Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: Wrmd43rrxv9Z5AfuNXiHn7G7+zEUnmHgVCBunGzLLy0=
Subject key identifier: 15:56:04:69:E4:2F:62:BF:01:C9:07:CF:67:81:5B:02:98:9E:1E:03
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 019CE47F4EAAEBF8C30FA576CB112D8CD8E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 1866
Signing time: Fri 13 Mar 2026 00:01:14 +0000
Manifest this update: Fri 13 Mar 2026 00:01:14 +0000
Manifest next update: Sat 14 Mar 2026 00:01:14 +0000
Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: vX+g/Wp81g5tt2IIyWYTxNdSLne3M8jbR9VmLx8SeZI=)
2: o-popO9auROaiIHZBs-GFli-ZBg.roa (hash: 3gA1UOiSr0PnnoNboQJZUsn/LeXSette67Qdwhw+aTc=)
3: x3MPjpAMv8jy4dhfPiDorj_3tLI.roa (hash: 0SB+6P5HbotJTZwxWuM7rwLO4yE+FQC9GnNEzbQTjX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:7f:4e:aa:eb:f8:c3:0f:a5:76:cb:11:2d:8c:d8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Mar 13 00:01:14 2026 GMT
Not After : Mar 14 00:01:14 2026 GMT
Subject: CN=15560469e42f62bf01c907cf67815b02989e1e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:27:22:6b:49:6e:c1:0e:a7:b4:10:ca:28:ac:
06:3f:9f:e3:ad:7d:c0:1b:2c:e3:94:d2:76:95:b6:
38:ec:50:4f:f8:0f:30:76:27:6d:3f:17:40:53:41:
1e:61:77:46:f4:04:93:d9:9f:98:45:61:a6:38:1d:
4a:4f:bc:eb:f8:8a:e7:c6:c9:0a:db:ac:b4:4b:b1:
7d:3a:ea:42:65:f5:2d:a7:73:4b:e6:49:f1:e0:c2:
0f:68:e6:77:ef:ad:cc:46:5f:93:76:e8:f9:80:60:
eb:b8:73:0c:b5:78:2b:a1:9a:0f:54:93:61:39:aa:
c5:59:9d:d4:20:08:a0:33:19:97:5b:b6:2f:6b:98:
33:ae:33:f6:4f:46:53:f4:44:0b:9a:55:b7:fc:a2:
48:db:85:f1:f6:55:bd:1b:f4:74:29:cf:73:b4:6e:
7c:ec:c5:92:9a:25:0c:fb:3a:8d:06:4e:cd:d9:ac:
c9:34:6a:08:4d:a1:2b:f6:f1:76:eb:8c:91:cd:ed:
0d:30:8d:6b:d2:bb:70:da:14:f5:7a:59:54:8a:e4:
b0:a5:b6:18:e6:b5:20:3f:fc:6c:69:30:0b:65:ba:
e5:0f:fa:bf:c5:ad:1f:ea:39:b0:88:60:02:fd:81:
6d:b7:a9:2b:1b:44:61:c0:4e:90:b2:d0:58:34:c5:
70:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:56:04:69:E4:2F:62:BF:01:C9:07:CF:67:81:5B:02:98:9E:1E:03
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:53:2f:4e:52:5d:8c:6c:c3:0d:f3:cf:75:a2:99:43:8b:9d:
1b:c8:df:11:b1:30:a3:0c:92:21:99:89:81:2e:ef:70:f5:4d:
22:67:c6:1a:2d:6e:3c:96:2e:13:70:21:48:40:eb:72:b1:35:
13:80:83:57:6f:fa:03:5f:ea:d5:1e:b3:1d:09:3e:be:1c:33:
f3:0a:09:c7:d5:2c:bc:52:5c:b2:24:71:ae:e0:12:69:0c:e3:
62:93:cd:0c:57:2c:15:cf:12:d9:2d:dd:fd:4f:e2:a6:e8:a2:
d7:c0:80:63:64:f9:6c:89:8a:7e:22:44:12:c2:7d:65:2f:c5:
80:12:08:71:13:98:17:89:72:a6:f4:ff:27:b2:84:f6:84:26:
78:94:c9:7d:4c:d2:82:98:89:05:63:30:f8:e7:ed:3d:08:dc:
06:3c:7e:df:68:3f:37:86:34:25:e3:ec:d4:38:a3:1a:10:68:
ee:dd:bb:7b:29:b0:7e:e7:d5:59:97:3e:49:73:39:72:fc:9d:
09:1d:37:73:1c:c8:73:9c:81:e8:bd:44:ca:d7:7d:70:19:aa:
5d:21:61:b1:33:70:f0:31:78:61:83:46:09:11:de:85:a9:fb:
75:76:66:4f:b2:b0:79:f0:79:ea:04:2f:81:1d:0a:b7:04:c6:
4e:1a:59:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 06:05:24 2026 by rpki-client