Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
File: tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft (raw, json)
Hash identifier: kj+V0d1SHtD+DJi/WrKg099i8nTmUZM382y3SMaREu4=
Subject key identifier: 7E:2A:AC:FE:8E:0D:4F:45:45:94:BC:AD:FA:94:12:04:4B:7C:01:8C
Authority key identifier: B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
Certificate issuer: /CN=b46320188098520c366277f749a4f77a1d444439
Certificate serial: 019D371BCC681E1E7D0ADE45F377CD57FA71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 01:01:01 +0000
Manifest this update: Sun 29 Mar 2026 01:01:01 +0000
Manifest next update: Mon 30 Mar 2026 01:01:01 +0000
Files and hashes: 1: cD_uFT-kTapfuxpK7AHJ-T-GM5U.roa (hash: xnN2+r5sXxZBGsxlc2VxrhNLd6wrjJggfMUTLHByC7E=)
2: tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl (hash: blkC7gL6V16gsxCXedvI5aMG8xB9k7jBDMHHSsBbCsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:cc:68:1e:1e:7d:0a:de:45:f3:77:cd:57:fa:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b46320188098520c366277f749a4f77a1d444439
Validity
Not Before: Mar 29 01:01:01 2026 GMT
Not After : Mar 30 01:01:01 2026 GMT
Subject: CN=7e2aacfe8e0d4f454594bcadfa9412044b7c018c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:85:f4:cd:11:93:21:2f:a3:62:3a:06:2c:
6f:c4:7a:ee:23:d6:11:dd:25:f7:44:0a:8c:31:a3:
89:d3:d1:d4:4b:64:8c:fd:df:13:60:6b:36:e6:49:
05:bb:ee:ac:14:1c:b4:71:2d:2a:ee:53:a0:48:f3:
69:c0:20:99:33:45:10:3a:7d:fa:7f:2d:ea:33:c0:
2e:de:a2:fb:24:ba:8e:cc:fd:74:2b:78:37:24:53:
55:5d:dd:f0:c6:16:8d:7e:b0:27:06:ad:d7:9f:f4:
42:5e:ea:e1:5d:da:4f:f2:04:8b:84:a0:77:30:1a:
cf:01:64:2c:e4:b5:07:4d:84:dc:bf:ea:b0:f2:ca:
b0:db:28:75:67:98:f9:14:ba:41:1b:7e:0d:e4:14:
fe:fe:59:fb:9b:a5:0d:8c:ea:42:85:b5:09:09:07:
4c:0f:13:f4:bb:00:02:9e:66:18:26:d4:87:b4:e0:
da:dd:ae:4a:de:47:10:1d:29:0e:6c:5b:cb:a3:9d:
0f:87:80:a1:ac:10:fc:df:05:c5:8b:fb:e2:82:0d:
02:10:50:eb:10:b5:e6:c0:28:df:52:0d:80:bf:25:
b0:07:0f:af:9f:d2:71:82:29:fc:42:20:28:f7:aa:
73:33:a6:e6:a8:8a:90:0e:12:fc:6b:a3:a4:ba:27:
14:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:2A:AC:FE:8E:0D:4F:45:45:94:BC:AD:FA:94:12:04:4B:7C:01:8C
X509v3 Authority Key Identifier:
keyid:B4:63:20:18:80:98:52:0C:36:62:77:F7:49:A4:F7:7A:1D:44:44:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGMgGICYUgw2Ynf3SaT3eh1ERDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/4acb83-f940-4766-bca9-608e7d779bc7/1/tGMgGICYUgw2Ynf3SaT3eh1ERDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:e4:a4:2c:c2:fa:cd:0d:84:13:ae:4f:c2:5e:5e:e6:68:cd:
8c:63:ea:cd:3b:5a:a0:24:82:ae:91:1f:39:4c:a2:e9:52:91:
37:0d:4b:5f:1d:17:1f:ef:7c:da:07:83:e1:19:20:3b:c9:c5:
74:8c:7f:5d:bc:1e:9f:3d:8d:15:83:52:02:09:ff:e8:39:48:
e9:2b:d9:1f:24:3a:25:e4:30:f0:72:b3:d0:fd:7e:12:d7:a0:
96:06:1d:11:4a:43:36:9c:e7:61:2a:be:c4:ee:a4:4c:08:84:
4a:09:07:11:55:ba:be:5e:b3:e8:90:2e:d6:dc:67:d4:53:60:
2e:65:99:a9:c0:49:33:3a:76:09:36:5f:2d:4b:ae:8a:43:09:
74:65:89:67:35:55:b0:17:ea:9e:6d:34:42:70:2d:4b:96:51:
96:a8:96:a2:68:36:9d:2c:de:cc:b6:76:c7:56:9b:45:24:72:
fb:43:27:c3:9d:12:d4:30:ba:86:ea:59:71:9f:cc:33:af:c8:
2c:26:66:e0:95:22:2c:f1:18:42:50:17:30:54:b7:02:c0:d9:
65:60:a5:ff:a9:4a:0f:79:60:00:5a:50:c4:6e:98:f1:ef:f8:
e9:5d:ad:68:76:16:2e:5b:3f:c5:88:db:b8:e0:43:01:ef:2c:
57:61:4a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:10 2026 by rpki-client