Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
File: tAifhEgwV6w2RkfIChsjyXa5MBY.mft (raw, json)
Hash identifier: 7kqm95IGzM9BdQBGyBFOsL6PVy19gck+xm1+YcKHQdY=
Subject key identifier: A8:46:6B:09:11:C3:3E:94:10:F0:D9:6B:D0:19:6B:1F:2A:03:A4:CE
Authority key identifier: B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
Certificate issuer: /CN=b4089f84483057ac364647c80a1b23c976b93016
Certificate serial: 019D38D2FAF2FE59CA51271E1F0CF2BF1966
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 09:00:43 +0000
Manifest this update: Sun 29 Mar 2026 09:00:43 +0000
Manifest next update: Mon 30 Mar 2026 09:00:43 +0000
Files and hashes: 1: Enpd7RSzC3L6emd7pGDdiVehZtE.roa (hash: WWtbFjYeptz2lkJzGb3OE5GVhYZDAyY+VdSSKK6ahKw=)
2: tAifhEgwV6w2RkfIChsjyXa5MBY.crl (hash: HOBgv20TX+9aQmqYOVnCSbj2CXnREndkxix2GddGxkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:fa:f2:fe:59:ca:51:27:1e:1f:0c:f2:bf:19:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4089f84483057ac364647c80a1b23c976b93016
Validity
Not Before: Mar 29 09:00:43 2026 GMT
Not After : Mar 30 09:00:43 2026 GMT
Subject: CN=a8466b0911c33e9410f0d96bd0196b1f2a03a4ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9b:d5:25:fa:d6:4b:31:99:ab:37:f7:bf:82:
a1:74:99:f6:06:b9:2b:ed:d8:4c:b5:20:b1:ff:bf:
67:90:6f:9e:3a:3a:29:ba:2e:aa:e7:0b:f1:75:66:
2c:0d:e3:e0:1b:f2:34:e9:09:18:a0:f0:1b:90:f2:
f4:9a:3f:46:f4:5e:90:15:9d:1f:35:a8:90:0a:87:
91:01:14:68:c2:ef:20:62:cc:eb:8c:54:cd:de:d5:
b1:08:3c:c2:a7:f8:62:6e:38:60:d3:a9:c1:07:8e:
22:7f:e8:bb:95:1d:3f:12:be:10:75:45:f3:65:ea:
9b:02:53:0f:cb:1b:8c:ec:12:77:4e:7a:87:34:9e:
0c:85:93:4e:ca:82:58:2f:0f:9b:6c:db:74:a4:42:
2d:14:ab:fb:fb:1c:f1:a6:ed:e5:d1:81:44:70:8c:
b3:ae:e6:08:6e:39:47:63:9e:b7:9b:58:96:2d:7e:
69:94:e7:f6:8f:e3:ce:c4:1d:42:47:7f:04:5f:46:
1b:f1:2b:8c:3e:e7:e2:ad:4b:04:34:91:10:ed:8d:
63:fb:a8:31:b4:c6:6e:37:53:29:cf:f4:37:05:27:
94:e0:9c:91:9b:4d:ad:fa:ba:b0:67:42:21:e2:99:
7a:5e:27:16:19:97:a0:26:13:20:06:e4:05:e1:92:
7b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:46:6B:09:11:C3:3E:94:10:F0:D9:6B:D0:19:6B:1F:2A:03:A4:CE
X509v3 Authority Key Identifier:
keyid:B4:08:9F:84:48:30:57:AC:36:46:47:C8:0A:1B:23:C9:76:B9:30:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAifhEgwV6w2RkfIChsjyXa5MBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/645f6a-2653-4d31-bb4e-1f87976137a0/1/tAifhEgwV6w2RkfIChsjyXa5MBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:9d:4d:8d:93:da:8a:3e:59:2a:1d:c7:1b:33:52:04:31:87:
6d:a7:e5:cf:25:02:60:b9:85:f2:f3:ce:28:1b:0c:d5:aa:40:
94:3a:21:bd:19:cd:60:d5:ca:1d:5c:6f:12:80:5e:2a:2b:8c:
88:c6:d6:50:aa:2a:23:32:66:39:f8:5a:39:8d:34:fa:1e:e6:
fb:91:9f:85:fd:3f:43:89:2e:f4:62:32:d1:ce:42:28:e9:91:
b9:7e:4f:c5:c8:a8:c3:39:ee:bb:8e:c6:d4:8a:3b:65:7f:b4:
09:b9:cb:31:c4:1b:a1:c6:88:9d:36:81:77:d0:79:e6:b8:9b:
6e:03:d7:df:d5:79:44:28:4a:b3:9f:42:bd:0d:2a:bd:e5:69:
e6:ff:fb:e3:7d:4e:c2:a1:65:50:c1:8a:de:6c:18:16:20:a8:
0c:df:4b:2d:56:b9:3f:80:fd:cb:89:1e:ad:13:2e:0d:2e:8d:
20:d0:24:72:c2:44:58:e2:61:68:42:8f:ec:e7:5c:c5:b4:3a:
a0:9a:fd:6a:be:c3:87:44:1f:ef:e2:58:25:6f:84:c2:f1:01:
4f:7c:b6:90:6f:a5:91:99:56:e4:cd:d6:1d:9a:c3:e7:80:15:
2e:56:9f:94:71:ed:6f:55:ad:98:5a:77:59:06:24:cc:01:d3:
5d:46:be:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:38 2026 by rpki-client