Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
File: tPSWmNCOjCg8DfKoLxaZfmJZurY.mft (raw, json)
Hash identifier: xecH1TMdWO4NcyoZAGiwt2o3cJgUM+yB8o17Ou2/5Vs=
Subject key identifier: D3:2A:5B:73:99:C1:C7:7D:07:38:BC:27:57:68:C0:1D:C1:FB:C5:52
Authority key identifier: B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
Certificate issuer: /CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Certificate serial: 019CE5911481365E11FBBB4925656D40B856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
Manifest number: 0A31
Signing time: Fri 13 Mar 2026 05:00:16 +0000
Manifest this update: Fri 13 Mar 2026 05:00:16 +0000
Manifest next update: Sat 14 Mar 2026 05:00:16 +0000
Files and hashes: 1: HhEHXcVrA4jYly_4JLZyYZncnvg.roa (hash: 6iTpuhytQNXUI4g8368tGo5DhJ/PIFrnzj+J0UysgLI=)
2: tPSWmNCOjCg8DfKoLxaZfmJZurY.crl (hash: NW898gtjH3+jm01KMr0pj+/G5Z84Kd2VKrKKjyKrPm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 05:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:14:81:36:5e:11:fb:bb:49:25:65:6d:40:b8:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Validity
Not Before: Mar 13 05:00:16 2026 GMT
Not After : Mar 14 05:00:16 2026 GMT
Subject: CN=d32a5b7399c1c77d0738bc275768c01dc1fbc552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:50:50:0e:f5:bc:09:5b:78:dd:a4:b5:ff:a8:
04:a4:71:59:ed:f4:20:0f:be:3f:d6:2f:84:4d:68:
0f:2d:ab:b7:4f:9e:a7:f9:2b:2b:3c:6b:0d:89:b6:
c6:d1:36:6d:2a:39:3c:6f:c0:c0:79:f8:de:f2:92:
9f:95:dc:5a:b5:89:39:32:0b:98:b3:37:44:af:75:
7b:a2:23:e4:4e:2d:ce:14:f6:41:41:78:58:6c:80:
2b:67:d2:d9:05:91:84:e3:02:77:a8:cb:8d:f0:33:
61:4f:d8:6e:67:96:76:37:f6:f9:02:21:67:47:13:
37:bc:c8:92:63:02:d6:fd:28:d2:18:51:39:8d:25:
86:27:2c:dd:1e:47:6c:de:e1:61:4e:bd:94:8e:be:
79:d6:ae:4e:3b:1b:a2:8b:6c:68:87:c2:8f:c5:0d:
8b:c0:ec:39:f1:d4:cc:27:48:74:42:3c:c7:aa:db:
d9:9b:92:1d:79:4a:df:68:80:86:73:4f:dc:f3:19:
ad:61:c3:ae:12:73:92:34:ab:08:26:f5:0f:e7:1a:
32:98:e2:c7:25:17:71:32:cc:c3:f4:af:58:dd:2b:
1a:dd:2d:65:d9:3e:f7:e8:1a:e6:82:8c:d7:ed:4c:
66:41:6a:4a:25:e0:48:a6:5c:81:29:3e:eb:c8:cf:
5e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:2A:5B:73:99:C1:C7:7D:07:38:BC:27:57:68:C0:1D:C1:FB:C5:52
X509v3 Authority Key Identifier:
keyid:B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:ee:fc:8c:00:7a:14:9f:c3:08:73:82:e6:d8:30:ab:a8:c6:
6d:2a:bc:4a:4f:4b:da:4e:7d:b1:90:e3:7a:ca:1b:5d:25:a7:
f3:3b:65:41:88:be:a8:3d:4e:df:bb:82:4b:9b:16:f1:8c:3d:
17:5b:e6:2b:4c:38:bc:01:05:c1:08:eb:0f:15:a1:d0:c6:35:
dc:32:eb:16:a3:ac:ad:1d:02:46:f5:5e:fc:ac:3d:b0:a7:84:
51:64:87:ee:c8:24:09:5a:93:ea:72:bd:a1:b8:01:04:24:56:
1b:f9:e3:84:a4:1c:23:55:d5:19:41:74:e2:d9:fc:71:ed:f9:
c0:41:22:3e:05:ae:cd:cb:51:78:e4:b7:91:9d:63:3a:06:4a:
44:0d:dd:85:f7:08:84:0a:e5:eb:34:9e:4f:43:e8:c3:b2:39:
8d:17:09:23:92:b6:c9:ef:ad:f9:a5:44:40:29:ab:8e:95:dc:
4e:ce:c6:ee:87:ba:4e:5e:f5:48:99:8a:c2:00:26:63:f7:65:
d2:6d:b0:f0:f3:95:b6:20:c6:c4:a9:44:ac:59:4d:05:0c:4b:
50:4a:32:50:c3:c5:88:69:5c:f9:bd:2d:17:50:80:04:94:0e:
93:12:56:12:b3:d2:d6:a7:fb:08:14:6e:aa:d4:b6:18:28:70:
5a:10:9c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 13:14:19 2026 by rpki-client