Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
File: tJvYTaF5l8uyhq-QIqsuBboItEI.mft (raw, json)
Hash identifier: UXNpGw5GKDRDZqVq9MAeCahVFjUL1bB+ZOTVy7niHhA=
Subject key identifier: A2:48:CB:DC:18:E9:3B:7D:76:C6:A9:BF:BB:5E:75:98:13:1E:8F:E8
Authority key identifier: B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
Certificate issuer: /CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Certificate serial: 019D11C5B35C7C2EF7AFDEEE800294E987E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
Manifest number: 13DC
Signing time: Sat 21 Mar 2026 19:01:02 +0000
Manifest this update: Sat 21 Mar 2026 19:01:02 +0000
Manifest next update: Sun 22 Mar 2026 19:01:02 +0000
Files and hashes: 1: PTqqtT4_tP0RAOhqpaeaV7qFsoM.roa (hash: gS+7X+RhiaD/Wpkqye3btlKeUsU6cdg4vX6kC9nPKmY=)
2: Zx8NV8g2SZTn17r6ny-ihGOw0zg.roa (hash: oDKvuRyprpCre1JRHHQFdko0hYMR6EjsyiF9Shy7Ous=)
3: o_4znoNuO2BlgKbgpDwRbvS5e9M.roa (hash: UG/yd3TL4Rh6gQUIGrMAEttNV+zSF20Hc2Z6UKPMWAc=)
4: tJvYTaF5l8uyhq-QIqsuBboItEI.crl (hash: mnlGVtB20giI6uXknS3PSS/Ypnkw3cbN41vaBbIgX/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Mar 2026 14:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:11:c5:b3:5c:7c:2e:f7:af:de:ee:80:02:94:e9:87:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b49bd84da17997cbb286af9022ab2e05ba08b442
Validity
Not Before: Mar 21 19:01:02 2026 GMT
Not After : Mar 22 19:01:02 2026 GMT
Subject: CN=a248cbdc18e93b7d76c6a9bfbb5e7598131e8fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ca:59:1f:f3:f4:fa:33:04:af:27:cc:0a:e6:
d2:51:0b:ae:6b:b8:3d:8f:fb:6e:70:0a:c6:fa:fe:
80:48:f8:5f:22:ca:2d:ef:53:ba:a2:9e:ca:34:78:
a1:ef:b8:5d:d2:cf:3e:b4:af:bc:69:6c:8d:8c:d8:
74:41:6f:43:8d:54:00:30:45:1d:92:70:58:85:05:
a8:d8:2d:b6:16:02:be:03:6b:4a:47:2c:49:39:5d:
cf:cb:9f:03:47:16:4d:17:79:83:7d:c5:78:18:a6:
99:ef:e9:6c:c0:ed:cb:d6:56:e2:28:f7:88:87:35:
1e:25:7d:0f:4c:24:34:59:b6:0a:92:11:7e:ab:78:
55:ea:b5:31:c3:25:5a:46:80:9a:54:ea:f2:bc:73:
01:23:4f:97:13:34:29:15:5e:3f:aa:2d:99:88:64:
d3:e4:c1:69:b8:d6:67:8c:17:be:99:0f:40:b4:34:
88:fd:12:07:ee:11:a4:4c:65:74:7d:1d:ef:56:35:
d2:02:d6:eb:af:ef:36:d0:21:86:0b:27:e5:e9:3e:
d7:c2:b9:33:f7:2f:80:48:84:a3:35:b7:96:ae:57:
d2:a6:20:81:a9:3d:66:d2:98:4c:e5:1b:be:af:e9:
66:7e:8a:f2:b4:37:10:00:a2:2b:f8:4d:dc:f4:8b:
fa:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:48:CB:DC:18:E9:3B:7D:76:C6:A9:BF:BB:5E:75:98:13:1E:8F:E8
X509v3 Authority Key Identifier:
keyid:B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:95:42:c9:c1:d0:05:9c:da:dc:24:c1:7e:37:a0:0a:2d:2c:
62:2e:45:e7:53:c8:d6:33:d2:b5:6c:33:5f:1b:cf:74:f7:35:
e8:ab:c7:da:bd:3d:91:d7:b4:76:9f:26:7b:03:fa:9c:62:bd:
07:b0:f7:00:dd:2b:98:a9:ea:e3:38:1c:eb:a8:5e:c6:d5:a2:
fe:20:91:0c:f3:de:42:5a:46:0c:4e:6a:b5:82:75:d3:87:37:
ed:e7:72:a4:9a:af:6c:eb:ba:38:f6:3b:f1:b6:76:90:18:b6:
59:90:1c:9d:6d:78:b2:f0:2a:7e:03:24:73:c2:69:b4:02:68:
5e:7e:37:92:3a:15:74:88:61:b9:e6:c4:c4:5a:24:2d:fb:be:
99:4f:73:12:cc:18:6f:b0:77:7a:47:21:4c:60:5e:2f:b9:81:
36:12:34:c0:02:b4:dc:a0:6d:94:14:39:27:97:2b:cc:c7:19:
03:64:fa:ec:3e:c2:98:85:96:cf:88:09:cf:3f:c6:2a:f8:fc:
25:63:16:54:a9:7d:e0:4c:c3:3b:64:31:bf:47:d8:a5:94:da:
26:8a:a7:f5:f8:ef:b8:25:3d:43:3c:a2:9a:b9:fb:ba:90:e8:
98:1f:db:25:7a:f7:6a:dd:39:a3:03:54:54:d8:2e:1e:36:7e:
10:0f:34:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 21:42:00 2026 by rpki-client