Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
File: TRYkCJewEwVoHJQl_lI_WPqydBU.mft (raw, json)
Hash identifier: 3OBtkZiOmRvoV1BH67YHDJsAsPOlafg5MPrBNM5GKjk=
Subject key identifier: 9A:4C:97:2E:A4:CD:80:EF:43:3C:B4:E2:67:8D:56:22:AB:37:57:3A
Authority key identifier: 4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
Certificate issuer: /CN=4d16240897b01305681c9425fe523f58fab27415
Certificate serial: 019D37C05762A98FDFEE73AD930C394613F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 04:00:45 +0000
Manifest this update: Sun 29 Mar 2026 04:00:45 +0000
Manifest next update: Mon 30 Mar 2026 04:00:45 +0000
Files and hashes: 1: NlDeDV4WzeoUvKdIW3pq1ndiD6Q.roa (hash: gXt+Eq5uxoOgBwvqy+Kxf+ntZAhbrgykVlmEcwvKBeA=)
2: TRYkCJewEwVoHJQl_lI_WPqydBU.crl (hash: TXxzxU0Kk/wcYWfvNeER3Lxv1PxitFR1u9RqGq12oGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:57:62:a9:8f:df:ee:73:ad:93:0c:39:46:13:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d16240897b01305681c9425fe523f58fab27415
Validity
Not Before: Mar 29 04:00:45 2026 GMT
Not After : Mar 30 04:00:45 2026 GMT
Subject: CN=9a4c972ea4cd80ef433cb4e2678d5622ab37573a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:ae:d9:02:a7:56:e3:e0:ea:93:91:ef:73:ea:
9b:7a:d3:61:9e:69:0b:91:e0:98:df:b4:0d:2b:82:
1b:6c:69:ad:17:fd:3f:5a:f4:92:70:1d:d3:cf:e4:
30:6c:80:d7:a8:88:e1:55:b0:f4:a9:12:69:1e:bf:
9d:8f:9f:38:32:e8:db:ea:28:c9:10:bc:76:96:91:
49:1a:c5:5d:14:c5:d8:f2:72:9b:47:49:93:a5:f1:
29:76:f8:e0:f0:be:d1:d4:99:40:06:00:29:ce:69:
43:8a:c3:93:ca:1d:5f:54:ce:68:73:91:73:32:b1:
d8:53:93:d0:ec:41:79:58:c0:3e:fd:88:32:c3:ee:
ff:cf:05:87:fb:8e:59:97:59:49:52:95:c6:80:16:
8f:8a:3d:de:72:a3:f0:90:58:98:d0:55:8b:b3:1e:
58:96:a1:66:4e:c2:6a:7d:28:07:b7:e1:b6:7d:ea:
a1:8b:b8:1f:c9:44:54:b0:a1:91:3a:99:ef:4b:ac:
d8:8e:7f:3b:12:89:7e:49:6b:f6:b2:b1:e3:33:32:
f6:2a:91:f1:8a:0f:34:38:64:96:51:6e:6a:90:6b:
b1:02:78:86:6e:66:e4:1c:89:b0:68:25:d3:b9:d0:
a0:c7:6c:5a:f8:cb:10:09:8c:82:b1:c6:c2:ad:16:
9a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4C:97:2E:A4:CD:80:EF:43:3C:B4:E2:67:8D:56:22:AB:37:57:3A
X509v3 Authority Key Identifier:
keyid:4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:39:f0:97:b0:93:02:bb:cd:31:69:af:2b:6f:17:cc:b7:9e:
07:c7:48:b1:5e:90:87:67:00:d0:da:f1:50:e9:af:dd:41:68:
8e:2e:32:d8:ab:4e:ff:35:96:45:80:d1:52:c1:ed:d6:0e:51:
36:18:d4:3a:86:ed:f2:62:26:3b:72:2e:0e:d7:d6:8b:e1:88:
05:17:a0:69:4c:6c:aa:10:7c:30:22:6d:83:b3:a5:12:4a:c8:
fe:59:2c:23:0f:4a:16:9a:4b:9b:b0:1a:d7:15:2d:41:be:3f:
cd:30:6f:68:7b:52:d0:7f:cb:c8:e6:b0:96:d9:35:3d:78:fb:
e2:e5:fd:ea:eb:10:97:75:6b:05:9e:42:1c:da:55:f8:f2:85:
88:28:ab:84:1c:d1:a4:a4:e5:68:c9:a2:46:f5:9c:f9:0c:e4:
8d:af:1e:26:7c:a9:1a:04:ce:9a:cb:b4:77:14:b7:fa:e5:2b:
95:43:0b:c9:13:64:5f:fb:c1:2e:62:5c:af:33:2c:06:4d:38:
8c:74:34:ec:e5:8e:7a:fc:40:8c:01:1a:90:75:ac:48:ce:df:
43:91:6a:4d:71:70:5e:f5:1d:41:b7:16:75:34:28:2c:1f:39:
c7:6e:aa:cc:6c:94:89:f1:1d:71:8b:74:84:d6:e6:7a:40:fa:
9a:de:a0:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:35 2026 by rpki-client