Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
File: tznE4_6GnZeDui2t9mDczQ-lNwc.mft (raw, json)
Hash identifier: uC95hNg3BnyrOduNWqsxt06rcFfbJO50mCcfKjCrRmo=
Subject key identifier: 12:8D:32:27:61:B7:E9:F1:31:5F:70:60:43:86:23:F0:15:15:80:01
Authority key identifier: B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
Certificate issuer: /CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Certificate serial: 019D39412DB1DB3FE46B5D21293E183286CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
Manifest number: 12DB
Signing time: Sun 29 Mar 2026 11:01:05 +0000
Manifest this update: Sun 29 Mar 2026 11:01:05 +0000
Manifest next update: Mon 30 Mar 2026 11:01:05 +0000
Files and hashes: 1: fp6e1oWTW6ERgaYTNaPCSf0ibbk.roa (hash: cfY9W6Oc4CWCMHNddhZlxoGOHOxJVO+wjS65/vUgYTs=)
2: tznE4_6GnZeDui2t9mDczQ-lNwc.crl (hash: 0xi7rn/Q0oXQgXvbucgMUTistKY9xeTYzJjJ1crBjM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:2d:b1:db:3f:e4:6b:5d:21:29:3e:18:32:86:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Validity
Not Before: Mar 29 11:01:05 2026 GMT
Not After : Mar 30 11:01:05 2026 GMT
Subject: CN=128d322761b7e9f1315f7060438623f015158001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b9:a4:fc:d8:36:18:6e:7e:ae:49:25:43:fb:
07:23:e9:5f:2c:af:b8:9f:6e:66:65:ae:6f:88:f0:
0b:74:dc:4f:ac:13:4f:d2:39:02:91:c8:9e:2d:e8:
6e:ea:fe:8e:66:03:d1:79:51:16:1a:c0:b6:2a:93:
86:20:90:45:e5:c9:53:a6:02:94:29:26:76:cc:87:
5c:c3:15:aa:ed:9a:c9:e5:6f:ed:06:d8:0c:27:4f:
d2:a7:6b:54:0a:c8:6c:68:e4:37:f3:62:22:f6:b5:
a6:45:ca:e0:a2:81:5a:61:3b:bc:56:dd:7e:9e:22:
b7:d7:00:f0:34:5b:ef:23:be:00:2f:1f:e8:75:a6:
d3:26:b0:81:0c:9b:59:6c:cf:26:9d:b5:ae:09:5a:
dd:12:20:e8:2c:4d:3d:43:f7:e4:24:3f:4e:55:90:
f6:39:e7:47:c6:85:82:71:e2:32:16:05:f6:80:2e:
df:37:d6:ab:ab:f2:8f:e1:da:f4:fc:fe:b0:96:37:
e6:54:61:30:2e:c2:96:37:c9:48:36:a4:65:00:e2:
ec:22:2c:3e:f5:34:97:e1:b6:df:ad:aa:0c:e6:3d:
92:c3:48:9b:01:1a:aa:70:4f:c5:7e:d4:4c:4e:7d:
ce:ab:cc:b7:81:5c:97:65:03:5f:17:68:b1:b4:57:
77:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8D:32:27:61:B7:E9:F1:31:5F:70:60:43:86:23:F0:15:15:80:01
X509v3 Authority Key Identifier:
keyid:B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:10:0a:11:8d:0c:ea:d7:83:ec:eb:34:60:27:8c:04:49:54:
da:fc:f5:40:11:eb:53:95:f8:3e:bd:b2:f2:fe:4e:5c:9c:ca:
18:cc:f7:ab:50:00:c4:75:27:97:6a:06:96:fc:d2:37:1f:d7:
a9:2c:4a:7c:35:85:8f:69:65:49:af:57:85:f5:01:ce:ad:45:
e7:6f:67:8f:b2:75:25:fb:3b:ae:9f:68:12:7e:cb:3d:f6:07:
39:72:94:7d:da:ac:2f:20:b3:dc:95:5b:ce:17:76:83:dd:f0:
7b:be:10:ed:4d:a5:de:7e:34:34:c3:2a:fc:48:61:7f:7e:23:
f3:46:96:e3:ce:b0:fd:df:2e:e3:ae:4e:0b:8c:8d:af:39:d4:
40:58:a6:14:2d:b3:b4:7e:fb:e1:c2:99:2d:44:3b:c5:c7:85:
34:4c:9e:02:2c:87:d2:2f:96:1b:cd:05:29:e9:71:2e:ed:b0:
11:53:85:46:3a:01:da:3f:45:e0:9e:9f:fb:8c:ef:37:d8:15:
54:08:02:63:3a:8e:b5:66:49:46:2e:7f:19:9f:de:09:c4:b8:
2c:45:83:73:32:6c:89:94:9b:79:bb:2f:0c:ce:e3:f5:f6:bc:
a8:af:60:8d:27:14:57:fe:d7:1a:cd:f2:10:a7:36:d5:4f:53:
d3:71:33:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:40 2026 by rpki-client