Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: wCe2TGbwH5H3VoYg4M2lcQT0D2foeR8y66FEu7m08jU=
Subject key identifier: 81:70:A3:57:50:B1:7B:0B:F7:13:C5:EF:0C:AE:AA:34:B8:72:BC:BC
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019D38D3B3561DD7D72AE2B4810E1E728006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 1163
Signing time: Sun 29 Mar 2026 09:01:31 +0000
Manifest this update: Sun 29 Mar 2026 09:01:31 +0000
Manifest next update: Mon 30 Mar 2026 09:01:31 +0000
Files and hashes: 1: jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa (hash: ZabLLdJJR9GqGbqwCz27PSZyCvB4TLOCdk9dPP8Hc2Q=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: wUhFlYhyeb6wtcl59btphdK3Xu+B8f0Km7egUYweH2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:b3:56:1d:d7:d7:2a:e2:b4:81:0e:1e:72:80:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Mar 29 09:01:31 2026 GMT
Not After : Mar 30 09:01:31 2026 GMT
Subject: CN=8170a35750b17b0bf713c5ef0caeaa34b872bcbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2e:41:6b:0b:4f:a8:94:df:63:c6:71:b5:0d:
90:18:b8:c0:40:cd:40:f8:a8:b7:6a:a4:af:4d:f0:
b5:c3:ab:de:48:7c:ee:20:39:dd:6e:07:ad:f7:50:
eb:70:df:3b:cf:f2:bb:f2:f1:7b:c2:0b:cf:68:9f:
9c:6c:26:70:93:70:3e:94:61:9f:2d:63:e3:9c:8d:
44:2d:b1:15:ac:8d:07:04:85:31:04:9d:3f:7f:47:
0b:c6:4d:9d:99:6e:67:b1:ac:e0:b0:99:e8:f8:39:
0e:2f:1f:35:40:40:45:c8:4b:55:9a:74:79:27:f6:
24:cb:87:48:35:f6:32:08:5c:5f:15:9d:d3:ba:aa:
fe:35:d7:29:b2:ae:bf:d7:14:a9:9c:36:ba:fa:fb:
fe:ef:21:b6:8e:52:9f:91:de:ca:42:4f:a9:f5:17:
f9:37:b1:5a:35:a2:a7:9d:27:10:95:59:10:16:66:
58:91:e2:41:4a:52:36:80:08:48:7d:10:8f:d4:52:
67:b5:77:e2:fb:aa:1f:83:e4:da:0e:d3:cf:f3:19:
08:bc:99:dc:12:fc:03:56:b7:75:60:68:c1:dd:c9:
36:2d:91:17:0b:51:ad:89:8c:dd:7c:e5:fc:9e:29:
14:76:12:70:19:0d:0c:8b:00:c4:e6:3c:d9:a0:8f:
ec:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:70:A3:57:50:B1:7B:0B:F7:13:C5:EF:0C:AE:AA:34:B8:72:BC:BC
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:fc:0b:01:95:23:0e:d7:fc:7c:33:5a:9f:36:6e:e6:c8:0a:
2b:0b:fc:21:b2:73:54:ec:1c:2c:e3:9a:75:2a:a2:c7:da:a1:
bd:36:0e:22:c1:8d:a7:47:4c:54:bd:97:a1:0b:2f:e3:68:91:
21:73:9a:9d:46:af:79:a4:ec:3e:42:42:7a:0d:90:1d:a8:b5:
c2:b0:7b:2a:97:c4:a8:d4:b4:d7:2c:47:18:6d:fa:b4:1f:10:
88:b6:d4:29:95:c2:1b:5e:32:0b:82:3c:04:36:6f:be:27:9b:
79:b3:25:a7:b5:8d:93:69:8e:fc:a1:c9:d2:c9:8f:c5:04:bb:
6d:92:30:21:8b:ca:4f:07:89:b6:2c:cd:1f:e0:86:b6:1f:df:
82:df:d3:be:1c:88:2e:9a:2c:fb:bb:77:0b:51:65:8d:04:a8:
55:de:c3:2c:79:64:19:f7:47:7f:0b:ce:29:64:d7:f1:7d:89:
9c:65:5a:f1:78:35:20:bb:f1:d3:25:e0:30:23:0e:f1:ff:f6:
80:68:77:81:75:34:8f:24:18:f8:9f:e4:16:55:78:8d:34:83:
98:b7:c2:f0:2a:c8:89:b2:a1:25:e1:49:6b:1b:1c:f1:eb:0f:
1c:2e:d9:98:c9:ca:b2:46:0d:fd:b5:fa:9c:5b:e8:bf:5f:ed:
79:ca:e1:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:53 2026 by rpki-client