Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
File: t6hswzTG4Oq4PyUr2D7ulWklykA.mft (raw, json)
Hash identifier: 13nW53VJMSgNm8TwZdmQQHUB87E9WDYCCbwTIDC/LHg=
Subject key identifier: 49:38:8C:A1:64:6E:17:D7:F1:86:35:D3:44:CE:79:C2:C3:8E:58:24
Authority key identifier: B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40
Certificate issuer: /CN=b7a86cc334c6e0eab83f252bd83eee956925ca40
Certificate serial: 019D371B9C6AAC3864DBA7755E64126A2D08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 01:00:49 +0000
Manifest this update: Sun 29 Mar 2026 01:00:49 +0000
Manifest next update: Mon 30 Mar 2026 01:00:49 +0000
Files and hashes: 1: X3SG_E7dKLkySN2NXBNircknUi0.roa (hash: H3iDQ4ve/GqzLagGcVLrgcEFBGMPC2p/bJLU2T5Fnqk=)
2: t6hswzTG4Oq4PyUr2D7ulWklykA.crl (hash: wdQE3gHCebeWnU1KBClPt28YcwOhXATF5HRoLns8i9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:9c:6a:ac:38:64:db:a7:75:5e:64:12:6a:2d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7a86cc334c6e0eab83f252bd83eee956925ca40
Validity
Not Before: Mar 29 01:00:49 2026 GMT
Not After : Mar 30 01:00:49 2026 GMT
Subject: CN=49388ca1646e17d7f18635d344ce79c2c38e5824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:00:e4:f0:f2:97:03:ea:4b:88:1b:80:29:8f:
30:00:b0:16:33:32:32:a9:7d:ee:da:2d:d6:fb:16:
4f:ba:ca:5f:95:2f:24:f1:69:18:87:02:76:9e:93:
a2:b7:05:45:dd:08:6c:fe:ce:32:ec:88:0a:0a:68:
61:58:ad:4d:48:09:c3:5e:02:30:2d:28:17:e1:8a:
b7:a2:c4:86:b9:99:1f:47:73:1e:13:1d:6b:ef:ff:
a0:5e:d7:17:97:54:9b:d2:03:fc:66:2e:82:64:b1:
e0:aa:a6:13:a9:53:7a:84:58:a7:c4:01:13:bd:e2:
b8:95:59:c9:ca:a0:cb:16:e8:ba:e7:29:70:e7:71:
b2:23:a9:ac:95:a4:9d:ed:88:5c:45:f1:a2:2a:90:
a0:55:52:4d:db:83:3a:41:67:75:25:28:a1:29:76:
49:c2:8f:3b:e6:42:da:7c:cd:f9:ef:ec:19:1e:66:
f7:66:f9:c2:f4:4a:ee:76:da:db:60:8c:1b:5b:a2:
9f:34:6f:8c:ef:6a:c8:aa:bf:b4:c2:d9:d5:9c:b2:
e4:f7:aa:c2:48:bc:94:ec:f2:c0:86:95:3a:08:87:
4d:16:ae:6b:20:25:c8:74:4c:5d:12:5d:cc:74:d0:
e2:bd:af:6a:f9:c6:10:84:fa:ac:1b:d9:45:91:6d:
19:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:38:8C:A1:64:6E:17:D7:F1:86:35:D3:44:CE:79:C2:C3:8E:58:24
X509v3 Authority Key Identifier:
keyid:B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:27:2d:f2:12:91:6d:b0:e3:7d:e7:3a:e2:8e:44:e2:4f:47:
55:0a:89:0a:6b:75:e1:9c:66:d2:7c:57:49:e5:c0:38:e2:e5:
af:69:97:dd:17:cf:31:d7:36:a8:d5:5e:32:58:d5:00:23:40:
ed:01:3a:cd:8c:05:ae:8e:05:e4:b3:73:d7:0c:cb:20:cb:30:
d5:31:0a:2e:a9:e6:6a:a4:7d:40:49:39:19:9c:da:57:9f:c5:
31:5c:20:cf:2f:1d:c0:11:0b:3d:e2:ed:cc:70:1f:ff:5f:e0:
f7:f2:92:df:93:59:e1:bd:13:b5:d5:ac:ce:0c:35:05:d4:b0:
0a:52:f8:c9:7e:65:cc:81:be:38:84:35:c3:51:61:c6:b5:9e:
00:42:69:54:18:e3:da:81:3f:d0:34:be:f0:5c:fc:54:4e:08:
13:bd:41:53:69:8d:60:f6:43:94:26:e5:80:b9:b7:6f:44:d5:
0f:2a:d0:85:c6:0d:56:80:9f:1f:94:9c:f6:e1:bc:a0:1e:f9:
aa:59:d1:cd:92:78:3c:91:21:4b:c1:c1:f7:41:d7:70:e7:06:
78:b9:fa:93:5b:ea:15:f5:71:ef:c1:c7:f7:a6:63:59:54:b4:
07:ff:db:39:00:73:4c:70:97:46:3a:0b:08:5b:00:f9:1f:31:
b7:cf:79:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:48 2026 by rpki-client