Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
File: TgfHPboamfW7wV94xjkKqZwmmCQ.mft (raw, json)
Hash identifier: hzYovzqLbD9+r/VWFszYst26KXbHybHUF05wDWYJWME=
Subject key identifier: 5C:FE:3B:94:91:18:36:D8:BF:1F:11:1A:7B:49:7C:1E:9F:77:63:E3
Authority key identifier: 4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24
Certificate issuer: /CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824
Certificate serial: 019D3A5429DA64B4539722E14A216CA9BF53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
Manifest number: 1657
Signing time: Sun 29 Mar 2026 16:01:27 +0000
Manifest this update: Sun 29 Mar 2026 16:01:27 +0000
Manifest next update: Mon 30 Mar 2026 16:01:27 +0000
Files and hashes: 1: TgfHPboamfW7wV94xjkKqZwmmCQ.crl (hash: AiDq7zlj2sEnEmWNHmdC3xXVyBcomQK/0hCM38AjLY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:29:da:64:b4:53:97:22:e1:4a:21:6c:a9:bf:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824
Validity
Not Before: Mar 29 16:01:27 2026 GMT
Not After : Mar 30 16:01:27 2026 GMT
Subject: CN=5cfe3b94911836d8bf1f111a7b497c1e9f7763e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:bb:e9:78:7f:e1:9a:6b:4f:ec:9d:d0:10:
b2:e4:c2:88:b0:6e:33:91:76:db:09:8f:17:3b:55:
a0:87:20:88:3e:32:3e:be:6b:7e:05:2c:35:ac:cf:
7a:03:6c:a3:a7:a5:af:96:8b:1c:49:95:0e:de:a4:
b4:63:9d:67:2e:46:25:da:8c:0e:67:cd:42:57:1a:
e7:d2:c8:a9:99:ea:8a:93:53:1e:e5:c5:41:46:ca:
18:32:0e:08:39:ff:44:c2:54:01:51:a5:ac:e3:1a:
02:6b:ed:5a:d1:f7:62:73:33:d4:bc:27:43:f8:25:
52:9b:17:65:70:88:e9:64:aa:df:ba:08:e3:56:a2:
11:ed:e3:44:a9:79:09:62:69:e7:70:2b:f9:83:8f:
4f:02:f6:9f:26:31:6d:50:7b:6a:73:07:59:af:c9:
c5:70:6e:fb:3a:78:c3:c3:ff:f3:50:ba:5e:75:d4:
fd:8b:c3:48:6e:c9:3b:9e:76:b6:01:45:78:f5:97:
5c:a0:f7:4d:e2:de:da:ac:86:ed:72:66:d3:0d:40:
91:f5:66:48:5d:9d:7e:93:56:10:e1:0a:ad:ca:03:
6c:98:49:84:30:eb:7c:c7:c0:98:bc:e9:8a:6d:14:
52:36:a0:23:8d:6c:72:08:8c:d1:8c:3e:45:ca:93:
cd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FE:3B:94:91:18:36:D8:BF:1F:11:1A:7B:49:7C:1E:9F:77:63:E3
X509v3 Authority Key Identifier:
keyid:4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:1c:d6:7d:96:6f:48:d4:98:3b:09:73:e2:91:9d:f9:e0:a0:
0d:ab:d5:84:bb:f2:03:e3:16:ae:ca:ba:aa:ef:7f:4c:ed:25:
53:e6:59:06:3d:b9:12:f3:55:1d:5c:41:06:b5:ec:9e:4f:d8:
5d:b4:36:75:d1:40:4b:e0:aa:94:a2:e5:e7:2b:14:0f:85:73:
f6:a0:45:ef:77:f7:86:1d:d0:33:5b:cb:73:37:cf:2b:0e:3e:
ca:d0:af:74:a4:81:d7:3d:63:ca:be:b5:20:d5:fe:d2:ac:79:
65:a7:5f:b6:bb:c1:29:4a:5e:82:ba:33:7c:45:ce:e7:37:62:
d5:16:b8:9f:f3:8e:d7:e0:09:d0:51:8a:15:44:e1:32:7b:80:
cb:f1:73:d0:1d:c8:21:a6:7f:cf:65:d8:2d:fe:ab:fe:3b:2c:
31:76:9d:5a:ef:2d:f3:cd:6f:a9:01:2a:ce:88:19:86:44:cb:
fa:f2:d0:b4:b8:c4:3a:ca:af:dd:3d:92:82:04:36:f2:a8:4d:
d5:a5:06:4e:84:33:fa:88:55:d9:fc:42:87:2f:7b:b9:11:0a:
c5:75:3b:15:87:6c:f1:bf:67:15:62:4a:b3:fd:92:59:07:a3:
fa:b2:40:4f:71:b2:e4:b6:b9:2b:4c:22:17:5d:f9:36:d0:8b:
47:57:02:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:53:10 2026 by rpki-client