Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
File: TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft (raw, json)
Hash identifier: 5HUU4ZPmYCZKCOzpNlVjDawgXvQQLWJ0rJxurL257No=
Subject key identifier: B8:29:25:41:D0:58:FF:E3:66:D0:38:31:36:90:F6:75:F0:EC:89:58
Authority key identifier: 4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
Certificate issuer: /CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Certificate serial: 019D39418A3199F24F88A6C97444EEA033D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
Manifest number: 0E02
Signing time: Sun 29 Mar 2026 11:01:29 +0000
Manifest this update: Sun 29 Mar 2026 11:01:29 +0000
Manifest next update: Mon 30 Mar 2026 11:01:29 +0000
Files and hashes: 1: TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl (hash: ezB6CCZAs0b+ebCwF6vkM+wXJ7DWqRxskkXripbfpjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:8a:31:99:f2:4f:88:a6:c9:74:44:ee:a0:33:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4
Validity
Not Before: Mar 29 11:01:29 2026 GMT
Not After : Mar 30 11:01:29 2026 GMT
Subject: CN=b8292541d058ffe366d038313690f675f0ec8958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:06:79:fa:92:fa:99:2e:12:31:7a:83:ac:4e:
b0:cc:7d:84:26:78:6d:be:ab:b1:b6:fb:ff:e2:e4:
d7:a9:e8:5b:4e:09:6f:b6:fa:c7:7c:c6:53:65:32:
11:88:23:ca:5c:42:4d:56:b0:95:58:0a:a2:2d:23:
1d:86:7c:60:ae:76:66:9f:6e:c0:07:69:4b:b4:f3:
b4:69:00:dd:f0:94:b2:3d:6e:26:34:12:50:0a:40:
74:36:1b:72:a9:1f:8b:f2:74:11:63:ca:6c:7c:d5:
61:50:12:5c:2a:1a:76:d1:ce:f5:90:e2:e7:8b:a1:
40:6a:5e:8c:29:50:1b:64:c4:f6:35:8b:df:11:c2:
f3:2d:b9:65:4a:ca:58:c7:2c:b8:90:c4:22:56:ea:
19:1e:a3:36:5e:08:5d:9b:20:36:f5:2a:eb:53:2b:
64:ab:ec:6d:bf:f0:ec:26:fa:6f:77:5b:4f:6e:90:
26:16:da:ff:77:05:b8:d9:1b:56:76:d0:48:a0:97:
5b:30:98:8d:75:08:11:d4:b4:a8:1a:a5:0b:50:4b:
53:27:8b:7c:df:79:6a:6f:ab:24:2a:af:2f:8b:8f:
f7:59:3b:1f:27:79:fb:dd:47:be:50:03:b9:ac:5d:
1c:d0:fc:0f:74:b6:06:68:05:eb:81:0b:b7:2c:3e:
6a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:29:25:41:D0:58:FF:E3:66:D0:38:31:36:90:F6:75:F0:EC:89:58
X509v3 Authority Key Identifier:
keyid:4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:fc:3a:c1:c6:fe:22:ef:79:77:6f:47:b9:30:db:a7:4f:52:
98:97:49:e8:91:79:ea:0d:f1:a9:c6:e9:fb:8f:08:66:67:05:
72:b7:42:f2:54:0d:33:26:ac:87:79:d4:db:d4:42:eb:d9:27:
fd:21:b1:37:a4:a4:83:e9:e8:15:c2:c9:32:61:0c:44:a0:f1:
7d:04:2f:85:aa:71:32:68:fd:3d:2b:ef:c7:a6:b2:ed:47:20:
3f:89:9c:59:c5:3c:fe:ad:51:46:76:d1:75:8e:e6:f1:fe:4f:
00:1e:27:97:09:91:6e:2c:15:cd:ea:21:73:b1:fe:19:cd:0c:
09:26:3a:0f:50:94:ba:cf:75:7f:26:8e:b3:4b:1f:57:8e:b0:
84:1a:8f:b8:ec:09:8e:84:9c:a5:42:d5:50:47:9a:a5:29:94:
cd:ba:d2:26:1c:24:25:90:20:1d:24:5a:11:a5:a1:fc:9d:90:
d8:00:90:56:e1:24:5d:ab:3e:c4:24:5d:5c:52:d8:f5:90:a2:
77:92:69:fe:8d:d3:c7:74:72:8a:1c:56:49:60:ed:6a:bc:89:
cf:09:0d:01:fb:6c:f3:fc:1a:3b:2d:77:ac:2c:ca:bf:fc:27:
71:dc:8e:4f:dd:5b:eb:a6:6d:0e:fc:1c:ef:6e:06:b4:58:9f:
28:95:da:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:24 2026 by rpki-client