Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
File: tUSbCOpqJn33NmpolcfJJMLxkm0.mft (raw, json)
Hash identifier: hYniG0BpAArTcOawjDzDK1J+16CfZ1Cr98/oWgZWAk4=
Subject key identifier: DA:95:C1:4A:B6:07:90:67:92:47:CD:C5:07:27:1C:2A:E8:D4:3B:61
Authority key identifier: B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
Certificate issuer: /CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Certificate serial: 019D390A3E72BCE0A2B9C53DF2D234C076E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
Manifest number: 0430
Signing time: Sun 29 Mar 2026 10:01:05 +0000
Manifest this update: Sun 29 Mar 2026 10:01:05 +0000
Manifest next update: Mon 30 Mar 2026 10:01:05 +0000
Files and hashes: 1: 5a8JGJ3id4PxFvxqeLBMFMn4dRw.roa (hash: CUVPemRn0SVvUqbZxOWY0VPVfqwjNH4J3L61ApQCXYM=)
2: tUSbCOpqJn33NmpolcfJJMLxkm0.crl (hash: 85Neahw494URGqax3p+tZcgkE9UUvSvvmYDNorOphpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:3e:72:bc:e0:a2:b9:c5:3d:f2:d2:34:c0:76:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Validity
Not Before: Mar 29 10:01:05 2026 GMT
Not After : Mar 30 10:01:05 2026 GMT
Subject: CN=da95c14ab60790679247cdc507271c2ae8d43b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:05:15:a4:2f:c4:1b:a8:6e:78:5b:a7:a6:98:
07:84:8b:6d:3a:2e:aa:e6:3e:af:11:31:71:c6:89:
73:ca:49:b3:0b:db:8a:bc:c3:08:ec:8b:71:04:aa:
7f:49:64:fa:97:d2:7d:3e:48:20:6d:a5:bf:0d:cb:
23:40:4f:bf:65:1d:3c:0f:5e:d0:b5:e9:de:2c:bb:
74:11:26:31:64:b6:85:dd:02:be:f2:33:28:7b:6d:
8e:7d:5f:c5:f7:c7:15:f0:fb:a9:ea:80:fd:ca:42:
72:89:81:98:44:d6:c8:06:ef:76:12:94:23:c8:c9:
94:04:b9:35:a0:c3:47:84:55:6d:e8:88:b7:4d:6f:
b3:a6:87:29:99:b3:1e:94:61:5c:ad:ea:3d:2f:4d:
0a:8e:c2:76:f1:f9:0c:55:e0:21:40:ee:53:ea:db:
ab:ca:85:52:49:88:ea:c0:d5:44:7e:d3:bf:b6:7e:
bc:08:b7:18:dc:b6:a7:b3:62:60:b7:55:5c:9b:6d:
51:b2:9f:25:3b:c2:c1:de:8f:1c:85:b8:2d:be:44:
5b:a8:a2:e3:88:81:24:30:22:ce:8f:d0:b7:d8:a6:
00:4e:61:d4:d1:ca:c8:c1:93:0d:eb:ca:15:16:7e:
3a:93:f8:a6:d7:03:bf:e4:3b:9d:20:95:b2:dd:4f:
18:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:95:C1:4A:B6:07:90:67:92:47:CD:C5:07:27:1C:2A:E8:D4:3B:61
X509v3 Authority Key Identifier:
keyid:B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:db:6c:b9:cf:f5:f8:38:1c:8b:7e:f4:2d:9a:0d:29:71:e9:
fe:1d:a9:63:c3:00:f6:42:5e:22:ea:42:77:b2:89:ee:28:b8:
23:96:af:0c:12:7b:6e:a6:cb:48:3e:1f:69:5e:fe:06:ce:e2:
c3:7d:f9:d7:1b:21:7c:32:46:11:95:89:89:d5:c1:75:e6:36:
8f:30:9d:4a:01:9b:c3:b5:8a:f6:9d:5a:cd:e3:73:20:7e:b2:
70:99:51:da:86:73:27:b8:27:91:71:71:85:57:18:54:7c:22:
86:3f:34:dc:b9:9c:1b:64:e8:8e:92:1d:a1:4c:87:ec:dc:60:
0e:f6:41:9b:cd:f3:ba:b2:f1:27:a1:51:53:f6:b3:80:00:6a:
56:d3:8a:bf:22:d9:7e:63:83:39:d0:f4:7e:c5:54:4e:3f:42:
d2:cf:83:c2:ef:41:2a:4f:df:31:c5:78:6b:e4:44:be:3c:d5:
16:f7:e7:1f:42:2a:7b:12:d2:b4:bc:40:ad:a1:ba:be:52:51:
bb:ba:f7:aa:01:3b:2c:a4:7f:f4:db:e2:7f:0d:bb:b0:54:3b:
15:10:43:18:8d:62:76:69:0a:19:14:fe:2e:97:5f:2b:c1:5b:
60:84:21:db:5f:12:5d:5f:ed:a2:80:a5:3c:be:f4:f7:24:f4:
12:8d:d7:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:08 2026 by rpki-client