Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
File: tMBDnHlVURAtbx5M620cUvvF6j8.mft (raw, json)
Hash identifier: UZ9X5wR7btWppJLXUEbiMST5/aSQp6LkjcfCysZmK50=
Subject key identifier: 80:FE:6D:EE:BF:37:EB:92:E5:DD:97:6C:6E:65:37:B9:2A:6C:19:73
Authority key identifier: B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
Certificate issuer: /CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Certificate serial: 019D3752BB16A27DCC06ECAC2B686A326EE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 02:01:01 +0000
Manifest this update: Sun 29 Mar 2026 02:01:01 +0000
Manifest next update: Mon 30 Mar 2026 02:01:01 +0000
Files and hashes: 1: RiSZlLjYu2HkKfgG-ViVEkyKZns.roa (hash: lhY041uMz7TjMMSGYMZC4RSrTiXBMmzOCgXBevRNjRY=)
2: tMBDnHlVURAtbx5M620cUvvF6j8.crl (hash: O4SGG1rh/DcUhdDS+3GjWtAQFCyFk1h+gN0ip+YOL3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:bb:16:a2:7d:cc:06:ec:ac:2b:68:6a:32:6e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f
Validity
Not Before: Mar 29 02:01:01 2026 GMT
Not After : Mar 30 02:01:01 2026 GMT
Subject: CN=80fe6deebf37eb92e5dd976c6e6537b92a6c1973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cc:32:a0:27:48:46:0e:bb:5c:9c:ae:df:14:
6a:1b:0b:53:2c:de:e6:62:b1:64:f8:f8:56:63:1b:
ab:47:4d:cb:ab:37:b3:2d:5a:e3:4d:ff:68:17:e1:
76:08:09:2b:d8:9a:ae:8b:bf:a1:ba:6e:3b:33:f9:
f0:7a:29:18:a9:5b:87:3d:18:35:b5:c0:55:93:ca:
93:c8:bb:a5:3e:d5:b5:e7:8e:4c:06:b3:4e:fa:b7:
e0:2f:6f:15:61:4b:b9:f3:c5:59:86:b4:d5:db:5f:
c5:d9:54:d2:89:f8:2a:b2:a4:9e:80:e9:da:cc:12:
ea:08:08:42:c4:ee:f8:1b:70:ca:05:4b:18:d8:c7:
db:21:b0:b0:9c:db:3f:92:f6:d2:c5:60:2b:de:32:
dc:2c:f3:9e:e5:15:8c:67:80:77:53:75:12:67:97:
1d:f7:dc:b2:e2:56:0d:c6:4f:c8:58:4d:bd:2d:2f:
2f:cf:15:bf:56:c8:57:ce:f6:0a:65:3e:9b:3e:f6:
4f:15:90:df:f2:e4:bb:dc:7c:95:33:d6:42:34:53:
6c:4b:59:04:1d:78:e8:ae:54:a5:10:7e:cc:29:66:
45:8c:9c:49:97:7b:f3:1d:c4:f8:5b:6a:bf:1c:35:
7f:a7:95:c0:43:53:e6:7c:25:97:93:bf:2c:3e:be:
28:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FE:6D:EE:BF:37:EB:92:E5:DD:97:6C:6E:65:37:B9:2A:6C:19:73
X509v3 Authority Key Identifier:
keyid:B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:27:23:ba:58:e5:c8:cf:e7:58:cd:29:cb:b7:75:5b:d0:00:
60:37:50:0c:d2:00:c0:1e:97:8e:a9:9e:7e:81:69:e0:9e:b0:
a0:5c:16:9a:91:19:67:01:dc:6d:34:25:74:68:df:d3:ad:a2:
cc:f3:a1:1e:b3:32:fc:39:00:a6:d9:5b:c6:f0:ae:93:c0:2d:
40:c0:5e:0b:27:ad:9c:82:8b:42:ee:76:9e:27:f9:b9:8a:7c:
d4:e4:6d:8b:27:ea:1c:de:e8:44:2a:99:2a:b8:aa:31:db:a0:
bf:75:fb:82:79:94:33:aa:03:e8:d7:f0:e8:21:41:12:5b:3d:
3f:e9:d8:4c:c0:20:a8:50:af:53:92:bb:23:74:b7:e0:53:2b:
d8:b0:f0:b1:dc:c6:3c:c8:c9:81:1b:28:cd:0f:bf:52:50:29:
53:f9:15:a6:26:04:5a:45:19:99:11:32:07:c0:ac:0b:20:cd:
08:61:75:47:40:2b:4f:b0:67:69:4d:00:4e:36:62:29:82:33:
bf:a7:51:ac:ae:0c:40:88:fa:0a:10:21:59:08:f7:8a:6f:dd:
29:fa:19:50:56:a9:f7:10:35:53:b6:72:36:a3:92:52:06:a2:
65:e6:a4:3f:18:9d:29:27:91:7d:92:7a:87:fd:7f:ff:69:87:
a2:11:19:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:15 2026 by rpki-client