
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: v0Yrz6DgELGqgnkWBLmzbOiC02MrPsOHaYPN7pNvyxo=
Subject key identifier: 98:5A:DC:A6:C2:AE:33:99:91:50:7D:C4:12:E4:12:7B:BD:DC:A0:3C
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 019D2884B6FF27C67451F05BF5146C738E49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0EB8
Signing time: Thu 26 Mar 2026 05:01:19 +0000
Manifest this update: Thu 26 Mar 2026 05:01:19 +0000
Manifest next update: Fri 27 Mar 2026 05:01:19 +0000
Files and hashes: 1: dIqmIrGGl8FI-sOwGOw90e9FkJY.roa (hash: ux/S4urJBgHoaCGluZkTkGPr6Fq78RqIkr3zENS3Pqk=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: Nb3kxZ8M20Slvtpjn5cu+oNUCoiuk9MlgnhjntDyb3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:b6:ff:27:c6:74:51:f0:5b:f5:14:6c:73:8e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Mar 26 05:01:19 2026 GMT
Not After : Mar 27 05:01:19 2026 GMT
Subject: CN=985adca6c2ae339991507dc412e4127bbddca03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fb:2c:3f:49:14:ab:fb:27:62:a6:ed:df:03:
f1:43:c4:95:2c:32:1c:04:58:94:54:36:c1:53:ef:
7d:24:5e:60:62:9c:46:e5:91:2f:bd:04:d5:aa:4a:
d2:f2:3d:d3:94:2f:a3:c0:79:77:83:0a:6f:70:88:
ae:a6:ef:1e:38:d2:67:a5:26:07:df:e0:13:ef:11:
da:a0:2b:6e:76:99:e7:a0:e5:17:58:05:f0:45:80:
87:0c:7e:2b:25:14:8a:1a:fb:fd:f4:28:42:86:de:
3a:d5:ca:a1:14:d9:6e:69:cb:f2:11:96:0f:9d:9b:
7d:a6:83:ae:f7:aa:47:a6:a5:1e:f8:63:94:0c:24:
22:1d:7d:17:a1:6f:a3:9e:3f:91:c0:59:d3:14:d5:
47:db:5d:f3:71:78:f9:70:38:b3:40:66:d8:e1:5c:
25:6c:25:db:78:a3:d8:58:8f:c7:f2:6b:9e:b3:f4:
c3:83:7e:68:a6:02:b7:ad:09:8e:f3:0a:14:6f:df:
f8:7e:ab:da:a1:a9:b8:c1:6c:62:97:f4:ab:17:ed:
fb:3d:24:66:ed:57:61:58:d0:17:3b:25:7c:72:99:
18:c1:bb:c3:e6:5f:4b:4b:ee:e8:ae:c0:dd:89:48:
63:d5:57:0e:9a:51:cb:57:f0:c4:24:70:79:45:cc:
5c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5A:DC:A6:C2:AE:33:99:91:50:7D:C4:12:E4:12:7B:BD:DC:A0:3C
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:54:b3:67:4f:93:3a:de:7c:3b:8c:2f:e6:90:9d:e8:cd:8d:
ac:84:03:68:48:62:98:7e:d6:69:3c:a4:be:16:b5:e1:08:f8:
77:67:7d:70:58:86:99:3b:05:5a:0b:8c:c0:6a:36:37:93:c5:
74:6b:4c:03:87:42:e1:a0:0c:da:a2:e1:4a:c1:13:4f:31:80:
e7:5e:5d:d0:2c:04:60:25:48:9b:6b:58:ef:26:ad:90:da:17:
a6:dd:5a:70:89:e5:02:87:e2:f0:4a:40:e2:c0:6c:2a:37:4e:
84:4a:fc:81:85:d3:2b:8a:a2:cc:d1:6a:c6:f2:0e:df:52:5e:
63:06:3f:7b:57:ac:d3:57:64:df:cf:d5:9a:df:1b:d9:0b:3f:
4f:f4:0d:f3:a4:dd:13:0e:dd:b1:55:80:37:89:35:0d:76:f5:
c8:fc:55:18:88:34:94:b3:4f:00:49:db:81:2e:0e:f6:92:1b:
be:5d:13:21:a0:db:c8:e7:c0:4d:e7:6f:ec:59:05:b1:6f:ed:
7a:b5:b3:c8:f3:fa:d8:f9:ef:56:6f:f5:23:5d:83:cb:e1:e3:
0f:3c:88:ec:3a:6e:2d:a2:e7:97:49:6e:4c:52:4d:02:f5:2a:
b4:b7:74:62:d9:6c:a6:2f:37:d3:31:54:a0:65:8f:f7:41:f9:
db:7b:a6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:36:31 2026 by rpki-client