Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: jpYj+PCQl7ytE93FSMWmHiccLrEm9J+EjiKGXwH3npk=
Subject key identifier: BE:35:26:45:CD:D2:72:8A:2C:A1:FF:6E:D0:54:82:B2:49:26:C3:1E
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 019D386630DD08E8E35F2DD910740CAE941E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 07:01:54 +0000
Manifest this update: Sun 29 Mar 2026 07:01:54 +0000
Manifest next update: Mon 30 Mar 2026 07:01:54 +0000
Files and hashes: 1: N79dGcqXOAWTraGm-dUGr_n7g5o.roa (hash: izRmr4QFMP3HYYiVhDYKTcRuMtp1aQuZsgseKcKqny4=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: O8K/AMFLRHpDABSwO74yfbwhMBychqpQN2HH28eBzgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:30:dd:08:e8:e3:5f:2d:d9:10:74:0c:ae:94:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Mar 29 07:01:54 2026 GMT
Not After : Mar 30 07:01:54 2026 GMT
Subject: CN=be352645cdd2728a2ca1ff6ed05482b24926c31e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5b:c7:96:70:e4:a6:f2:83:2e:f9:fc:f0:c6:
65:e3:57:d4:8e:5f:6e:3e:44:96:ff:f2:1e:5f:22:
33:ad:02:0a:91:0d:c3:c8:f7:b5:11:8f:15:b1:29:
5a:10:f7:a6:28:f5:08:a1:65:e8:ab:ea:0c:22:9b:
bc:7e:9c:c9:ac:61:ba:99:33:8e:4b:0e:d5:f3:ec:
59:fd:cf:89:80:e4:6f:50:5c:66:34:7c:2f:4c:2d:
39:6f:4a:16:ed:8e:b4:96:ac:ec:4f:d4:9a:c1:77:
de:2e:54:72:2b:5d:db:c0:54:e4:cc:52:d6:0f:d4:
ac:dc:43:ea:4a:9e:c2:9d:91:9f:d5:f0:b6:b7:74:
45:20:99:09:54:25:35:5f:3d:cf:33:41:de:49:24:
6d:8b:bb:6e:fc:ee:dc:b1:4f:31:30:08:9d:9a:fc:
d3:37:b2:d6:71:51:bf:f5:bb:76:8b:de:00:f8:3e:
ca:92:f6:1f:ba:e2:6b:af:d0:6f:20:6f:cd:c2:81:
8e:9e:4d:0e:68:96:0b:de:59:56:1e:ba:ae:5c:ce:
c0:cb:89:c5:fd:38:d2:ee:4c:12:9d:31:b1:75:8f:
f5:1a:c8:96:0d:e7:88:30:0f:19:66:5f:13:4b:6c:
bd:70:5f:92:b6:d5:33:9d:83:8a:ce:3f:91:5f:38:
13:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:35:26:45:CD:D2:72:8A:2C:A1:FF:6E:D0:54:82:B2:49:26:C3:1E
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:e7:83:c1:09:16:84:d7:a3:dd:30:26:dd:3a:bd:d4:f9:3f:
c7:c2:2a:5d:61:7e:a0:63:ae:58:56:1c:bf:67:71:3f:98:9c:
7f:aa:13:78:63:48:3b:f7:4f:c6:bd:bd:02:6a:ff:27:1f:14:
e5:97:ff:91:60:7c:62:4b:5c:29:94:5c:bb:6a:7f:95:26:d8:
1e:56:e4:7d:6a:ba:69:14:c7:03:ef:0f:dd:9b:97:74:f2:77:
28:ce:90:83:eb:8f:30:99:82:04:55:2d:27:07:e5:ff:3f:42:
67:3d:3f:02:97:b0:af:56:48:87:ed:40:97:96:40:fb:58:df:
66:a1:56:80:3e:9b:b5:7c:d2:53:ed:84:4c:00:8f:a3:b2:ab:
2c:11:9d:cf:9d:55:52:c7:2a:e3:61:fc:e0:8a:f6:a7:d1:d3:
9f:06:a0:94:44:13:ec:32:2f:52:9a:c2:57:16:dd:a9:c4:2e:
7d:02:76:cc:df:73:da:a9:0e:f3:2f:f9:0f:d8:dc:98:67:49:
02:62:b2:7f:67:f0:62:4c:d0:ad:5c:8a:69:b3:99:37:40:d4:
7a:90:ef:c0:d1:91:83:ed:61:ff:d0:3d:e3:3e:4b:d5:e1:53:
4c:2b:47:09:78:0e:c1:09:16:01:24:a6:ae:9d:23:e6:22:28:
da:28:91:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:47 2026 by rpki-client