Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json)
Hash identifier: rmQwSbvYlesB+D5AZBU+cH+eLHnHHbJKsHVP3AJ/MnE=
Subject key identifier: F9:EF:75:1E:7D:38:07:33:94:E7:6C:23:15:FB:3F:49:F2:D2:37:FA
Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Certificate serial: 019D2A725CAA47EB82048C47EF931E5C1211
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
Manifest number: 0EB9
Signing time: Thu 26 Mar 2026 14:00:31 +0000
Manifest this update: Thu 26 Mar 2026 14:00:31 +0000
Manifest next update: Fri 27 Mar 2026 14:00:31 +0000
Files and hashes: 1: dIqmIrGGl8FI-sOwGOw90e9FkJY.roa (hash: ux/S4urJBgHoaCGluZkTkGPr6Fq78RqIkr3zENS3Pqk=)
2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: De3p2ZClgmRlzSJp7PiIxTMonV4htyFju8otipbjboY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:5c:aa:47:eb:82:04:8c:47:ef:93:1e:5c:12:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977
Validity
Not Before: Mar 26 14:00:31 2026 GMT
Not After : Mar 27 14:00:31 2026 GMT
Subject: CN=f9ef751e7d38073394e76c2315fb3f49f2d237fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:bc:bf:33:54:58:64:0d:08:f0:33:91:69:
6d:37:d7:34:c9:f9:88:b6:20:95:3e:ac:59:8f:a5:
8b:a1:a2:d7:4f:da:c7:17:59:73:e6:50:f6:0a:0e:
3d:bb:4a:ca:fc:12:bc:89:e1:93:9a:5f:fb:0d:36:
80:37:f1:df:13:de:37:28:b3:f6:e9:ba:f0:68:21:
4f:38:df:74:a6:33:be:42:16:c9:e5:2a:3d:65:79:
7b:00:70:39:5d:06:15:be:19:07:f7:52:5f:10:60:
c6:2e:b6:41:5a:d4:88:98:e4:27:02:47:2d:ed:23:
ab:b6:89:d4:58:c8:96:08:7f:bd:04:9c:5b:91:be:
ba:c5:68:7b:7b:a2:2d:5c:70:d5:3b:bd:80:0d:b7:
79:6d:08:7e:50:18:bc:21:9d:23:cf:39:01:eb:45:
bf:37:9d:3a:43:e8:0b:3f:7d:f9:70:da:79:93:08:
b2:22:aa:e6:99:c7:c4:d3:5e:8e:54:25:af:fa:6c:
2a:c3:4b:34:90:c4:bb:d1:f2:89:5f:5e:57:14:d0:
ed:ae:09:49:4a:3f:75:64:db:83:0f:c4:7f:97:03:
e9:7b:2b:ca:3c:5b:17:c3:27:1d:cd:76:f8:01:1f:
05:17:f5:29:68:35:df:e2:e2:70:bd:17:fb:44:b0:
d0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EF:75:1E:7D:38:07:33:94:E7:6C:23:15:FB:3F:49:F2:D2:37:FA
X509v3 Authority Key Identifier:
keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:92:99:13:2d:a6:e7:f9:0c:c5:e0:45:58:a2:d5:23:8a:3e:
05:42:9d:55:5a:f8:b8:2b:43:9a:f1:04:4a:a2:a9:b6:18:fc:
2e:ad:8a:89:9b:bb:e8:2a:16:50:f8:fa:f2:20:37:1b:77:28:
42:30:9e:73:42:e5:0f:33:6d:a5:32:ed:24:89:4a:86:96:6e:
32:8e:be:9f:64:30:2e:8b:36:de:c0:93:43:55:49:4f:e2:97:
ae:ea:e8:65:df:a0:20:35:42:08:69:6e:84:13:9f:eb:f7:c1:
11:8f:84:40:63:b6:7f:89:ae:44:06:f7:aa:eb:38:48:71:ad:
75:34:c1:ca:c0:e1:a7:45:23:54:1c:2b:be:06:e4:5a:27:f1:
13:3b:ae:21:56:44:5f:19:db:e4:42:f3:bd:5f:22:33:42:24:
e7:d0:44:52:20:6f:dc:88:5b:ab:1d:de:c0:90:e5:31:cd:d9:
22:23:d0:30:4e:bc:0f:79:10:b7:c8:ee:3f:01:3b:eb:e1:bf:
bb:b3:29:69:e9:01:99:8e:bb:31:d3:94:df:d1:74:5e:35:11:
55:f6:77:34:1f:b0:63:28:0e:65:be:8d:87:af:32:5d:f2:82:
ac:91:dd:d6:80:15:8a:f6:05:a8:ef:8a:39:76:c8:c6:87:a1:
7d:aa:11:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:36:48 2026 by rpki-client