Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
File: thvJe5gnbrO6vZ56pn4nBa4R5lg.mft (raw, json)
Hash identifier: LlaZSsX2Ky1YpfecfEqlc/0MzgqBw4Sytt8et1I2Gw8=
Subject key identifier: 1C:AB:2E:3B:6C:A2:D8:7B:41:8F:FA:4C:5A:4A:45:36:22:41:5F:A5
Authority key identifier: B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58
Certificate issuer: /CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658
Certificate serial: 019D38663996B591C56FD1E5D2DC6BF3DE8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
Manifest number: 0724
Signing time: Sun 29 Mar 2026 07:01:56 +0000
Manifest this update: Sun 29 Mar 2026 07:01:56 +0000
Manifest next update: Mon 30 Mar 2026 07:01:56 +0000
Files and hashes: 1: XJYerDR0PpzOzzlvepGEResfgcE.roa (hash: 5wfEN3Q7d2uKbWDp8Mpxi1eFLJLct6OeAjh4AL/cHTg=)
2: thvJe5gnbrO6vZ56pn4nBa4R5lg.crl (hash: iOAE9F5pJ1LpjS1TDUhj8T07XSLfG8iPjzsOdASuaBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:39:96:b5:91:c5:6f:d1:e5:d2:dc:6b:f3:de:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658
Validity
Not Before: Mar 29 07:01:56 2026 GMT
Not After : Mar 30 07:01:56 2026 GMT
Subject: CN=1cab2e3b6ca2d87b418ffa4c5a4a453622415fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:ea:0d:8c:ec:38:4e:fe:74:31:d7:b8:b3:
24:6a:a7:b9:fc:8c:d8:78:0a:ba:88:67:c2:eb:e7:
7c:aa:58:97:85:3f:d7:9e:7c:b2:62:ba:a7:5d:94:
7c:8f:3a:8d:ed:b7:22:68:9f:2f:e5:89:7c:26:9f:
7b:eb:9d:54:e8:5c:91:e4:89:c8:d6:70:29:40:ce:
31:fb:1c:03:a0:42:4e:90:f5:ac:24:71:78:70:c7:
d2:8c:74:24:5d:eb:e5:ff:95:61:e7:96:6c:12:49:
77:38:21:ea:17:85:1a:f2:b0:89:96:ea:3f:a2:0c:
a7:be:d8:74:53:ca:f9:55:b9:07:a5:f7:b1:ba:64:
df:df:9f:f8:e8:6f:8c:79:eb:cf:67:82:d2:de:54:
f8:d9:96:ec:ca:ea:05:76:9e:79:d2:cc:4b:b2:f3:
94:32:2c:1f:f3:3f:7a:b0:e7:2b:89:22:f4:2b:cd:
d2:27:f0:4c:e1:47:d5:e6:06:29:c1:22:ea:4a:42:
8b:c6:9e:2d:2f:a5:73:fa:d2:a7:87:92:a6:94:80:
c4:74:65:8c:a1:ad:ee:40:fc:87:4a:59:fa:c2:79:
00:1e:87:9b:77:bd:db:99:90:4e:55:eb:81:44:ff:
76:78:81:25:f0:dd:d6:d5:ba:c0:f9:1b:fc:0f:79:
db:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AB:2E:3B:6C:A2:D8:7B:41:8F:FA:4C:5A:4A:45:36:22:41:5F:A5
X509v3 Authority Key Identifier:
keyid:B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:bf:c0:1f:b2:c3:0f:6f:dc:74:19:1e:b8:50:c1:e8:53:f7:
ef:83:a0:7e:ab:90:0a:8e:6a:38:f7:91:0d:d4:6b:af:43:e3:
ba:3f:b6:81:e7:c9:9b:e2:93:4f:b1:0c:a3:ac:22:a2:3a:0c:
67:d9:8b:1f:9e:52:45:4f:ec:d2:00:27:c7:b5:f3:d1:c2:44:
39:d0:c7:fd:80:96:7f:a7:10:cc:89:fa:6e:57:cf:8c:aa:e5:
20:75:9f:98:c6:35:da:3e:7e:a1:18:84:ac:4b:93:0d:b6:ea:
2c:80:34:df:6f:8e:f1:c7:55:55:2d:5b:51:53:d4:8b:34:5f:
41:df:af:24:0c:e7:b0:a6:23:54:94:c9:e5:a0:62:9c:95:99:
2a:25:2a:ca:f0:48:e6:51:d4:99:74:38:59:a8:26:b3:8b:15:
35:87:c0:02:46:79:df:34:a5:f2:db:cb:dd:00:c2:a9:6a:be:
0c:14:8d:3c:b1:5c:91:95:7b:30:fd:5d:94:fc:fa:93:e3:44:
65:18:3c:02:0f:63:2f:fa:f1:26:f9:4f:f0:34:d6:30:ee:cf:
28:d4:0e:8b:29:73:27:e6:b3:6b:24:bf:ba:97:17:c8:30:01:
de:db:35:ab:fb:8b:42:a2:cf:94:00:82:29:83:f8:0f:e2:71:
4c:ff:80:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:49 2026 by rpki-client