Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
File: sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json)
Hash identifier: SDy2CDt2R+3fdIs4sqSjk9j+CJlDOLyVhqCCRzL1z74=
Subject key identifier: 86:48:2C:29:3C:F9:A1:CC:1C:1E:08:2E:AC:73:5C:72:31:D7:4C:37
Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
Certificate issuer: /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Certificate serial: 019D3909969DA28CA20EED99BD075D111C94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
Manifest number: 0D74
Signing time: Sun 29 Mar 2026 10:00:22 +0000
Manifest this update: Sun 29 Mar 2026 10:00:22 +0000
Manifest next update: Mon 30 Mar 2026 10:00:22 +0000
Files and hashes: 1: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: UWW+YZXIZ/6tAPTEqBS+s9L+yPUWMD3V8I3i1AJakow=)
2: zO8hQmSxtEXmRdrwqFPkVEGSdWg.roa (hash: MmT0Cb8d42MmUiiW2gdoJjBjTgQPDMLhJCGUAeZAyRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:96:9d:a2:8c:a2:0e:ed:99:bd:07:5d:11:1c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894
Validity
Not Before: Mar 29 10:00:22 2026 GMT
Not After : Mar 30 10:00:22 2026 GMT
Subject: CN=86482c293cf9a1cc1c1e082eac735c7231d74c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:62:1b:43:89:f7:ab:bd:76:05:12:25:f8:1b:
c8:66:f5:18:79:77:53:0c:c3:65:86:7c:3e:16:f2:
4c:62:8f:f7:ed:53:61:b8:65:26:8c:05:1a:06:f1:
2b:3f:30:2e:2a:69:06:49:21:b3:db:ee:f9:8a:6f:
43:cc:b5:d6:62:44:64:b4:9b:d6:fc:d0:60:48:f3:
a5:9e:7b:5b:6e:ad:82:64:ab:c0:9f:80:0f:93:56:
cf:eb:90:a1:2c:79:8a:6b:7f:48:c8:f9:82:fa:d6:
1f:bf:01:a2:13:5f:12:f7:29:56:61:9d:02:ef:00:
e7:28:20:a2:e4:6f:de:14:2f:e7:bb:11:d7:49:6e:
2c:67:b7:9b:05:0f:5c:ef:48:5e:85:a8:64:e0:b2:
9d:71:6f:2f:eb:2c:ce:eb:05:2d:ce:2d:48:8b:c0:
1b:71:86:21:b3:0b:83:b2:c9:4b:3f:41:10:ff:37:
46:8d:3b:57:50:d5:e7:19:f5:11:73:61:87:bc:58:
c6:ce:a7:f2:7b:0c:36:b0:4c:04:e5:56:b3:ad:fa:
59:71:2b:0e:a5:dd:a4:f9:e7:59:78:f1:8a:22:c8:
e8:93:ff:0e:e9:4a:83:56:7b:3c:e9:95:26:ec:a7:
3b:90:58:4f:65:59:4b:a4:41:8e:b4:b3:d2:c3:b3:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:48:2C:29:3C:F9:A1:CC:1C:1E:08:2E:AC:73:5C:72:31:D7:4C:37
X509v3 Authority Key Identifier:
keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:d6:51:c0:03:9a:11:89:df:73:91:98:65:12:2c:dd:ca:2d:
93:d1:73:d2:c0:ee:ca:ef:04:19:8c:da:44:95:b7:89:9a:7b:
07:5c:45:c6:4b:b5:c4:f5:1e:a0:66:39:df:6d:7d:3b:c7:2c:
77:11:80:a2:98:46:20:1e:7e:99:3b:28:d9:03:a2:a3:67:87:
05:1d:70:ca:8c:8d:f0:94:3a:3a:84:0f:35:be:a2:74:93:b1:
aa:b5:42:38:70:9e:03:5c:28:50:54:4b:92:56:64:12:52:86:
07:22:df:a2:74:31:c0:ae:f4:46:47:b1:a6:49:5e:0f:56:3e:
3b:10:63:dc:03:f5:ac:8b:e3:bc:11:47:43:0b:48:0d:04:da:
7d:49:e2:30:ad:ce:c8:a2:d2:1b:e9:64:2e:3f:de:03:9e:40:
f4:19:84:11:5c:c1:07:c7:22:a5:41:9d:e8:e1:cb:73:61:65:
0b:e6:5e:1c:5d:b5:1d:76:a6:3c:3a:4f:5f:bf:ea:c5:21:00:
fe:21:9f:dc:ca:2e:87:ca:c8:5e:2d:7b:49:7f:db:d9:b8:3c:
a0:a9:9b:3f:1e:66:58:e5:3e:21:c1:b7:d7:f1:25:f2:72:56:
94:da:1a:e9:8d:c0:50:c7:b3:cf:5a:0a:56:72:df:2f:83:08:
d6:74:09:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:11:54 2026 by rpki-client