Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
File: TlyvXlSV9UsDnx0PJHERJGfJeRw.mft (raw, json)
Hash identifier: OwoQ7TNWF7LpDj6nQiZyxUfaY7t2Z/PhdgNqZFivB18=
Subject key identifier: C3:D2:E1:9D:0B:BB:83:A7:5F:66:DC:94:D8:C3:ED:AC:17:81:EE:1A
Authority key identifier: 4E:5C:AF:5E:54:95:F5:4B:03:9F:1D:0F:24:71:11:24:67:C9:79:1C
Certificate issuer: /CN=4e5caf5e5495f54b039f1d0f2471112467c9791c
Certificate serial: 019D382EA95943809F70DF56A04BDCCBE59C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 06:01:14 +0000
Manifest this update: Sun 29 Mar 2026 06:01:14 +0000
Manifest next update: Mon 30 Mar 2026 06:01:14 +0000
Files and hashes: 1: TlyvXlSV9UsDnx0PJHERJGfJeRw.crl (hash: lCmkZ1njjS2EItH568EY53ytgXVaLtgPtWu8PbaoFyA=)
2: Xo1iMQ3Ij7PUWeAGoOzLhIVZke8.roa (hash: hvxy9UVnq6BjnNCsQhrvZPVQxyWtXfd0lX9H8Cmba5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:a9:59:43:80:9f:70:df:56:a0:4b:dc:cb:e5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e5caf5e5495f54b039f1d0f2471112467c9791c
Validity
Not Before: Mar 29 06:01:14 2026 GMT
Not After : Mar 30 06:01:14 2026 GMT
Subject: CN=c3d2e19d0bbb83a75f66dc94d8c3edac1781ee1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:e8:02:d7:09:d2:24:d2:0c:e7:34:61:d6:
37:18:c8:a9:09:a9:8c:e8:56:60:61:51:25:95:e3:
06:be:71:04:93:21:2f:4a:e2:52:24:64:78:29:7c:
01:3c:23:ff:10:30:b2:fd:13:90:f5:23:1f:23:68:
45:5d:67:f1:cb:21:76:26:bf:b3:11:20:cf:d3:94:
7b:50:9c:eb:0c:e4:1f:87:f3:8f:62:4c:79:ed:e2:
9b:d8:46:a5:aa:10:51:c2:c1:bc:be:bb:ad:d6:b8:
6a:d6:5d:4e:a3:38:aa:6e:b6:d7:d2:3c:5c:27:10:
cf:ca:23:17:ff:ad:38:be:38:65:09:92:19:97:bc:
31:33:cd:78:b9:a5:50:c4:14:58:a2:f7:98:fe:15:
e2:63:e8:93:eb:d8:23:83:35:bc:18:67:5a:c5:da:
13:d3:bc:6c:17:ca:b6:e5:ac:95:8e:1f:88:18:44:
ec:a0:e0:5f:d1:5e:4b:7d:b5:02:e4:0b:b9:75:08:
62:2d:4a:11:f1:0e:fb:6b:2b:de:1c:b1:d9:f8:ce:
94:e2:63:9f:fb:48:61:36:e8:3f:7b:71:af:1c:9b:
2d:75:99:e1:a6:dc:af:db:f4:e9:bc:ea:ad:3a:d4:
bc:26:60:5d:ce:55:ba:ea:dc:01:d0:7b:69:88:26:
45:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:D2:E1:9D:0B:BB:83:A7:5F:66:DC:94:D8:C3:ED:AC:17:81:EE:1A
X509v3 Authority Key Identifier:
keyid:4E:5C:AF:5E:54:95:F5:4B:03:9F:1D:0F:24:71:11:24:67:C9:79:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:f2:d1:22:e9:3b:79:c3:52:46:6f:61:cf:17:4f:08:71:3a:
40:7b:3a:a6:09:d1:4e:19:08:f2:4e:55:cd:db:a9:eb:ca:fb:
5b:ae:a1:34:9d:62:21:f1:a3:e8:44:a4:3b:d3:a5:20:de:ec:
f9:05:76:b6:f2:71:21:79:87:0b:58:35:a4:87:d0:8f:56:44:
97:da:dc:ef:2d:94:af:e4:c7:d6:04:b5:1d:8d:eb:17:ae:83:
02:be:94:42:e1:bd:49:90:4f:94:ce:5f:26:e6:42:d1:92:dc:
98:f8:33:f0:d2:bb:2a:4f:7b:e7:a3:99:a4:eb:e4:c8:79:fa:
dc:24:c6:4d:fa:3a:c8:38:e8:65:47:08:70:75:41:d1:b6:80:
ca:6a:a4:42:2e:69:6e:26:d6:00:79:c4:70:34:77:54:32:7a:
6c:9d:26:0e:15:0f:56:4a:4a:be:f2:9e:36:43:2f:e0:b9:77:
a4:e1:eb:3c:9a:7d:d1:74:56:38:23:f5:b8:83:42:d9:fc:fc:
c7:a5:5f:51:f0:01:58:c1:15:45:ff:ec:ec:2c:12:2b:b8:89:
d1:1f:a6:f8:fa:36:f0:d6:54:cf:67:6a:1d:eb:e6:04:76:46:
7e:04:3e:c7:08:36:6b:ac:7d:bc:89:d9:bc:52:7e:2e:49:1e:
fe:65:b7:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:19 2026 by rpki-client