Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
File: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft (raw, json)
Hash identifier: g+Qv49PmXaP6c4OPRkTD7UDrPFoLBsp33EHXyQdffpA=
Subject key identifier: 97:1F:C1:19:D9:EA:00:D0:7F:C9:2A:E4:28:96:49:C5:3A:E1:11:72
Authority key identifier: FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
Certificate issuer: /CN=fde72d43f4c82b1146737b116197231830bf65d6
Certificate serial: 019D39AF70BA6881E1D52B11AF02D18AE483
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 13:01:32 +0000
Manifest this update: Sun 29 Mar 2026 13:01:32 +0000
Manifest next update: Mon 30 Mar 2026 13:01:32 +0000
Files and hashes: 1: 7qm-LSRsoG2o1A3h3_xWxcHiIrc.roa (hash: NschteRDlBB+SzTLpxjpeCbdQUNPGM+TwCR+GlDPxOQ=)
2: _ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl (hash: S0gdXtgtBhHep3XZw0sbuEXXj5K0yXYKJPybMWIj9vE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:70:ba:68:81:e1:d5:2b:11:af:02:d1:8a:e4:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde72d43f4c82b1146737b116197231830bf65d6
Validity
Not Before: Mar 29 13:01:32 2026 GMT
Not After : Mar 30 13:01:32 2026 GMT
Subject: CN=971fc119d9ea00d07fc92ae4289649c53ae11172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d2:9b:b1:86:5c:e2:a1:72:bf:88:9a:d5:55:
72:6e:cb:50:03:fb:23:c8:61:6d:17:01:fa:ba:aa:
44:38:75:20:53:d7:2b:81:9a:86:07:f6:bd:14:51:
2d:7e:be:82:0f:12:b9:e4:e6:ff:f4:00:9d:e8:c9:
c2:e9:70:a2:41:2e:c2:13:fb:de:12:67:9c:07:aa:
f7:8a:d2:79:89:c7:20:ec:50:ad:52:c7:5f:92:a5:
ab:83:4e:81:62:ac:56:e0:64:32:86:9d:9b:04:b0:
75:19:4c:b2:ec:78:b1:de:19:bb:ec:62:3f:38:e3:
8e:bc:68:46:bf:42:0c:57:12:73:d7:c0:fc:eb:d9:
fe:6e:6d:2b:19:8e:6d:0e:b2:ee:b5:5d:ed:97:17:
20:20:dd:9f:fb:21:a2:9b:aa:3b:20:29:65:4d:a2:
37:b2:a8:fe:2c:dd:9e:1b:eb:89:83:a6:29:b4:50:
fc:39:f9:50:17:67:09:74:d0:3d:60:91:4a:be:20:
bc:86:c9:20:e5:5c:70:99:cf:14:28:b4:62:93:4e:
8e:ab:55:4e:89:06:3e:e0:b3:20:2c:0b:dc:50:a1:
04:8a:8b:20:b7:60:6f:8a:4e:43:33:85:2e:41:a3:
48:5a:88:d8:65:44:7b:ba:68:68:5f:9a:76:06:02:
f1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1F:C1:19:D9:EA:00:D0:7F:C9:2A:E4:28:96:49:C5:3A:E1:11:72
X509v3 Authority Key Identifier:
keyid:FD:E7:2D:43:F4:C8:2B:11:46:73:7B:11:61:97:23:18:30:BF:65:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/debc29-5b2b-4bab-b4f7-e1c9198cdd88/1/_ectQ_TIKxFGc3sRYZcjGDC_ZdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:21:c6:bc:e4:a9:ad:66:e3:35:90:64:31:66:7a:ba:dd:a9:
62:3e:9b:4f:25:7b:f4:d1:98:4e:7a:1e:89:a9:c0:00:a5:05:
bc:e4:25:75:3a:2d:1c:6b:e9:e0:73:1a:df:85:66:2c:a1:16:
8c:fe:2e:50:f1:c9:5b:4f:18:af:f9:6f:1d:56:7f:a3:9b:fd:
8a:7e:70:49:9d:1e:32:e5:a3:4c:20:b7:4b:73:3e:6d:6e:04:
40:a3:57:e0:2d:b5:6b:ce:59:1a:e4:ae:da:33:06:03:d0:3b:
ce:8f:e8:fe:da:d3:24:9c:03:86:ed:c8:28:1a:e6:79:6a:70:
d4:14:41:88:53:e3:85:c2:8e:7d:14:19:58:7d:0a:47:ea:80:
0b:19:6b:15:25:b5:83:26:9b:8e:06:8d:24:2f:42:fe:31:62:
fc:e1:7b:06:dc:74:ff:41:99:fd:fa:31:76:65:20:4b:3d:c1:
26:d4:54:fc:aa:41:fe:0c:23:45:46:87:6e:bc:2e:d8:5e:4c:
ed:9f:b4:19:54:c6:17:29:66:b9:39:44:3f:82:42:5f:4c:55:
80:25:67:70:37:d8:a7:ef:f4:06:7c:7e:63:f7:d3:8c:42:08:
bc:60:ad:30:04:ca:e1:6f:c9:a6:c6:55:4f:86:e9:e8:4d:7c:
7f:65:5f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:58:18 2026 by rpki-client