Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: 6uUZr0EQSfVULJYdxYANKm/dr/kbGbzWzopckbYoy+I=
Subject key identifier: 9B:73:79:38:0C:CA:A7:85:59:2B:F7:FA:AB:AD:4D:FE:D4:09:90:E0
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 019D39780A7185B1AEC91F8598215C05476C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 12:01:01 +0000
Manifest this update: Sun 29 Mar 2026 12:01:01 +0000
Manifest next update: Mon 30 Mar 2026 12:01:01 +0000
Files and hashes: 1: UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa (hash: gTNgkF2m3yFT5Gp1TKn07e+49JHxGZGWx9toGyIkemc=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: U71uEI3ah/srv+gmBXgRl5wLzAsyGD8japJhayqh26Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:0a:71:85:b1:ae:c9:1f:85:98:21:5c:05:47:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Mar 29 12:01:01 2026 GMT
Not After : Mar 30 12:01:01 2026 GMT
Subject: CN=9b7379380ccaa785592bf7faabad4dfed40990e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:81:41:28:47:9d:4e:c0:f5:c6:52:9f:86:
f4:9c:3b:39:e0:98:5e:6f:9e:03:af:5f:1e:18:bc:
c3:0c:4f:69:df:af:c9:16:41:6c:14:0f:9a:33:bd:
d4:51:ac:39:f4:bc:bb:b6:17:3f:7a:4a:17:5a:d2:
f0:02:7a:cf:a2:d4:c6:d9:dd:6b:37:ac:87:70:28:
1c:e1:32:94:0e:f4:bc:e9:e2:c8:46:25:42:d3:7a:
41:4b:7e:41:d8:f8:0e:57:ac:d3:06:ac:05:6e:06:
8a:b0:64:f1:7c:2d:e3:b8:f1:a1:2e:a5:71:71:22:
7a:08:d7:8e:ad:5c:38:78:97:ac:81:e8:b4:9f:83:
d4:2c:e2:8f:e0:84:d0:09:ec:c1:ff:84:6a:b1:0d:
e5:5e:33:06:c6:c5:95:fc:5b:ca:24:29:23:ea:aa:
d6:9f:83:45:d2:15:80:f2:8f:3c:b4:ea:f3:3a:2a:
be:50:fd:f5:4e:ce:46:58:14:89:7b:ee:62:ec:91:
fa:cd:d1:1e:99:ca:03:3a:2d:28:5d:16:cd:e9:d8:
97:f0:11:ac:1f:de:37:bf:01:6f:8a:a7:52:02:9a:
79:af:3a:50:d8:de:5f:63:41:50:8e:20:a5:23:34:
a0:b0:65:8d:4b:96:c8:ee:78:d8:c6:40:f4:d2:80:
4f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:73:79:38:0C:CA:A7:85:59:2B:F7:FA:AB:AD:4D:FE:D4:09:90:E0
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:10:2a:5b:6b:c9:ca:cf:1d:88:40:88:96:72:de:ce:fd:8e:
bf:a0:e1:a1:52:9c:3b:7d:b6:b9:dc:c0:78:43:d8:42:4e:af:
fe:cb:88:1b:85:b6:ed:e4:51:a3:ee:ae:4a:ca:51:c6:d9:93:
15:da:ac:bf:71:f5:40:6b:50:03:c3:a6:95:a1:aa:f1:01:89:
e7:13:36:6f:e7:c8:ee:ad:d5:04:04:eb:82:c8:25:64:de:48:
20:00:54:8a:13:1b:16:ec:05:6a:aa:82:89:40:46:56:55:30:
d9:0b:da:78:2d:ee:eb:0f:85:15:d0:5f:a6:cd:46:b5:c2:7e:
79:2b:30:12:9a:1b:77:95:c6:52:17:63:bb:f6:d5:c2:9d:5e:
4d:24:bd:40:26:f7:6c:95:bc:96:a2:88:f8:cc:62:88:df:bb:
9f:23:bc:04:95:a8:4a:5b:ea:c4:f1:61:05:eb:62:3e:a4:fa:
63:af:a3:21:a0:f3:e4:3c:09:76:01:16:91:84:2d:a2:f9:63:
01:f3:68:df:28:0a:20:21:5c:33:d2:71:86:72:10:82:df:6a:
3f:f4:dc:16:6c:5a:14:c7:9e:e2:48:62:e4:ff:5e:d6:c6:14:
a8:15:ab:cc:f5:0f:99:c8:d0:af:4e:75:54:c3:9b:6d:36:b7:
92:27:57:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:31 2026 by rpki-client