Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
File: tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft (raw, json)
Hash identifier: l1uUO+RaFKKwAvmQlpHDyDGDy1hRQ+I0YBfDr6IiOdQ=
Subject key identifier: 84:87:33:E2:AA:E0:DF:8B:9E:A9:A6:19:2D:7F:7A:5F:75:A1:53:43
Authority key identifier: B4:85:84:EF:FA:05:1F:0C:BC:39:C3:19:16:3E:4F:23:38:60:49:82
Certificate issuer: /CN=b48584effa051f0cbc39c319163e4f2338604982
Certificate serial: 019DEDB6AF1B7510FE44BB522E787A074AC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
Manifest number: 0185
Signing time: Sun 03 May 2026 12:01:05 +0000
Manifest this update: Sun 03 May 2026 12:01:05 +0000
Manifest next update: Mon 04 May 2026 12:01:05 +0000
Files and hashes: 1: mTKfXNqZr-ethdBjOn6lFjS-PNs.roa (hash: HOGNlGeAoZ/b5RPWvVv+b+yxDspoiWHKwc8eGW2VV4w=)
2: tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl (hash: 9yQTZwjG0CFuvdx0L9QriVu5nvcsyWN+lTyqRfS8XPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ed:b6:af:1b:75:10:fe:44:bb:52:2e:78:7a:07:4a:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48584effa051f0cbc39c319163e4f2338604982
Validity
Not Before: May 3 12:01:05 2026 GMT
Not After : May 4 12:01:05 2026 GMT
Subject: CN=848733e2aae0df8b9ea9a6192d7f7a5f75a15343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:16:65:72:99:79:db:40:c6:99:1c:5f:de:e6:
e9:03:93:60:0d:08:59:18:fd:23:5e:fb:19:44:d6:
18:5e:aa:3e:ff:30:bb:c9:c4:8a:f5:e7:9b:4f:d4:
3c:11:5f:5a:32:63:79:a5:e9:e9:59:cd:3d:2f:f7:
1e:ed:a3:35:54:c9:a2:35:25:92:da:a1:64:a7:88:
c2:d6:5d:1b:bc:34:a2:8c:62:15:ee:4e:2e:5e:62:
b7:e3:66:0a:01:70:2a:ac:95:48:58:88:ee:07:c4:
5e:a6:60:c2:e0:aa:e0:80:98:bc:0e:88:9d:e3:ee:
2b:23:e3:c5:3c:7a:3c:1e:0c:db:61:44:91:f3:96:
71:79:36:2f:3c:2b:05:36:f3:5d:f0:1c:6c:1e:ab:
54:51:6c:f9:98:7f:3b:cc:4a:cd:54:70:11:0d:cb:
11:a3:aa:f9:f3:25:9f:9a:1d:93:b0:42:31:d6:0c:
19:4f:e9:87:94:8e:40:01:76:62:28:91:86:fe:4c:
be:64:45:16:2d:1a:62:ab:44:fb:df:a6:c5:b1:20:
36:e1:54:b4:23:fa:e3:a7:32:85:45:7a:1f:38:86:
33:90:96:7f:0f:34:94:0b:6d:5d:04:d4:ba:0a:40:
4b:28:94:7d:56:97:81:cf:e0:5f:4b:77:ba:08:dc:
d3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:87:33:E2:AA:E0:DF:8B:9E:A9:A6:19:2D:7F:7A:5F:75:A1:53:43
X509v3 Authority Key Identifier:
keyid:B4:85:84:EF:FA:05:1F:0C:BC:39:C3:19:16:3E:4F:23:38:60:49:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:18:dd:ee:62:0f:9b:a9:dc:d4:5d:b9:d4:d4:f1:d0:9a:39:
88:17:a3:f4:ae:b9:3d:e8:b7:2c:be:7d:c2:d4:26:19:fe:c9:
43:41:61:e4:74:08:f8:1b:55:c7:4a:a6:b4:70:3f:59:aa:ec:
96:51:8f:0b:f0:c0:7a:7c:c3:b4:cd:6e:b1:e9:1e:33:6d:3d:
d8:a6:e0:0c:1d:e4:cb:29:62:03:b3:c8:3a:0c:e4:8f:61:a6:
5b:b7:9a:d0:6d:ce:42:9e:2e:95:6c:b6:ad:13:cd:6f:34:6b:
67:b8:3f:02:ce:99:5f:1f:2d:e5:e8:ad:71:f6:51:a0:f4:3a:
79:c1:f4:85:14:0d:19:29:b8:62:0c:aa:09:93:44:e6:3f:fb:
e6:c4:fc:05:69:67:de:80:18:4f:ae:3f:4e:5b:73:7b:92:7f:
d7:b8:1b:dc:dc:f3:52:3c:b9:10:be:19:fe:fc:f4:92:37:68:
b3:1a:b6:a4:77:17:12:21:2a:14:b4:3c:52:8d:d6:c4:8c:4e:
a9:7b:3d:b3:3a:33:ae:46:d0:be:a1:40:38:5c:3e:e5:e4:eb:
89:95:cd:46:85:c9:e4:d0:bd:4c:52:e7:24:1e:19:49:01:e8:
76:e8:7a:72:ba:7b:92:87:3f:f7:49:e9:10:3e:d8:0c:8d:11:
bd:28:b0:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 17:07:18 2026 by rpki-client