Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json)
Hash identifier: lA8QBZam0dEl3ANf6nrwP/h2VScHaDXEWdJ61HmQhwA=
Subject key identifier: 19:3F:03:30:4B:3E:35:7D:34:DD:9A:5D:9A:B5:D9:DC:9C:E0:FD:94
Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Certificate serial: 019D37C0BFF6535D2D605B9450FD76E3B7C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
Manifest number: 1417
Signing time: Sun 29 Mar 2026 04:01:12 +0000
Manifest this update: Sun 29 Mar 2026 04:01:12 +0000
Manifest next update: Mon 30 Mar 2026 04:01:12 +0000
Files and hashes: 1: iDP1bGdTiUqEFNWH9pQ_fwFAZO8.roa (hash: juc+ynuClZ4OorzxxoiPvzF8miwUosVKgq4mBUka3tw=)
2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: tGYs4jWX2/wIp0a8K/g9U5N2EOrRnuphQ/ASc76E0bY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:bf:f6:53:5d:2d:60:5b:94:50:fd:76:e3:b7:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33
Validity
Not Before: Mar 29 04:01:12 2026 GMT
Not After : Mar 30 04:01:12 2026 GMT
Subject: CN=193f03304b3e357d34dd9a5d9ab5d9dc9ce0fd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:2f:c1:64:3e:7d:b1:4f:09:a6:34:6e:07:
38:c3:26:c1:86:d6:cc:a7:50:c9:08:41:f3:b9:79:
ce:6d:58:69:07:f4:9a:f6:27:6f:02:c7:e3:51:53:
aa:f4:05:a7:1c:ea:ff:73:6e:4c:4d:ab:f8:d7:dd:
23:46:8a:73:64:f8:2d:0b:2e:55:21:95:71:3f:3d:
12:88:1b:83:54:8b:c2:cc:d9:f5:91:82:9b:28:f6:
29:75:f1:da:4a:37:b4:dd:7a:74:f9:2b:f7:44:4e:
51:6d:71:07:e7:e5:92:1b:9e:7b:c2:ba:1e:db:60:
48:6f:94:ac:a1:39:62:bf:43:c0:39:57:66:54:38:
ac:ca:d7:0e:10:e2:77:a2:6d:a3:6b:1b:f2:b1:70:
e7:5c:65:bb:c6:4a:31:4d:f0:e9:f8:8f:82:d8:eb:
53:10:72:62:43:d7:ef:bd:4d:8b:59:6c:b5:65:18:
69:cf:37:1e:d2:ab:9d:4d:f6:b9:0f:f2:11:bf:42:
6c:68:ae:81:78:f8:77:a9:e7:83:06:56:85:6f:f0:
31:e5:3b:1a:ec:54:a5:58:27:38:78:a9:63:af:32:
1f:ce:73:bf:31:16:e0:5e:a4:3a:96:a7:b5:2e:07:
21:04:9e:60:0d:08:bf:16:80:d9:d4:cd:b8:e4:72:
82:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:3F:03:30:4B:3E:35:7D:34:DD:9A:5D:9A:B5:D9:DC:9C:E0:FD:94
X509v3 Authority Key Identifier:
keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:6f:f9:ee:8e:f9:0e:0c:91:75:5c:87:76:b0:13:28:4b:eb:
79:9e:93:db:4a:8e:fe:bd:7b:79:11:e9:ee:45:34:42:ee:6b:
7a:cc:b1:e4:99:7f:fa:10:f8:8d:86:b0:28:4f:ed:5f:fa:d1:
a1:53:a4:75:c0:1c:3d:94:70:3e:75:8e:72:69:86:00:66:2a:
d6:8c:bf:fb:2d:b7:76:4e:30:4b:d6:3f:05:b7:6e:be:dc:1e:
63:71:c1:39:5b:ad:b0:d5:4f:02:c5:35:4a:1c:ab:12:fd:12:
eb:d1:bd:a1:6b:a3:4c:ed:25:df:8c:d9:8b:42:0c:71:f8:61:
e8:c2:25:9c:94:ef:d9:e7:1c:8c:bc:26:48:28:9c:42:84:3a:
87:3b:3d:10:e2:81:20:6a:b9:0b:fb:0a:eb:ae:c7:4b:2f:d9:
b4:f2:4c:5f:eb:b6:c1:d2:7f:77:50:e6:aa:40:5a:35:16:0d:
df:e2:bc:cc:1e:31:65:06:01:0c:95:41:03:81:ad:31:0b:98:
ef:4d:ee:fd:77:4b:3f:72:3e:3f:4e:be:5e:fc:1f:bc:13:d7:
c9:37:5e:47:3a:3a:bd:a0:33:98:ca:9f:96:9c:4e:4e:f6:c5:
ab:3f:75:3f:67:bc:c4:8e:3e:6c:3f:05:a9:0e:d2:f9:0c:6e:
81:f5:0e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:39 2026 by rpki-client