Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
File: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft (raw, json)
Hash identifier: Vs6jarH0/gm8v3mJ3F3QnHvQCPHLXMnW5iGsk6Slhgg=
Subject key identifier: 6F:E4:18:63:4E:8B:7E:7B:21:56:56:BA:80:1A:09:D6:18:02:C5:A6
Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Certificate serial: 019CB994B9F583425FD8CE16EF0CDDE7CEEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
Manifest number: 1852
Signing time: Wed 04 Mar 2026 16:00:57 +0000
Manifest this update: Wed 04 Mar 2026 16:00:57 +0000
Manifest next update: Thu 05 Mar 2026 16:00:57 +0000
Files and hashes: 1: VIjK-dF1RkU8oL9JO5ackgQvQqk.roa (hash: EuZj5CNsImrt381xNpJVt+ICs2RyaQvBUySYpPa5Un8=)
2: tBz0by2NzKIkh_m261Gzm8WL1fA.roa (hash: HsCmK+FnFFM5EN4UPd625pAFTouSWoOu/R7Evk3aoN0=)
3: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl (hash: 3w4555dELqkCVfYIDIU/U/TZX78rl0MIZ3NdxgMeNLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 14:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b9:94:b9:f5:83:42:5f:d8:ce:16:ef:0c:dd:e7:ce:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Validity
Not Before: Mar 4 16:00:57 2026 GMT
Not After : Mar 5 16:00:57 2026 GMT
Subject: CN=6fe418634e8b7e7b215656ba801a09d61802c5a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:56:41:76:8c:6c:26:ba:ae:2a:b7:6c:26:4d:
0d:f1:46:b5:b3:63:c1:07:c8:b8:3f:20:e9:3c:48:
72:e2:e9:d7:b4:13:e7:3d:1f:2a:78:94:f1:c8:bd:
3f:51:4e:cd:f3:00:11:4d:c1:8e:62:37:45:66:50:
02:d9:8b:97:b4:e2:0b:78:5f:19:ac:d4:71:5a:22:
bd:4d:df:84:6e:75:d7:f7:77:0d:0b:a1:51:0f:50:
81:86:15:e5:dc:e5:27:35:44:ef:be:15:77:51:31:
e1:48:bb:a6:fd:86:a9:56:ee:79:3e:03:f6:24:d6:
5a:b9:43:c6:75:bb:eb:8f:88:33:a2:7e:bd:2c:c7:
54:82:52:77:cb:62:ea:d7:13:7d:3d:f2:ca:82:ac:
9d:b9:e8:ff:c9:ab:7c:3b:c1:ee:a8:98:3f:41:26:
a3:e5:b8:6b:7e:b1:fb:2a:d3:56:f3:d9:ae:a4:54:
48:17:d3:71:25:47:a7:5f:7c:4b:3f:28:89:14:6e:
cc:0f:c8:a0:1d:bf:ac:16:41:79:de:05:88:01:cd:
ab:65:71:78:e4:f1:f3:41:91:c3:76:58:59:53:ba:
fe:c6:fd:12:d0:6b:ea:68:32:16:56:ac:bb:9c:c5:
74:a7:05:0e:8e:27:b2:70:99:fc:d1:c9:42:34:87:
fa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E4:18:63:4E:8B:7E:7B:21:56:56:BA:80:1A:09:D6:18:02:C5:A6
X509v3 Authority Key Identifier:
keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:db:61:8c:ea:ea:bf:8c:bb:a2:2f:77:42:2d:63:09:2b:f0:
ed:90:c4:55:89:d2:71:1e:85:a2:a2:3e:ad:75:ad:27:b8:17:
ef:78:12:ff:dc:33:af:df:f7:15:63:af:f6:ae:dd:c4:21:7c:
c1:03:2b:80:37:d0:a6:16:70:46:a7:b5:02:7f:2d:78:59:a1:
7a:b1:95:26:fe:ef:c9:c2:53:e1:e7:78:d6:d6:70:dd:1c:2d:
b1:bb:3e:49:d9:61:23:69:09:80:1b:8c:4e:a2:08:f4:91:cd:
90:6b:e7:54:ee:e6:d2:41:9d:a7:5c:8e:22:36:c9:29:96:45:
0d:c2:33:d4:45:64:c2:b2:a7:55:92:01:6e:fd:30:4a:a9:7a:
8d:9d:81:5b:78:a2:0e:91:5f:04:83:7d:84:a0:2b:af:3a:19:
86:e8:56:a5:ac:d7:2b:53:1c:9a:9c:e5:0b:b0:0a:fa:3c:b2:
cb:d7:0b:fc:d4:1f:82:7a:c7:4a:70:c4:c9:cb:77:ee:99:8f:
68:bd:9b:b8:cc:36:ea:a4:cf:bf:96:6f:30:85:ea:36:e6:d6:
17:0d:6f:45:34:69:4d:d4:44:bb:1e:9c:22:c8:07:9c:4b:e4:
b4:80:48:f4:5e:4f:ec:49:0b:33:00:e0:fb:cb:88:4b:05:67:
ee:de:3d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 20:58:28 2026 by rpki-client