Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
File: tUcxKN5Ul222LZvRYU53xD3uObU.mft (raw, json)
Hash identifier: BEM+iAoubxeSSt+VThsYP4oP4JfwQGXq25w0NQwXjsk=
Subject key identifier: 51:5F:AE:A4:90:B1:51:45:71:5D:E3:11:21:DD:FE:04:0D:2C:CA:CE
Authority key identifier: B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
Certificate issuer: /CN=b5473128de54976db62d9bd1614e77c43dee39b5
Certificate serial: 019CE4488FF84C7D3CF8D9421F1B0EB9132B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
Manifest number: 153C
Signing time: Thu 12 Mar 2026 23:01:26 +0000
Manifest this update: Thu 12 Mar 2026 23:01:26 +0000
Manifest next update: Fri 13 Mar 2026 23:01:26 +0000
Files and hashes: 1: TmvOzGWnmK2lk0JBtr2hwCa8AyI.asa (hash: jT3uzkFsF2IKke7bmyYM9JWOSf+ukPwuY/SlyIWkCoE=)
2: ptdE_5xWn-ZmMAkY4AdscmyvcGk.roa (hash: eOGLE8Tlqokd5s+tmbzOxg0+2W1g2wypnR3SH77Owog=)
3: tUcxKN5Ul222LZvRYU53xD3uObU.crl (hash: GXX4nv3uEErKvtf0GqlxFy3tmEeLhBhafzu0hncZy2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 23:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:48:8f:f8:4c:7d:3c:f8:d9:42:1f:1b:0e:b9:13:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5473128de54976db62d9bd1614e77c43dee39b5
Validity
Not Before: Mar 12 23:01:26 2026 GMT
Not After : Mar 13 23:01:26 2026 GMT
Subject: CN=515faea490b15145715de31121ddfe040d2ccace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:11:7f:fd:03:e1:ea:58:b9:21:23:b8:29:27:
bb:43:ac:61:c3:35:f8:91:38:64:a1:9e:37:15:63:
d3:7c:2f:b6:26:5c:c7:2f:cb:5f:52:7a:a3:e6:b3:
88:58:8e:9a:8b:f5:5b:d9:14:ca:35:bf:a5:0a:74:
d1:5a:ae:3b:a1:4d:ae:c9:2c:f6:70:50:24:a0:ee:
19:62:8c:f2:ff:33:e8:a1:67:87:fa:52:9e:87:c7:
ad:b7:23:a1:b2:0f:c0:22:2a:89:25:a3:b6:56:7c:
00:0e:bd:bb:d9:c7:51:8c:7c:e3:96:a6:df:5a:82:
12:d7:79:61:20:4f:ea:47:96:74:3b:fa:d4:f4:b2:
cb:8d:6a:b7:68:94:89:b1:30:42:ad:09:2f:a5:f5:
c9:5c:52:e1:da:91:5a:c5:2c:ff:b4:ad:be:b4:cc:
a0:fc:10:c5:b8:0f:87:7d:ec:7a:90:94:b1:9f:14:
b9:84:30:cd:b2:6c:32:dd:c7:9c:63:74:ed:81:c8:
1f:46:5c:e4:8b:d1:a5:ce:ab:dc:09:08:e3:10:53:
92:01:d4:a5:c6:0a:c3:41:b5:9c:cb:f2:bb:88:1d:
e2:f0:3a:65:61:5a:60:a3:b6:1b:b2:21:ae:0f:66:
cd:df:92:1d:da:b1:f8:ce:f8:36:da:bc:02:a1:10:
4a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5F:AE:A4:90:B1:51:45:71:5D:E3:11:21:DD:FE:04:0D:2C:CA:CE
X509v3 Authority Key Identifier:
keyid:B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:db:ad:ea:9a:74:dc:f0:21:08:ca:b9:4e:9e:6c:f7:b4:90:
3b:f8:c5:1b:44:8d:1d:59:24:51:87:08:93:4a:67:7a:ef:81:
c8:5f:78:c2:46:6c:8f:34:3e:ad:ee:92:5c:20:5e:f8:72:81:
94:32:03:f0:55:d7:30:86:04:01:8c:ac:37:cc:b5:db:82:5d:
8b:3b:3d:56:85:1f:7f:9c:a5:21:86:c6:7f:02:82:17:87:ae:
6f:54:2b:81:4a:cd:79:59:43:46:e0:80:4d:39:15:00:77:68:
22:9c:41:cd:6b:cc:d1:90:25:84:59:4f:d6:c4:a4:fd:85:ad:
24:b5:57:4c:b6:e0:93:8e:1f:9a:f9:09:9e:da:ff:e2:ba:27:
79:11:87:94:57:f1:97:31:e5:e6:7f:1d:83:d0:2b:4e:76:4d:
8d:46:a0:3e:d6:44:d8:63:d0:24:b0:f2:26:c9:c9:80:50:5f:
96:05:e2:86:72:c6:24:27:a9:21:6e:b8:4a:52:9f:cf:fa:f5:
16:ce:ac:66:c3:55:86:18:b7:a9:a2:c3:54:ed:bd:13:08:89:
57:aa:a8:43:a3:2e:51:5b:b9:56:af:eb:00:b7:e1:5a:00:17:
59:e8:41:d9:69:66:df:74:50:8b:aa:44:3a:63:c6:b9:bc:16:
12:8a:8f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:46:47 2026 by rpki-client