Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: 5SnISVYBXe33b3kMVvToTxRwbI13WcSn/e+grAx+tZ0=
Subject key identifier: BD:CA:DE:27:04:9F:8F:5C:87:13:F4:85:1E:CF:7D:81:46:6C:8C:11
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 019D38666DFC090B2FA175C116867DEEFB30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:02:10 +0000
Manifest this update: Sun 29 Mar 2026 07:02:10 +0000
Manifest next update: Mon 30 Mar 2026 07:02:10 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: faaPR9QB/Avvnm5JAMS+3z7JAPngPAu9Fb+iWr/imI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:6d:fc:09:0b:2f:a1:75:c1:16:86:7d:ee:fb:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: Mar 29 07:02:10 2026 GMT
Not After : Mar 30 07:02:10 2026 GMT
Subject: CN=bdcade27049f8f5c8713f4851ecf7d81466c8c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f5:bb:8e:fe:bd:18:1d:ee:eb:2a:d9:52:c9:
a4:d7:e2:03:8a:35:e7:56:80:6a:b1:06:a4:c1:bd:
ee:0c:22:e4:9d:0b:0d:2d:35:64:d2:c3:f7:61:a4:
a9:52:67:60:52:85:b8:e0:a8:8a:bc:6d:5e:d3:08:
94:0d:e8:99:11:d8:11:0f:61:5c:97:17:14:fc:68:
f7:d4:d6:a0:36:e2:0f:ce:dc:e3:ea:25:47:e2:c9:
28:d5:c8:8b:f2:cd:ed:2a:1e:30:4c:23:7e:ff:f3:
41:46:5e:ca:14:70:37:69:8a:da:8e:a3:53:54:f2:
89:d5:cf:08:24:89:f9:43:53:bc:52:e1:39:35:c2:
13:09:de:17:62:88:95:7d:ef:8f:9a:2f:40:c6:00:
de:4e:f9:d0:bb:47:67:25:1e:66:b9:a7:3a:93:bd:
ef:b2:dd:2f:33:67:5b:c9:2d:7c:fd:45:9e:61:13:
b2:17:ae:51:f0:e9:42:26:30:a3:07:ac:5e:11:bf:
fa:99:ac:83:aa:6f:8e:7f:a4:a0:11:ab:56:05:7d:
e7:1f:d7:39:5d:f6:f8:6f:c1:7f:b7:bc:3c:0e:ba:
7f:d2:69:ea:4d:46:19:2a:ed:3e:d4:1e:0f:c9:4f:
a5:7e:af:19:c7:d7:50:16:eb:83:53:d2:cd:e5:d2:
37:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CA:DE:27:04:9F:8F:5C:87:13:F4:85:1E:CF:7D:81:46:6C:8C:11
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:bb:95:a5:1a:5f:b9:1e:15:2b:d5:e0:af:62:2a:9f:8e:87:
02:d3:50:82:08:30:6c:41:1a:4f:0d:66:f0:1f:3e:00:cf:19:
32:f7:ac:23:e7:db:22:75:d2:0c:fc:f9:34:bd:75:81:c6:6d:
fa:21:6c:20:f7:db:a6:f8:5a:ef:fc:9e:ce:e3:64:e5:26:30:
25:1a:05:ff:bf:46:a8:b8:3a:7c:e5:aa:2b:02:9a:0f:ff:fe:
98:cc:2a:0e:a7:94:7c:60:f9:7b:08:ff:89:85:c0:ea:ad:ac:
55:d7:83:2d:56:01:b3:74:5d:29:b0:ba:39:84:6d:33:25:24:
f7:54:32:7b:2b:97:d8:07:15:7e:10:d3:08:a8:25:6a:51:31:
3e:8c:62:be:a3:fa:56:14:ea:81:38:8b:7d:08:a7:74:0e:9d:
fe:54:c7:df:e0:be:b4:da:74:dd:28:77:74:1d:ce:ef:07:c8:
7f:97:e7:62:79:81:ab:ca:e3:4a:53:56:c1:9d:cf:d8:dc:fc:
1b:f7:09:25:07:cb:e5:a5:09:34:df:e4:c9:ab:58:3d:a8:24:
38:cb:40:28:35:a6:2a:d2:c4:47:49:fd:c4:46:21:54:83:c0:
10:0c:d0:81:4f:d5:4e:14:db:20:cf:5b:f6:87:2d:98:80:b0:
14:c9:ad:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:52 2026 by rpki-client