Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json)
Hash identifier: adaIYBwe/MKeAJGCk/JFX8sSujQ+vuhlcxQT6zXBDKg=
Subject key identifier: 19:56:E5:84:48:90:84:D3:2E:4E:79:6B:C0:EF:95:57:27:0B:2D:45
Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Certificate serial: 019D37F781D5564147B6748F39C83A4E3803
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 05:01:00 +0000
Manifest this update: Sun 29 Mar 2026 05:01:00 +0000
Manifest next update: Mon 30 Mar 2026 05:01:00 +0000
Files and hashes: 1: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: lbT4bnZJcN4snBXoy266SFS09t1WcWS/G1GpMZN2D7Q=)
2: q0EJWTGDwVco__jebUVu3D5kU9c.roa (hash: tb42uJpdP5nMQK249exHWZcGEWgXf/qYgSBE+LChXnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:81:d5:56:41:47:b6:74:8f:39:c8:3a:4e:38:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803
Validity
Not Before: Mar 29 05:01:00 2026 GMT
Not After : Mar 30 05:01:00 2026 GMT
Subject: CN=1956e584489084d32e4e796bc0ef9557270b2d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:df:d8:37:29:c2:84:07:42:16:ba:c7:b0:65:
b0:a0:84:8a:2b:8c:7f:8b:ce:1f:9f:1d:4f:42:a4:
d3:9a:a4:00:d8:0d:62:71:02:13:3a:29:54:d6:7b:
20:7e:9d:08:b2:0e:fd:14:56:35:d1:3e:21:4a:d2:
79:cd:cd:9b:ee:e7:02:a3:8f:59:9d:4c:6c:ec:ee:
14:f7:be:3a:4f:c8:96:4c:20:d1:f2:b5:80:69:3a:
fa:5d:35:4c:5a:9c:9b:7e:d2:36:1e:fc:e3:b1:4b:
cd:30:80:2b:ef:ef:40:6d:6e:ae:ac:da:33:c8:ac:
aa:e5:c9:4b:22:1f:f5:38:2d:3a:31:d7:80:6a:16:
4c:77:6a:05:4f:6d:0a:f0:e6:5f:1d:fd:ef:df:ff:
38:5b:34:35:32:11:e6:b0:24:f3:cc:4b:1b:9b:a3:
96:d0:8c:76:09:5a:79:ab:de:92:20:ea:5c:98:6a:
ab:f5:c2:78:eb:19:a4:29:2e:58:af:cb:c7:d0:3f:
23:be:48:ed:4d:bf:06:1d:76:cf:34:bc:bb:2e:23:
cd:44:95:7c:96:20:fa:96:4f:44:19:a8:48:6f:91:
5d:68:6b:8f:df:21:8c:46:88:43:5f:4d:05:15:87:
0c:14:fa:bd:66:bc:80:9b:e1:34:ac:2a:d3:8d:f8:
39:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:56:E5:84:48:90:84:D3:2E:4E:79:6B:C0:EF:95:57:27:0B:2D:45
X509v3 Authority Key Identifier:
keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:6e:cf:90:f9:b1:6c:a4:28:c9:4b:9b:18:74:99:2d:16:7c:
42:1b:35:6b:01:f1:f9:97:52:4f:8f:b5:5f:72:55:98:4c:a9:
95:e5:b9:ae:56:fa:7a:b4:d8:95:ff:f7:13:bd:37:e8:0b:43:
ca:89:fa:ba:39:25:9b:4b:df:4b:ba:b9:ca:43:65:62:f8:dc:
f9:d4:ee:56:24:cc:ff:20:fa:d3:98:0d:08:39:a0:13:8d:5f:
32:5c:60:6b:35:63:93:cd:f2:99:c9:0c:31:3f:26:ad:32:0a:
23:bf:2c:9b:f8:13:c4:21:cc:bd:2a:cd:d8:b1:33:9d:45:2b:
77:07:0a:2f:f6:e9:a9:b7:db:d2:27:30:24:a2:de:f1:2e:63:
2c:79:d5:af:26:77:8e:9f:14:5c:c4:92:b0:fc:80:5d:ff:75:
24:24:30:db:c6:e7:c1:7d:7a:36:15:de:8b:7c:04:1e:22:e8:
af:fd:09:00:ed:58:3a:e5:57:47:d2:0b:71:52:b8:55:65:fd:
fd:1c:ae:d6:4a:ba:46:47:61:dc:74:04:14:02:2e:c9:06:35:
00:73:25:7c:06:35:3c:36:dc:1c:f0:d3:15:ff:d9:b7:c4:9f:
18:8e:ae:e2:82:4e:07:b2:07:70:2f:ce:f6:d9:25:39:e9:2d:
08:2e:ae:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:59 2026 by rpki-client