Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
File: tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft (raw, json)
Hash identifier: wTNKMsvlvpLW8AbY3z8x07gn5Z6hlcZ7aPF7IcYi2O4=
Subject key identifier: 6A:76:25:36:D6:1D:57:5A:EE:C8:29:F9:B8:45:AD:51:54:5F:C2:60
Authority key identifier: B4:85:84:EF:FA:05:1F:0C:BC:39:C3:19:16:3E:4F:23:38:60:49:82
Certificate issuer: /CN=b48584effa051f0cbc39c319163e4f2338604982
Certificate serial: 019D05F88C6B1C3BB714BA5AF29007DE5096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
Manifest number: 010D
Signing time: Thu 19 Mar 2026 12:01:08 +0000
Manifest this update: Thu 19 Mar 2026 12:01:08 +0000
Manifest next update: Fri 20 Mar 2026 12:01:08 +0000
Files and hashes: 1: mTKfXNqZr-ethdBjOn6lFjS-PNs.roa (hash: HOGNlGeAoZ/b5RPWvVv+b+yxDspoiWHKwc8eGW2VV4w=)
2: tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl (hash: Wns6lFlO2ftPAs42FAj2OxbDLExMbaQXMt1ETEjMHRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 08:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:05:f8:8c:6b:1c:3b:b7:14:ba:5a:f2:90:07:de:50:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48584effa051f0cbc39c319163e4f2338604982
Validity
Not Before: Mar 19 12:01:08 2026 GMT
Not After : Mar 20 12:01:08 2026 GMT
Subject: CN=6a762536d61d575aeec829f9b845ad51545fc260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e5:05:1a:af:55:e1:22:3e:27:ee:a7:6e:1a:
be:b6:3e:60:b6:17:93:5b:5b:1e:27:aa:73:e4:6d:
9a:55:dd:dc:aa:a5:70:f9:15:6b:9a:62:5d:4e:e0:
1d:12:e0:54:bc:bf:0f:ff:b3:44:51:32:a5:76:a7:
8e:b7:b1:c6:68:1f:f6:d8:6d:ae:86:be:34:66:9c:
93:32:dd:57:b2:e7:76:fe:67:4a:17:a9:ef:d0:83:
cc:9d:67:b6:45:72:6d:45:b4:a9:53:38:e8:44:7d:
f1:2e:46:66:75:5e:94:f2:cf:d8:7c:e6:23:83:14:
2b:9c:fe:05:7f:0d:a1:b3:3c:60:8e:e4:ce:28:5c:
1c:90:03:5e:b9:e4:fa:44:42:4d:3d:88:6c:c5:04:
7c:04:c8:62:d2:70:4c:f9:e0:e6:2e:ca:ab:43:2f:
39:5f:ed:1a:b2:fa:eb:de:da:f8:14:14:5c:52:4f:
09:f7:92:a9:3f:54:cf:e1:14:a5:e1:7d:a3:ff:76:
b6:0f:c8:7e:71:aa:85:14:13:21:a0:8e:62:33:de:
eb:8d:c2:1f:57:b6:2f:b6:47:f9:a0:3a:f5:8b:8f:
b7:88:10:3a:7f:ce:1d:3f:6b:b2:13:fb:ef:c6:4a:
c8:b8:5e:4d:5b:11:74:9d:e2:a8:7f:93:7c:b7:69:
d9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:76:25:36:D6:1D:57:5A:EE:C8:29:F9:B8:45:AD:51:54:5F:C2:60
X509v3 Authority Key Identifier:
keyid:B4:85:84:EF:FA:05:1F:0C:BC:39:C3:19:16:3E:4F:23:38:60:49:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e3:06:cc:52:ad:37:6c:50:f5:1f:33:85:34:9e:05:02:c1:
4f:93:d3:e4:39:14:24:09:c8:0f:08:06:aa:1d:d2:8e:3a:3b:
8f:98:42:15:23:58:43:d9:50:91:ca:b4:cb:05:7a:c4:87:98:
12:25:7a:1d:4a:83:78:e8:54:66:fd:e3:dc:4f:6f:b5:29:71:
4c:9c:e7:1c:02:b4:85:44:1f:01:26:c9:45:f6:19:4d:cd:e5:
b2:e3:a4:3c:98:46:e6:72:54:cc:b8:9e:8c:e2:4a:93:26:0f:
26:3a:07:d8:c0:de:5e:72:de:14:fc:82:c6:bd:4b:ae:c3:0e:
a6:d2:91:98:e2:a4:d6:2a:7a:1d:b0:b3:3b:eb:b5:a7:3f:50:
db:14:fd:09:90:88:f4:21:ae:0a:4d:75:ad:4e:93:15:dd:25:
80:45:e4:48:b6:df:6b:f9:0b:18:a4:52:fb:38:da:f3:c5:d0:
39:ee:77:9c:8e:b5:12:88:9d:16:40:db:6c:06:4b:97:9b:a9:
34:0e:bb:f5:3a:e7:aa:dc:1f:0d:ac:e8:a6:f8:61:85:c2:60:
dc:77:c9:45:20:8d:4b:61:7a:7b:63:8a:3e:7c:92:99:d8:1e:
ad:c3:ac:47:a0:c1:ad:7a:5b:6b:39:6d:00:66:30:a1:26:90:
50:fb:b6:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 19 15:31:15 2026 by rpki-client