Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
File: tpQiR24a5eoNWOT4_fkfBfEC_vs.mft (raw, json)
Hash identifier: iCZhfZS+bXj9oOACDHcqf5FbPaTj/q0PkpuFhya57V8=
Subject key identifier: FF:F2:BB:5E:01:C4:38:85:97:3B:6E:5E:90:44:F8:29:B2:F8:28:18
Authority key identifier: B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
Certificate issuer: /CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Certificate serial: 019D389C38B5099050BBB4DA3DB1FC76D3E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 08:00:55 +0000
Manifest this update: Sun 29 Mar 2026 08:00:55 +0000
Manifest next update: Mon 30 Mar 2026 08:00:55 +0000
Files and hashes: 1: ISfG2ceyWuWYeRgRuKuH6VXmeXE.roa (hash: dFAyLFozLbvyA3OIY3CyaWsZeKTyXIGDjyZDQv/swnk=)
2: PQzbNhLV7WARqjZ2K9wwzRtvgZU.roa (hash: Jji1aUdojCSmn8rbwnWDExchCVVbDC1F3h2Ol9wg7o8=)
3: tpQiR24a5eoNWOT4_fkfBfEC_vs.crl (hash: a6/ebl2fDoLFYR++gU94vW20DWLi5jW8ZZje1MHo3ZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:38:b5:09:90:50:bb:b4:da:3d:b1:fc:76:d3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Validity
Not Before: Mar 29 08:00:55 2026 GMT
Not After : Mar 30 08:00:55 2026 GMT
Subject: CN=fff2bb5e01c43885973b6e5e9044f829b2f82818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:b0:cb:6b:ba:81:dd:07:b6:ef:15:ee:eb:
2e:44:b8:84:6e:c1:8f:01:46:03:cf:94:f8:b9:68:
05:7d:bc:60:0a:8e:81:a1:6b:2b:69:9c:7f:f9:aa:
0f:88:a1:6f:9f:bd:f0:51:04:92:8f:22:f1:bf:f0:
a2:e6:71:5f:28:6d:5a:39:23:b1:6f:01:ba:fa:fa:
a2:82:0c:d9:b0:86:9d:45:58:5f:b5:66:68:b7:f8:
c6:fe:00:15:b6:b1:1d:f5:b0:04:ab:cc:f7:8f:c1:
22:af:ea:87:e4:85:c6:4c:02:9f:9c:de:b4:be:1a:
74:ca:0f:37:02:18:df:49:83:ac:3e:4f:cb:17:d6:
8e:7e:ca:05:09:b0:e3:59:a9:84:b9:af:5b:2a:46:
18:82:ae:6f:ff:48:27:1a:b8:ca:1f:6a:dc:6d:cd:
a1:05:c0:46:03:34:d4:3d:dd:0f:a6:ce:b0:0c:fc:
26:d3:45:64:6e:db:f6:80:7b:b9:42:3c:06:7d:04:
73:ad:5f:f5:fa:e8:2b:dc:ea:a0:74:c9:17:af:d7:
e1:82:89:5c:33:8b:13:a8:1b:15:6b:63:d8:30:3a:
24:23:a5:94:83:f1:08:1b:43:23:02:50:c1:5a:58:
c3:35:57:77:76:52:eb:48:ca:76:13:cb:03:10:06:
b7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F2:BB:5E:01:C4:38:85:97:3B:6E:5E:90:44:F8:29:B2:F8:28:18
X509v3 Authority Key Identifier:
keyid:B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:0f:cd:13:f2:79:5c:f1:ee:d1:93:e9:9b:9d:6e:8b:80:ed:
f0:c3:0e:6d:fd:4f:f7:ac:c0:ea:c6:d5:7c:d2:c6:70:3c:cf:
7d:2e:22:f5:a0:07:16:31:65:c3:4e:9e:74:10:b2:50:f1:26:
ad:8d:86:35:e7:08:45:13:e7:59:de:22:9f:9e:80:ec:b8:6e:
39:3a:36:f4:8e:50:82:e7:7d:2f:56:95:b8:73:cb:ac:24:1b:
7d:6b:d6:13:04:29:91:75:f4:0b:b2:a6:20:72:f7:b1:9c:7c:
dc:18:35:2c:2d:f2:14:cd:be:4e:31:81:53:47:95:dc:a5:50:
d4:b4:c3:29:c0:14:67:4f:a0:b9:33:d3:b9:69:7a:f1:d3:08:
c7:24:cc:77:6e:52:27:22:3a:34:a5:4a:56:ca:b5:02:8f:30:
ef:c5:97:93:01:b4:69:0d:bd:f8:f7:dd:af:8a:05:79:c5:70:
ef:b4:3a:9e:41:60:68:0f:5a:e2:7a:bb:0b:60:70:e3:e4:8b:
dc:d8:e7:18:74:03:b7:82:34:59:21:f0:7c:61:80:98:cc:dc:
06:a2:b9:0e:87:f3:b8:20:26:c5:c7:86:24:97:6a:f7:3f:d5:
29:36:27:e8:61:5b:be:ae:71:e4:f9:fd:81:fe:83:55:41:f7:
89:b8:bc:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:40 2026 by rpki-client