Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: I1em/fmnlXYVOq44Hujkd5L7xjWlBKhhQ0cyBu9fCMk=
Subject key identifier: B9:B7:A7:CF:4A:81:8D:CC:35:2A:03:96:2F:6B:89:D4:61:CF:BE:90
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 019D390A15A971567B63CAE51109A7A2B732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 0BEA
Signing time: Sun 29 Mar 2026 10:00:55 +0000
Manifest this update: Sun 29 Mar 2026 10:00:55 +0000
Manifest next update: Mon 30 Mar 2026 10:00:55 +0000
Files and hashes: 1: 18A7L44_0ILwZodGFUSDQ2eubuc.roa (hash: TWAVfWQBRDutGoFMNTBpWa6veuSEAlw+UuaoPc+ikg4=)
2: 2BnXbJN0-tuiSw2yPhv5M-hIP_g.roa (hash: 7StJAAew0duMZOz948e0I6qxBTgJCwCzq3+RHVzjmKc=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: /WyAvi4XFzHrdJ6XXtUpDG4bubqfYNtWWMSQpZmECYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:15:a9:71:56:7b:63:ca:e5:11:09:a7:a2:b7:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: Mar 29 10:00:55 2026 GMT
Not After : Mar 30 10:00:55 2026 GMT
Subject: CN=b9b7a7cf4a818dcc352a03962f6b89d461cfbe90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c1:e6:9d:5a:93:4b:bb:30:45:a9:ee:da:70:
8e:95:36:03:ec:7e:b5:9c:aa:9a:ba:47:02:90:90:
09:ae:9a:55:dd:f2:3a:1c:89:fa:a6:c5:1e:16:b5:
9f:73:0b:94:ba:a9:65:b6:38:07:1e:22:e6:ae:f5:
7f:28:68:6d:d8:0a:35:4e:16:65:12:fc:d2:94:6d:
87:99:c2:81:25:d2:86:9c:de:c9:a4:cf:18:54:3f:
3c:be:31:34:d5:f1:10:f9:c1:60:46:f3:cd:d8:f2:
21:14:88:02:3b:fe:1a:1d:14:58:81:b0:92:ab:27:
50:51:12:e7:70:eb:08:5d:19:9a:b9:43:4b:36:3e:
61:a2:52:6a:3b:fd:63:f8:14:9b:51:81:d9:11:89:
9a:76:8c:0e:11:13:88:4d:ed:6b:a4:74:d5:44:31:
d1:c3:ea:e6:d6:1f:3b:3d:2a:9c:74:b2:c0:d3:a2:
53:39:e3:72:10:67:95:f7:28:5a:ef:dd:af:85:f9:
28:8f:97:4e:3b:13:a0:49:0a:b0:ef:cf:7b:17:e7:
29:a3:39:31:f1:4f:5e:a8:1b:aa:a8:9d:fb:22:72:
8f:25:b3:b6:01:b4:47:c2:df:67:b5:a0:34:d3:74:
ae:e1:65:9f:1a:42:7d:ba:87:c3:a0:f4:5d:a3:56:
45:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B7:A7:CF:4A:81:8D:CC:35:2A:03:96:2F:6B:89:D4:61:CF:BE:90
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:a6:7b:a1:46:83:7c:cd:b3:a0:97:f2:68:b4:d5:56:c7:a1:
b0:e0:a5:4d:56:a2:6d:81:eb:07:be:6d:95:e1:d4:00:19:ca:
3e:2d:bf:7b:cc:5d:c5:f2:37:25:47:87:01:63:f6:26:b9:4c:
26:dd:a2:c7:d0:67:68:d5:8f:3e:ad:0e:08:e2:65:4d:d0:30:
17:de:74:a6:4f:60:91:c4:41:a5:f8:11:f0:24:f3:cc:49:21:
eb:3d:96:85:40:0a:0e:f7:5a:ba:cf:44:29:b7:80:35:db:54:
cf:e1:09:b2:6b:71:32:df:76:f7:0f:65:11:68:16:02:bc:bc:
06:82:87:d2:d1:b0:cc:ad:b1:fd:3c:79:23:36:ce:ff:d1:4f:
8a:cb:22:2c:2a:29:82:06:a3:4d:53:3f:91:b0:8f:88:d3:81:
d8:db:50:a1:75:41:88:64:e7:f9:63:f1:35:ae:e9:02:71:a5:
96:db:e2:d9:96:97:eb:90:a8:94:b1:d3:66:87:58:11:86:f3:
18:eb:93:21:88:8e:17:a4:68:c6:0f:56:fe:d6:7d:17:dc:b8:
8e:39:3f:6a:d5:14:95:ba:56:e1:73:85:ee:3d:4e:1f:12:6d:
be:bc:58:75:c1:cf:f1:cb:68:66:e1:4c:73:e5:a4:27:65:33:
7e:28:89:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:06 2026 by rpki-client