52:61:81:8a:9f:cb:
4a:e3:13:1d:bf:f5:93:5b:ec:44:31:f9:96:29:0a:
42:d4:cd:9b:7d:87:53:e3:04:76:ee:22:8c:2f:37:
1b:cb:e4:92:ca:fa:ed:b8:8d:33:b0:98:7e:3d:74:
21:0c:a9:fe:c2:22:9a:80:1b:51:f0:53:1a:6d:ef:
98:73:24:5a:3a:bd:a2:17:a7:93:41:fe:5d:5b:b7:
ca:9e:fd:8f:6a:84:0a:82:f9:4e:a8:ae:2f:53:fd:
10:50:13:76:f7:49:23:13:a5:cb:1e:4a:ad:40:c4:
07:bc:25:6a:2d:6f:fd:ab:f3:ed:b5:e9:3c:d4:f9:
73:1f:55:ef:dc:99:52:1b:23:f3:55:ab:8d:52:85:
af:9c:6a:70:7c:45:be:da:d5:70:96:3e:8f:63:79:
e6:29:2a:dd:42:72:2c:d9:c5:2a:c7:b9:fb:7d:33:
b8:28:fe:6f:71:0f:7e:3d:36:28:ad:f0:15:03:14:
3c:12:e3:90:b4:f8:57:4e:86:a9:dc:3a:bd:13:06:
1f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:06:53:FE:61:1A:99:26:88:3D:CD:BF:98:F4:2F:A1:32:FA:79:37
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:fa:b5:db:33:87:4f:ca:ba:5b:01:c0:4a:b6:37:b1:22:7c:
3a:fa:10:03:e0:3e:26:9a:c7:8f:95:18:dd:81:91:08:67:4f:
f0:ae:03:d3:95:75:1d:24:0c:52:6e:bd:b6:ab:f3:6d:dd:45:
06:10:0f:30:f1:59:46:8c:5e:65:16:4e:9b:31:37:da:ed:99:
93:0d:0d:40:0d:87:d6:70:39:55:fd:c2:6b:7b:a1:75:54:18:
66:e2:ab:8b:9c:01:c3:cc:de:6e:da:61:97:25:17:d8:8f:a8:
97:8e:df:f9:89:61:d7:a6:a7:52:8d:18:c7:8f:0d:5b:a3:89:
10:f2:3f:33:2e:de:4c:49:c3:eb:c0:b5:a7:e4:58:1b:29:41:
2a:f1:6a:f1:bd:ec:7d:64:eb:8b:4c:17:87:f3:6f:0d:f7:3b:
99:05:c0:29:db:a0:67:a7:cf:de:e4:8d:92:17:83:f4:f1:26:
a0:30:02:ba:47:83:d0:f8:dd:13:dd:43:d4:6d:1b:88:b6:8e:
43:77:a7:1a:75:ab:77:a4:6f:be:81:8d:b2:da:10:7b:06:ae:
df:db:cc:89:c4:69:b4:f8:4c:d3:1b:a8:87:ba:d1:e7:ed:2b:
41:86:60:21:33:99:79:58:5d:69:a8:6b:e2:76:18:a4:44:b7:
c3:de:c2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:46:42 2026 by rpki-client