Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
File: tmlTqin4JZqgLBImpGzgnt1Fzp0.mft (raw, json)
Hash identifier: 3a86YbuqjwP/zzBgluhylVKpaxA+SJUN7X518z1DZyk=
Subject key identifier: 43:35:A9:D1:6B:18:29:C2:B9:17:8D:A5:B2:3D:D2:BF:21:7A:0D:31
Authority key identifier: B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D
Certificate issuer: /CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d
Certificate serial: 019D2A3C6034320B16043B502DB6CCDAF482
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
Manifest number: 033D
Signing time: Thu 26 Mar 2026 13:01:32 +0000
Manifest this update: Thu 26 Mar 2026 13:01:32 +0000
Manifest next update: Fri 27 Mar 2026 13:01:32 +0000
Files and hashes: 1: 69HB2mRccTU_k2AKxC7mKL2wmhk.roa (hash: N4JO0TUWjytNmZGyVjwMAyV4wDwmKWd+UMTD1SHMVxU=)
2: tmlTqin4JZqgLBImpGzgnt1Fzp0.crl (hash: Z0r1XV9CGeZ04sCk4QQbxzpSDAGvhQk5dmLkbl5iy/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:60:34:32:0b:16:04:3b:50:2d:b6:cc:da:f4:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d
Validity
Not Before: Mar 26 13:01:32 2026 GMT
Not After : Mar 27 13:01:32 2026 GMT
Subject: CN=4335a9d16b1829c2b9178da5b23dd2bf217a0d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6b:ce:9d:ab:50:de:a1:b4:55:34:9f:76:13:
e7:df:5d:89:30:31:1f:bd:91:95:2d:eb:24:e8:9b:
25:00:c1:cf:b7:88:c4:b7:ad:30:21:44:52:b4:7e:
ce:9c:44:60:df:55:78:e5:48:72:41:2b:f9:fe:a3:
74:65:1b:79:74:ce:28:4f:2e:07:d4:1a:4e:7d:fe:
c4:8f:a3:35:4a:0d:bb:d6:e5:77:21:03:a6:2c:02:
c2:41:27:c5:93:25:7c:10:90:0a:89:47:ea:a8:aa:
f6:0f:b6:4b:32:67:93:e4:af:14:b4:f5:7e:ff:f6:
1c:7b:81:0d:fe:05:16:6f:0a:57:40:1c:89:b6:81:
48:93:89:06:7b:52:6c:92:86:d8:9e:f3:92:21:21:
86:66:54:27:4b:26:04:a0:00:a0:a5:fa:b1:bc:7c:
7b:ae:cc:fd:eb:b6:ee:eb:ea:63:d4:0f:11:b5:3b:
1b:ee:e4:4d:f9:fc:4c:04:0e:8b:13:f6:16:25:29:
66:90:9c:75:cb:1b:06:09:b2:d6:1f:a0:99:1b:54:
2a:aa:7e:aa:da:14:8f:1b:42:da:5a:52:a5:93:a3:
69:95:e2:47:13:49:47:fb:39:89:91:6a:cd:c5:90:
5b:d6:9c:a0:53:6e:f3:35:4c:e7:98:a8:28:a5:15:
e1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:35:A9:D1:6B:18:29:C2:B9:17:8D:A5:B2:3D:D2:BF:21:7A:0D:31
X509v3 Authority Key Identifier:
keyid:B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:9f:b6:60:24:78:7c:c5:9d:c3:1b:4f:86:6f:16:01:d4:37:
13:36:74:54:c5:7e:31:5f:cc:07:b7:39:2c:16:6b:02:8b:13:
1c:f0:a2:b3:eb:bd:ea:42:cd:28:e5:e5:d0:ab:14:e3:6e:50:
64:fe:a2:34:89:c8:e7:94:04:cd:e6:d9:28:e3:0d:ec:2b:83:
0d:b4:19:4d:06:4e:18:64:b4:c7:79:c7:ba:dc:3a:83:c8:b7:
d6:07:7b:78:f5:04:6d:06:dd:66:41:c4:3b:ac:09:b5:51:74:
67:52:02:c2:14:4b:3c:9f:e5:99:a1:78:39:97:f0:4a:2a:33:
fb:52:af:13:b6:e4:d4:25:2b:fb:d5:61:2c:dc:45:0a:7d:00:
b4:09:68:35:4e:ec:0d:ef:7e:34:1f:f4:ac:14:78:ce:e6:ee:
f8:3e:7f:16:65:b9:d6:60:d1:fc:4f:5f:39:e7:55:1a:16:bf:
86:e1:35:55:8a:f0:23:02:80:d1:1b:02:d9:74:9b:cf:5a:39:
b8:f4:83:36:c2:0a:fb:e2:93:3a:11:cb:2b:a1:d4:4c:77:cd:
7c:6f:36:ab:8b:0f:1b:16:7b:db:b7:15:17:37:b9:4d:62:c4:
33:cb:37:01:66:b3:d5:92:e5:a5:b4:30:0b:45:a1:db:6e:72:
1c:02:7c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:38:28 2026 by rpki-client