Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json)
Hash identifier: LmRDumkaT4uA0mDusFYFEGrBlwhX5PSeythNWzwavLo=
Subject key identifier: C9:67:78:6F:57:65:50:46:1D:BE:94:EA:A0:75:8C:7D:94:B6:4C:27
Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Certificate serial: 019D28BBEF199825F70CA66B8C5A36B3C157
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 06:01:38 +0000
Manifest this update: Thu 26 Mar 2026 06:01:38 +0000
Manifest next update: Fri 27 Mar 2026 06:01:38 +0000
Files and hashes: 1: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: hteUK/FuhyabHYFyCUKDkdM2K4Nb/bCFSnn2XWuSZUM=)
2: bsiJMh925Q6yXtQJa1CQ5jNihts.roa (hash: X9V/B7+nYNlAPiuflw59MNnI7H3EmEftfAgXQa1P4vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:ef:19:98:25:f7:0c:a6:6b:8c:5a:36:b3:c1:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Validity
Not Before: Mar 26 06:01:38 2026 GMT
Not After : Mar 27 06:01:38 2026 GMT
Subject: CN=c967786f576550461dbe94eaa0758c7d94b64c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:50:34:2b:35:62:51:14:46:c7:06:ef:0f:05:
6d:3c:72:74:21:1e:ce:e2:0f:f1:63:a6:d8:28:7a:
81:74:25:98:6c:48:e9:1a:9b:3a:85:e0:ba:2d:9d:
bc:8f:29:1a:3a:a3:63:26:6c:66:85:ff:ed:bd:e1:
6c:09:f5:8b:fa:68:72:97:8e:97:c3:8a:22:e4:40:
04:1d:ce:45:10:86:dc:81:4d:d5:83:e9:d2:1c:1a:
7b:eb:f2:a5:82:1b:55:e1:1c:92:af:59:a4:3e:b4:
97:fe:5c:ab:a2:c5:fd:16:4a:c0:82:16:20:c1:c3:
c3:a8:0d:38:9f:c7:4a:f6:63:f8:4d:d3:ba:60:ed:
0d:c9:a0:40:33:ad:c0:f9:f5:31:fb:a1:8e:76:bc:
dc:b0:91:2b:20:37:0d:8c:65:2c:64:89:1d:da:29:
c3:15:16:6a:e3:19:c0:8b:bc:af:a3:f1:5a:f2:37:
22:7d:24:f2:c2:71:ac:18:03:46:27:1e:b6:d7:a6:
3d:bb:87:e4:90:6f:0a:36:03:4f:a1:c7:fb:60:8a:
a8:9f:eb:96:3d:f5:39:33:e9:24:c5:e7:39:81:2f:
e5:1c:8b:6c:e4:3d:ba:1d:2f:94:15:07:f4:20:f9:
3f:ca:2b:aa:4d:1a:43:e2:3b:53:89:62:9d:cb:2d:
d6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:67:78:6F:57:65:50:46:1D:BE:94:EA:A0:75:8C:7D:94:B6:4C:27
X509v3 Authority Key Identifier:
keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f7:38:b8:ec:29:2a:4f:18:79:8d:f2:2e:da:b4:9f:57:08:
f5:a1:6b:1f:d3:9f:63:ae:a7:26:68:42:3f:5b:81:03:c2:4c:
d9:37:02:c2:a5:9b:33:af:fc:66:7f:41:78:33:45:ea:32:6f:
5e:db:71:b3:be:59:60:3c:2d:8f:61:ac:69:aa:a3:74:5d:9e:
02:70:11:ed:b2:0b:fb:20:b1:1c:95:f0:0a:71:8e:ff:5e:44:
43:e9:13:e9:32:af:65:b4:eb:5e:d1:81:61:ee:17:6e:35:9f:
4e:a0:11:21:ba:8e:99:bb:50:0b:2f:df:d5:00:26:d6:53:4e:
b2:32:66:f3:a2:91:7b:4c:b1:14:d8:39:aa:a8:eb:3e:72:78:
9b:68:0f:05:43:cf:30:43:a7:e7:d3:5b:fc:27:4c:2b:c0:56:
b7:ca:db:10:34:95:8d:9b:0b:79:72:62:19:84:b7:5b:fb:a0:
3d:85:2f:22:bb:64:09:6b:f7:a9:cf:97:1b:75:46:29:e0:b2:
92:69:72:89:84:3b:a7:ae:26:95:ed:d8:fd:d2:e8:fe:02:c1:
05:e5:1f:73:bf:c2:05:31:31:7e:36:58:52:86:0c:4e:ed:b5:
54:a4:1d:ac:b2:7e:3e:4e:3e:3a:e5:49:86:74:19:fa:90:ef:
42:fe:02:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:25:15 2026 by rpki-client